AUTHENTICATION AND BINDING OF MULTIPLE DEVICES
First Claim
1. A method comprising:
- receiving, by a second device with a higher security profile, a first registration request from a first device associated with a lower security profile, wherein the first registration request comprises a request for access to content from a content provider and wherein the first registration request has been digitally signed by the first device with a first digital signature;
determining, by a processor of the second device, when the first device is authorized to receive the content;
when the first device is authorized to receive the content, digitally signing, by the processor, the first registration request with a second digital signature so that the first registration request includes both the first and the second digital signatures; and
transmitting the first registration request with the first and the second digital signatures to the content provider.
1 Assignment
0 Petitions
Accused Products
Abstract
Systems and methods are described that relate to authentication and/or binding of multiple devices with varying security profiles. In one aspect, a first device with a higher security profile may vouch for the authenticity of a second device with a lower security profile when the second device requests access for content from a content provider. The vouching process may be implemented by allowing the first device to overlay its digital signature on a registration request that has been signed and transmitted by the second device. The second device with the lower security profile may access content from the content provider or source for a predetermined time period, even when the second device does not access content through the first device.
40 Citations
20 Claims
-
1. A method comprising:
-
receiving, by a second device with a higher security profile, a first registration request from a first device associated with a lower security profile, wherein the first registration request comprises a request for access to content from a content provider and wherein the first registration request has been digitally signed by the first device with a first digital signature; determining, by a processor of the second device, when the first device is authorized to receive the content; when the first device is authorized to receive the content, digitally signing, by the processor, the first registration request with a second digital signature so that the first registration request includes both the first and the second digital signatures; and transmitting the first registration request with the first and the second digital signatures to the content provider. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11)
-
-
12. An apparatus comprising:
-
a processor; and a memory storing computer-readable instructions that, when executed by the processor, cause the processor to perform a method comprising; receiving, at a second device with a higher security profile, a first registration request from a first device associated with a lower security profile, wherein the first registration request comprises a request for registering onto a managed network for a predetermined time period and wherein the first registration request has been digitally signed by the first device with a first digital signature; determining when the first device is authorized to register onto the managed network; when the first device is authorized to register onto the managed network, vouching for the first device by digitally signing the first registration request with a second digital signature so that the first registration request includes both the first and the second digital signatures; and transmitting the first registration request with the first and the second digital signatures to the managed network. - View Dependent Claims (13, 14, 15, 16)
-
-
17. A computer-readable storage medium having computer-executable program instructions stored thereon that when executed by a processor, cause the processor to perform steps comprising:
-
receiving, at a second device, a registration request that has been signed by a first device with a first digital signature, wherein the registration request requests access to content for a first predetermined time period; determining when the first device is authorized to access the content; when the first device is authorized to access the content; overlaying a second digital signature on the registration request to vouch for authenticity of the first device; transmitting the registration request to a provider of the content; receiving a response to the registration request from the provider; and transmitting the response to the first device. - View Dependent Claims (18, 19, 20)
-
Specification