Method and apparatus for exclusively pairing wireless devices
First Claim
1. A method for establishing a security relationship between a first device and a second device, said first and second devices each having an associated device certificate, each of said device certificates having a unique device identifier for said corresponding device, and a user of said second device having access to the unique device identifier of said first device, said method comprising the steps of:
- initiating a pairing request from one of said devices to the other of said devices;
sending, from said first device, the device certificate of said first device to said second device;
cryptographically verifying, by said second device, said received device certificate of said first device;
outputting, at said second device, the device identifier of said first device contained in said first device certificate;
verifying, by said user and without accessing an intervening server, that said output device identifier contained in said first device certificate matches the unique identifier of said first device accessible by said user; and
, accepting, by said user, the association of said first device and said second device if said displayed device identifier is verified.
2 Assignments
0 Petitions
Accused Products
Abstract
A method and system for enabling wireless devices to be paired or permanently associated by a user or a network administrator. The method and system utilize well known public key cryptography and machine unique identifiers to establish a secure channel and associate the devices with eachother. This is extremely useful for associating a wireless headset with a telephone or associating a wireless mouse with a computer.
505 Citations
45 Claims
-
1. A method for establishing a security relationship between a first device and a second device, said first and second devices each having an associated device certificate, each of said device certificates having a unique device identifier for said corresponding device, and a user of said second device having access to the unique device identifier of said first device, said method comprising the steps of:
-
initiating a pairing request from one of said devices to the other of said devices;
sending, from said first device, the device certificate of said first device to said second device;
cryptographically verifying, by said second device, said received device certificate of said first device;
outputting, at said second device, the device identifier of said first device contained in said first device certificate;
verifying, by said user and without accessing an intervening server, that said output device identifier contained in said first device certificate matches the unique identifier of said first device accessible by said user; and
,accepting, by said user, the association of said first device and said second device if said displayed device identifier is verified. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 21, 22, 23, 24, 25, 27, 28)
-
-
16. A system for a user to establish a security relationship, said system comprising:
-
a first device;
a second device;
a device certificate with each of said first and second devices, each of said device certificates having a unique device identifier for said corresponding device, and a user of said second device having access to the unique device identifier of said first device, wherein;
one of said first and second devices initiates a pairing request to the other of said devices, and as a result of said pairing request, said first device sends said device certificate of said first device to said second device;
wherein said second device cryptographically verifies said received device certificate of said first device, and outputs the device identifier of said first device contained in said first device certificate; and
wherein said user verifies, without accessing an intervening server, that said unique output device identifier contained in said first device certificate matches the unique identifier of said first device accessible to said user and accepts the association of said first device and said second device if said displayed device identifier is verified. - View Dependent Claims (17, 18, 19, 20, 26, 29, 30)
-
-
31. A computer program product for establishing a security relationship between a first device and a second device, said first and second devices each having an associated device certificate, each of said device certificates having a unique device identifier for said corresponding device, and a user of said second device having access to the unique device identifier of said first device, said program product comprising:
-
computer readable program code means of initiating a pairing request from one of said devices to the other of said devices;
computer readable program code means of sending, from said first device, the device certificate of said first device to said second device;
computer readable program code means of cryptographically verifying, by said second device said received device certificate of said first device;
computer readable program code means of outputting, at said second device, the device identifier of said first device contained in said first device certificate;
computer readable program code means of verifying, by said user and without accessing an intervening server, that said output device identifier contained in said first device certificate matches the unique identifier of said first device accessible by said user; and
,computer readable program code means of accepting, by said user, the association of said first device and said second device if said displayed device identifier is verified. - View Dependent Claims (32, 33, 34, 35, 36, 37, 38, 39, 40, 41, 42, 43, 44, 45)
-
Specification