DISTRIBUTED DEVICE REVOCATION
First Claim
1. A distributed revocation method comprising:
- conducting a vote amongst at least three autonomous device nodes of a distributed network regarding whether a suspect autonomous device node of the distributed network should be removed from the distributed network; and
responsive to said vote satisfying a revocation criterion, ceasing communication between the suspect autonomous device node and the other autonomous device nodes of the distributed network by (i) constructing a revocation message by combining partial revocation information for revoking the suspect autonomous device node that is distributed amongst at least some of the autonomous device nodes of the distributed network other than the suspect autonomous device node, and (ii) intercommunicating the revocation message amongst the autonomous device nodes of the distributed network.
1 Assignment
0 Petitions
Accused Products
Abstract
In a distributed revocation method, it is individually decided at each of a plurality of autonomous device nodes of a distributed network whether a suspect autonomous device node or suspect distributed key of the distributed network should be removed from the distributed network. A voting session is conducted at which the individual decisions of the plurality of autonomous device nodes are combined to decide whether the suspect autonomous device node or suspect distributed key should be removed from the distributed network. The suspect autonomous device node or suspect distributed key is removed from the distributed network responsive to the voting session deciding in favor of removal.
-
Citations
29 Claims
-
1. A distributed revocation method comprising:
-
conducting a vote amongst at least three autonomous device nodes of a distributed network regarding whether a suspect autonomous device node of the distributed network should be removed from the distributed network; and responsive to said vote satisfying a revocation criterion, ceasing communication between the suspect autonomous device node and the other autonomous device nodes of the distributed network by (i) constructing a revocation message by combining partial revocation information for revoking the suspect autonomous device node that is distributed amongst at least some of the autonomous device nodes of the distributed network other than the suspect autonomous device node, and (ii) intercommunicating the revocation message amongst the autonomous device nodes of the distributed network. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10)
-
- 11. An autonomous device node configured to securely communicate with other autonomous device nodes in a distributed network and to cooperate with other autonomous device nodes with which it is in secure communication to perform a distributed revocation method including (i) conducting a vote amongst at least three autonomous device nodes of a distributed network regarding whether a suspect autonomous device node of the distributed network should be removed from the distributed network, and (ii) ceasing communication with the suspect autonomous device node responsive to said vote satisfying a revocation criterion.
-
15. A distributed revocation method comprising:
-
conducting a temporally limited revocation session at which individual decisions of a plurality of autonomous device nodes are combined to decide whether a suspect autonomous device node should be removed from the distributed network; and removing the suspect autonomous device node from the distributed network responsive to the revocation session deciding in favor of removal. - View Dependent Claims (16, 17, 18, 19, 20, 21, 22, 23)
-
-
24. In a distributed medical monitoring network, a plurality of nodes, each node programmed to:
confer and decide democratically with other nodes of the network whether to revoke network communication with a node detected engaging in one or more suspicious activities. - View Dependent Claims (25)
-
26. A distributed network comprising a plurality of nodes, each node configured to:
-
(i) randomly generate and distribute to other nodes partial revocation votes combinable to construct a revocation message against the node such that the partial revocation vote distributed to one other node cannot be replicated or forged by another node; and (ii) store partial revocation votes received from other nodes. - View Dependent Claims (27, 28, 29)
-
Specification