Asynchronous enhanced shared secret provisioning protocol
First Claim
1. A method for registering a first device with a second device, comprising the steps of:
- generating a first secret known to the first device and a second secret known to the second device using communications between the first device and the second device over a first communication channel, said first and second secrets ostensibly being the same;
from the first device, producing first information derived from the first secret;
from the second device, producing second information derived from the second secret;
using a communication channel other than the first communication channel, comparing the first information and the second information in a manner sufficient to assure a third party that the first secret and the second secret are the same; and
enabling the first and second device to use the first and second secrets upon the third party being assured that the first secret and the second secret are the same.
4 Assignments
0 Petitions
Accused Products
Abstract
An Asynchronous Enhanced Shared Secret Provisioning Protocol (ESSPP) provides a novel method and system for adding devices to a network in a secure manner. A registration process is launched by at least one of two network devices together. These two devices then automatically register with each other. When two devices running Asynchronous ESSPP detect each other, they exchange identities and establish a key that can later be used by the devices to mutually authenticate each other and generate session encryption keys. An out-of-band examination of registration signatures generated at the two devices can be performed to help ensure that there was not a man-in-the-middle attacker involved in the key exchange.
47 Citations
30 Claims
-
1. A method for registering a first device with a second device, comprising the steps of:
-
generating a first secret known to the first device and a second secret known to the second device using communications between the first device and the second device over a first communication channel, said first and second secrets ostensibly being the same;
from the first device, producing first information derived from the first secret;
from the second device, producing second information derived from the second secret;
using a communication channel other than the first communication channel, comparing the first information and the second information in a manner sufficient to assure a third party that the first secret and the second secret are the same; and
enabling the first and second device to use the first and second secrets upon the third party being assured that the first secret and the second secret are the same. - View Dependent Claims (2, 3, 4)
-
-
5. A method for registering a first device with a second device, comprising the steps of:
-
(a) communicating a commitment from the first device to the second device over a first communication channel, said commitment comprising information derived from a security value known to the first device;
(b) communicating from the second device to the first device over the first communication channel, information for use in generating a first secret;
(c) after step (b), communicating the security value from the first device to the second device;
(d) generating the first secret at the first device and a second secret at the second device, said first and second secrets ostensibly being the same;
(e) from the first device, on a communication channel other than the first communication channel, validating first verification information related to the first secret;
(f) from the second device, on a communication channel other than the first communication channel, validating second verification information related to the second secret; and
(g) enabling the first and second devices to use the first and second secrets upon a third party being assured that the first secret and the second secret are the same. - View Dependent Claims (6, 7, 8, 9, 10)
-
-
11. A device capable of registering with an other device, comprising:
-
an interface to a first communication channel;
an interface to a second communication channel;
a registration process that (1) generates a first secret that is ostensibly shared with the other device using the first communication channel, (2) validates on the second communication channel verification information derived from the ostensibly shared secret, and (3) is enabled to use the ostensibly shared secret upon receipt of an indication that a third party is assured that the first secret is shared with the other device. - View Dependent Claims (12, 13, 14)
-
-
15. A device capable of registering with an other device, comprising:
-
an interface to a first communication channel;
an interface to a second communication channel;
a registration process that (1) receives, on the first communication channel, a commitment derived from a security value;
(2) produces, on the first communication channel, information for use in generating a shared secret;
(3) after step (2), communicates the security value on the first communication channel;
(4) generates a first secret ostensibly shared with the other device, (5) communicates on the second communication channel verification information related to the first secret, and (6) is enabled to use the first secret upon receipt of an indication that a third party is assured that the first secret is shared with the other device. - View Dependent Claims (16, 17, 18, 19, 20)
-
-
21. A server capable of registering a device to a network, comprising:
-
an interface to a first communication channel;
an interface to a second communication channel; and
a registration process that (1) generates a first secret that is ostensibly shared with the device using the first communication channel;
(2) validates on the second communication channel verification information derived from the first secret, and (3) enables the network to use the first secret upon receipt of an indication that a third party is assured that the ostensibly shared secret is shared with the device. - View Dependent Claims (22, 23, 24)
-
-
25. A server capable of registering a device to a network, comprising:
-
an interface to a first communication channel;
an interface to a second communication channel; and
a registration process that (1) communicates over the first communication channel a commitment comprising information derived from a security value;
(2) communicates over the first communication channel information for use in generating a shared secret;
(3) after step (2), communicates the security value over the first communication channel;
(4) generates a first secret ostensibly shared with the device;
(5) communicates over the second communication channel verification information related to the secret; and
(6) enables the network to use the first secret upon receipt of an indication that a third party is assured that the first secret is shared with the device. - View Dependent Claims (26, 27, 28, 29, 30)
-
Specification