ACCESS CONTROL LISTS FOR PRIVATE NETWORKS OF SYSTEM AGNOSTIC CONNECTED DEVICES
First Claim
1. A system comprising:
- a gateway device coupled to a public and to a private network and for precluding access from the public network to the private network;
one or more internet-of-things (IoT) devices on the private network;
an app download server comprising a third-party app, the third-party app for requesting download to the gateway device and for requesting access to at least one function of an IoT device on the private network regardless as to the IoT device on which the function operates;
a manifest file;
an app connectivity service configured to;
record the at least one function requested by the third-party app to the manifest file;
identify available functions on the one or more IoT devices that match the at least one function requested by the third-party app;
record in the manifest file a mapping between those of the available functions that match the at least one function requested by the third-party app, one or more IoT devices hosting those of the available functions, and the third-party app;
prompt a user to allow the third-party app to have access to the available functions that match the at least one function requested by the third-party app; and
upon receiving authorization from the user, download and install the third-party app on the gateway device and allow the third-party app to access the available functions on the one or more IoT devices authorized by the user.
1 Assignment
0 Petitions
Accused Products
Abstract
The disclosure relates to using a control service to control external access to APIs of IoT devices on a private network. An external application can request access to an API, and in response, the control service can monitor broadcasts from the IoT devices indicating what APIs they have available. If a match exists, the control service can request user authorization to allow the requested access. The user can grant or deny the requested access, and place limitations on the authorized access. The control service uses this information to open a connection between the requesting application and the IoT device having the requested API, and via this connection, the requesting application can access and control the device running the requested API.
65 Citations
15 Claims
-
1. A system comprising:
-
a gateway device coupled to a public and to a private network and for precluding access from the public network to the private network; one or more internet-of-things (IoT) devices on the private network; an app download server comprising a third-party app, the third-party app for requesting download to the gateway device and for requesting access to at least one function of an IoT device on the private network regardless as to the IoT device on which the function operates; a manifest file; an app connectivity service configured to; record the at least one function requested by the third-party app to the manifest file; identify available functions on the one or more IoT devices that match the at least one function requested by the third-party app; record in the manifest file a mapping between those of the available functions that match the at least one function requested by the third-party app, one or more IoT devices hosting those of the available functions, and the third-party app; prompt a user to allow the third-party app to have access to the available functions that match the at least one function requested by the third-party app; and upon receiving authorization from the user, download and install the third-party app on the gateway device and allow the third-party app to access the available functions on the one or more IoT devices authorized by the user.
-
-
4. A method of controlling access to internet-of-things (IoT) devices selectively isolated from a public network by a gateway device, the method comprising:
-
compiling a list of available APIs on IoT devices that are on a private network; receiving a request from a third-party app to access a requested function regardless of an IoT device on the private network having the requested function; identifying matches between the requested function and the available APIs in the list of available APIs that provide the requested function; prompting a user to allow the third-party app to access the available APIs that provide the requested function; upon receiving authorization from the user, downloading and installing the third-party app on a device having access to the private network; and enabling the third-party app, once installed, to have access to those ones of the available APIs authorized by the user. - View Dependent Claims (5, 6, 7, 8, 9)
-
-
10. A system for controlling access to interment-of things (IoT) devices selectively isolated from a public network by a gateway device, the system comprising:
-
means for compiling a list of available APIs on IoT devices that are on a private network; means for receiving a request from a third-party app to access a requested function regardless of an IoT device on the private network having the requested function; means for identifying matches between the requested function and the available APIs in the list of available APIs that provide the requested function; means for prompting a user to allow the third-party app to access the available APIs that provide the requested function; means for upon receiving authorization from the user, downloading and installing the third-party app on a device having access to the private network; and means for enabling the third-party app, once installed, to have access to those ones of the available APIs authorized by the user. - View Dependent Claims (2, 3, 11, 12, 13, 14, 15)
-
Specification