SECURING CREDENTIAL DISTRIBUTION

US 20160066183A1
Filed: 11/12/2015
Published: 03/03/2016
Est. Priority Date: 07/17/2014
Status: Active Grant

First Claim

Patent Images

1. A computer-implemented method for securing credential distribution, comprising:

receiving, by a cloud system, notification from a credential management system that a wireless device is associated with an authenticated user of the credential management system, wherein the credential management system stores private network credentials of the authenticated user, and wherein the cloud system further receives an identifier of the wireless device with the notification;

receiving, by the cloud system, the private network credentials of the authenticated user;

storing, by the cloud system, the private network credentials and the identifier of the wireless device;

receiving, by the cloud system, an authentication request from a router, wherein the router received the authentication request from the wireless device, wherein the authentication request was automatically requested by the wireless device, wherein the wireless device is preconfigured with device credentials;

returning, by the cloud system, a response to the authentication request to the router, wherein the response includes internet domains and connection bandwidths the wireless device is allowed to use;

authenticating, by the cloud system, the wireless device, ensuring that the wireless device is authorized to receive private network credentials; and

distributing, by the cloud system, the private network credentials to the wireless device, thereby allowing the wireless device to obtain local network access with the private network credentials.

View all claims

2 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

Methods, systems and apparatus for securing credential distribution are disclosed. One method includes receiving notification from a credential management system that a wireless device is associated with an authenticated user of the credential management system. The method further includes receiving the private network credentials of the authenticated user, storing the private network credentials and the identifier of the wireless device, receiving an authentication request from a router, returning a response to the authentication request to the router, wherein the response includes internet domains and connection bandwidths the wireless device is allowed to use, authenticating the wireless device, ensuring that the wireless device is authorized to receive private network credentials; and distributing, by the cloud system, the private network credentials to the wireless device, thereby allowing the wireless device to obtain local network access with the private network credentials.

Citations

21 Claims

1. A computer-implemented method for securing credential distribution, comprising:
- receiving, by a cloud system, notification from a credential management system that a wireless device is associated with an authenticated user of the credential management system, wherein the credential management system stores private network credentials of the authenticated user, and wherein the cloud system further receives an identifier of the wireless device with the notification;
  
  receiving, by the cloud system, the private network credentials of the authenticated user;
  
  storing, by the cloud system, the private network credentials and the identifier of the wireless device;
  
  receiving, by the cloud system, an authentication request from a router, wherein the router received the authentication request from the wireless device, wherein the authentication request was automatically requested by the wireless device, wherein the wireless device is preconfigured with device credentials;
  
  returning, by the cloud system, a response to the authentication request to the router, wherein the response includes internet domains and connection bandwidths the wireless device is allowed to use;
  
  authenticating, by the cloud system, the wireless device, ensuring that the wireless device is authorized to receive private network credentials; and
  
  distributing, by the cloud system, the private network credentials to the wireless device, thereby allowing the wireless device to obtain local network access with the private network credentials.
- View Dependent Claims (2, 3, 4, 5, 6)
- - 2. The computer-implemented method of claim 1, wherein the private network credentials are encrypted.
  - 3. The computer-implemented method of claim 1, further comprising a user of a mobile device that includes an application granting the credential management system authority to distribute the private network credentials of the authenticated user to the cloud system.
  - 4. The computer-implemented method of claim 1, further comprising a user of a mobile device that includes an application granting the cloud system authority to receive and distribute the private network credentials of the authenticated user.
  - 5. The computer-implemented method of claim 1, further comprising:
    - receiving, by the cloud system, a notification from the wireless device that the private network credentials are invalid;
      
      requesting, by the cloud system, new private network credentials from the credential management system;
      
      receiving, by the cloud system, new private network credentials from the credential management system; and
      
      distributing, by the cloud system, the new private network credentials to the wireless device.
  - 6. The computer-implemented method of claim 1, further comprising:
    - receiving, by the cloud system, a notification from the credential management system that previously distributed private network credentials should be invalidated;
      
      distributing, by the cloud system, the notification to the wireless device, indicating to the wireless device to remove the previously distributed private network credentials.

7. A computer-implemented method for securing credential distribution, comprising:
- receiving, by a cloud system, notification from a credential management system that a wireless device is associated with an authenticated user of the credential management system, wherein the credential management system stores private network credentials of the authenticated user, and wherein the cloud system further receives an identifier of the wireless device with the notification;
  
  receiving, by the cloud system, the private network credentials of the authenticated user;
  
  storing, by the cloud system, the private network credentials and the identifier of the wireless device;
  
  communicating, by the cloud system, with the wireless device through internet access provided by a public network;
  
  authenticating, by the cloud system, the wireless device, ensuring that the wireless device is authorized to receive private network credentials; and
  
  distributing, by the cloud system, the private network credentials to the wireless device, thereby allowing the wireless device to obtain local network access with the private network credentials.
- View Dependent Claims (8, 9, 10, 11, 12)
- - 8. The computer-implemented method of claim 7, wherein the private network credentials are encrypted.
  - 9. The computer-implemented method of claim 7, further comprising a user of a mobile device that includes an application granting the credential management system approval to distribute the private network credentials of the authenticated user to the cloud system.
  - 10. The computer-implemented method of claim 7, further comprising a user of a mobile device that includes an application granting the cloud system authority to receive and distribute the private network credentials of the authenticated user.
  - 11. The computer-implemented method of claim 7, further comprising:
    - receiving, by the cloud system, a notification from the wireless device that the private network credentials are invalid;
      
      requesting, by the cloud system, new private network credentials from the credential management system;
      
      receiving, by the cloud system, new private network credentials from the credential management system; and
      
      distributing, by the cloud system, the new private network credentials to the wireless device.
  - 12. The computer-implemented method of claim 7, further comprising:
    - receiving, by the cloud system, a notification from the credential management system that previously distributed private network credentials should be invalidated;
      
      distributing, by the cloud system, the notification to the wireless device, indicating to the wireless device to remove the previously distributed private network credentials.

13. A cloud system, comprising a plurality of servers, wherein at least one of the servers is operative to:
- receive notification from a credential management system that a wireless device is associated with an authenticated user of the credential management system, wherein the credential management system stores private network credentials of the authenticated user, and wherein the cloud system further receives an identifier of the wireless device with the notification;
  
  receive the private network credentials of the authenticated user;
  
  store the private network credentials and the identifier of the wireless device;
  
  receive an authentication request from a router, wherein the router received the authentication request from the wireless device, wherein the authentication request was automatically requested by the wireless device, wherein the wireless device is preconfigured with device credentials;
  
  return a response to the authentication request to the router, wherein the response includes internet domains and connection bandwidths the wireless device is allowed to use;
  
  authenticate the wireless device, ensuring that the wireless device is authorized to receive private network credentials; and
  
  distribute the private network credentials to the wireless device, thereby allowing the wireless device to obtain local network access with the private network credentials.
- View Dependent Claims (14, 15, 16, 17)
- - 14. The cloud system of claim 13, further comprising a user of a mobile device that includes an application granting the credential management system authority to distribute the private network credentials of the authenticated user to the cloud system.
  - 15. The cloud system of claim 13, further comprising a user of a mobile device that includes an application granting the cloud system authority to receive and distribute the private network credentials of the authenticated user.
  - 16. The cloud system of claim 13, wherein the cloud system is further operative to:
    - receive a notification from the wireless device that the private network credentials are invalid;
      
      request a new private network credentials from the credential management system;
      
      receive the new private network credentials from the credential management system; and
      
      distribute the new private network credentials to the wireless device.
  - 17. The cloud system of claim 13, wherein the cloud system is further operative to:
    - receive a notification from the credential management system that previously distributed private network credentials should be invalidated;
      
      distribute the notification to the wireless device, indicating to the wireless device to remove the previously distributed private network credentials.

18. A cloud system, comprising a plurality of servers, wherein at least one of the servers is operative to:
- receive notification from a credential management system that a wireless device is associated with an authenticated user of the credential management system, wherein the credential management system stores private network credentials of the authenticated user, and wherein the cloud system further receives an identifier of the wireless device with the notification;
  
  receive the private network credentials of the authenticated user;
  
  store the private network credentials and the identifier of the wireless device;
  
  communicate with the wireless device through internet access provided by a public network;
  
  authenticate the wireless device, ensuring that the wireless device is authorized to receive private network credentials; and
  
  distribute the private network credentials to the wireless device, thereby allowing the wireless device to obtain local network access with the private network credentials.
- View Dependent Claims (19, 20, 21)
- - 19. The cloud system of claim 18, further comprising a user of a mobile device that includes an application granting the cloud system authority to receive and distribute the private network credentials of the authenticated user.
  - 20. The cloud system of claim 18, wherein the cloud system is further operative to:
    - receive a notification from the wireless device that the private network credentials are invalid;
      
      request new private network credentials from the credential management system;
      
      receive new private network credentials from the credential management system; and
      
      distribute the new private network credentials to the wireless device.
  - 21. The cloud system of claim 18, wherein the cloud system is further operative to:
    - receive a notification from the credential management system that previously distributed private network credentials should be invalidated;
      
      distribute the notification to the wireless device, indicating to the wireless device to remove the previously distributed private network credentials.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Cypress Semiconductor Corporation (Infineon Technologies AG)
Original Assignee
Cirrent, Inc.
Inventors
Conant, Robert A., Nelson, Barbara

Granted Patent

US 9,942,756 B2
Time in Patent Office

Days
Field of Search
US Class Current

1/1
CPC Class Codes

G06F 21/602   Providing cryptographic fac...

H04L 63/0853   using an additional device,...

H04W 12/06   Authentication

H04W 12/068   using credential vaults, e....

SECURING CREDENTIAL DISTRIBUTION

First Claim

2 Assignments

0 Petitions

Accused Products

Abstract

Citations

21 Claims

Specification

Solutions

Use Cases

Quick Links

SECURING CREDENTIAL DISTRIBUTION

First Claim

2 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

Citations

21 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links