Secure credential management
First Claim
1. An apparatus, comprising:
- a data store to store an authentication data associated with a connectivity authentication process (CAP);
an authentication supplicant (AS) logic to provide a response to an authentication communication (ACM) associated with the CAP;
an authentication management (AM) logic to receive the ACM from a connection management (CM) logic associated with a host operating system (HOS) to which the apparatus is operably connected, where the AM logic is to selectively provide the ACM to the AS logic, and where the AM logic is to provide the response from the AS logic to the CM logic; and
a device management (DM) client logic to provide a secure connection to an operator DM server associated with the CAP and to selectively provide authentication data to a network module associated with the HOS;
the AS logic, the AM logic, and the DM client logic being resident in firmware that is not executable by the HOS.
1 Assignment
0 Petitions
Accused Products
Abstract
Apparatus and methods associated with providing secure credential management are described. One apparatus embodiment includes a data store to store authentication data and an authentication supplicant (AS) logic to provide a response to an authentication communication (ACM) received from an authentication process. An authentication management (AM) logic may receive the ACM from a connection management (CM) logic associated with a host operating system (HOS), provide the ACM to the AS logic, and provide the response back to the CM logic. The apparatus may include a device management (DM) client logic to provide a secure connection to an operator DM server associated with the authentication process and to store authentication data provided by the operator DM server in the data store. The AS logic, AM logic, and DM logic may reside in firmware that is not accessible to the HOS.
-
Citations
15 Claims
-
1. An apparatus, comprising:
-
a data store to store an authentication data associated with a connectivity authentication process (CAP); an authentication supplicant (AS) logic to provide a response to an authentication communication (ACM) associated with the CAP; an authentication management (AM) logic to receive the ACM from a connection management (CM) logic associated with a host operating system (HOS) to which the apparatus is operably connected, where the AM logic is to selectively provide the ACM to the AS logic, and where the AM logic is to provide the response from the AS logic to the CM logic; and a device management (DM) client logic to provide a secure connection to an operator DM server associated with the CAP and to selectively provide authentication data to a network module associated with the HOS; the AS logic, the AM logic, and the DM client logic being resident in firmware that is not executable by the HOS. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13)
-
-
14. A method, comprising:
controlling a logic to proxy communications between an external authentication challenger and an internal silicon-based authentication responder. - View Dependent Claims (15)
Specification