Multifactor device authentication
First Claim
Patent Images
1. A method for authentication, comprising:
- scanning an electronic system for compliance with a policy to produce a compliance scan result; and
presenting the compliance scan result and an attestation code to an authenticator for authentication of the electronic system.
1 Assignment
0 Petitions
Accused Products
Abstract
Method and apparatus for device authentication with multiple factors. In one embodiment a combination of attributes and/or identifying values known by the device and the authenticator are presented for authentication. The combination of attributes may be presented together, or separately. Invalidity of one of the combination of attributes may result in a more restricted than may be granted for validity of all factors of the authentication.
-
Citations
55 Claims
-
1. A method for authentication, comprising:
-
scanning an electronic system for compliance with a policy to produce a compliance scan result; and
presenting the compliance scan result and an attestation code to an authenticator for authentication of the electronic system. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9)
-
-
10. A method for authentication, comprising:
-
receiving from a remote system an indicator of a level of compliance with security rules, and a system identifier for the remote system corresponding to an access request; and
providing an access assignment for the remote system based at least in part on the indicator and validity of the system identifier. - View Dependent Claims (11, 12, 13, 14, 15, 16, 17)
-
-
18. An article of manufacture comprising a machine accessible medium having content to provide instructions to cause a machine to perform operations including:
-
scanning an electronic system for compliance with a policy to produce a compliance scan result; and
presenting the compliance scan result and an attestation code to an authenticator for authentication of the electronic system. - View Dependent Claims (19, 20, 21, 22, 23)
-
-
24. An article of manufacture comprising a machine accessible medium having content to provide instructions to cause a machine to perform operations including:
-
receiving from a remote system an indicator of a level of compliance with security rules, and a system identifier for the remote system corresponding to an access request; and
providing an access assignment for the remote system based at least in part on the indicator and validity of the system identifier. - View Dependent Claims (25, 26, 27, 28, 29)
-
-
30. An apparatus to present credentials for authentication to obtain network access, comprising:
-
a persistent storage to store a value associated with the device;
a network interface to transmit the value to an authenticating entity in response to a request for authentication credentials; and
a security verification module communicatively coupled with the network interface to determine compliance of a device platform with an integrity policy and report the compliance to the authenticating entity in response to the request for authentication credentials. - View Dependent Claims (31, 32, 33, 34, 35, 36, 37, 38, 39, 40, 41, 42)
-
-
43. An apparatus to authenticate, comprising:
-
a receiver to receive from a device a digital identifier to indicate a user identity associated with the device, and a policy compliance report for the device;
a processor coupled with the receiver to verify validity of the digital identifier and determine a level of compliance based at least in part on the report; and
a policy enforcement module to determine an access assignment for the device based at least in part on the validity of the digital identifier and the level of compliance determined. - View Dependent Claims (44, 45, 46, 47, 48, 49, 50, 51)
-
-
52. A system comprising:
-
a network interface circuit having a compliance scanning module to determine observance of a computing platform on the system of a security policy; and
a transceiver to present system credentials and the determination of the observance in response to a request for credentials associated with authentication of the system; and
a Trusted Platform Module (TPM) coupled with the network interface circuit to store the system credentials to be presented. - View Dependent Claims (53, 54, 55)
-
Specification