×

Establishing mutual authentication and secure channels in devices without previous credentials

  • US 7,646,874 B2
  • Filed: 12/22/2005
  • Issued: 01/12/2010
  • Est. Priority Date: 12/22/2005
  • Status: Expired due to Fees
First Claim
Patent Images

1. A method for installing encryption keys on a printing device not having any previous security credentials, the method comprising the steps of:

  • by an installation authority server;

    generating a security token to be used by the printing device for secure communications, and storing the generated security token for the printing device in the installation authority server;

    generating an installation credential for the printing device, wherein the installation credential comprises one of a barcode or an alphanumeric code and is to be used by the printing device to obtain the security token from the installation authority server;

    correlating, in a data base of the installation authority server, the installation credential generated for the printing device with the generated security token for the printing device; and

    generating a hardcopy format of the installation credential, wherein the hardcopy format of the installation credential is provided to a user of the printing device for an initial installation of the encryption keys in the printing device;

    by the printing device;

    accepting an input of the installation credential by the user of the printing device who inputs the installation credential into the printing device;

    utilizing the input installation credential as a temporary security key for secure communications, the printing device establishing a temporary secure communication channel with the installation authority server;

    generating a request message to be sent to the installation authority server for requesting that the installation authority server provide the generated security token to the printing device;

    encrypting the generated request message using the installation credential; and

    transmitting the encrypted request message to the installation authority server over the established temporary secure communication channel,by the installation authority server;

    receiving the request message encrypted with the installation credential from the printing device via the established temporary secure communication channel;

    decrypting the request message and performing an authentication process to authenticate the printing device after having received the request message for provision of the security token;

    in a case where the printing device is authenticated, obtaining the security token of the printing device correlated in the database with the installation credential;

    encrypting the obtained security token of the printing device using the installation credential; and

    transmitting the encrypted security token of the printing device to the printing device over the established temporary secure communication channel; and

    by the printing device;

    receiving the encrypted security token transmitted by the installation authority server;

    decrypting the security token using the installation credential input into the printing device by the user;

    performing an installation process to install the security token on the printing device; and

    after having completed the installation process, erasing the installation credential from the printing device.

View all claims
  • 1 Assignment
Timeline View
Assignment View
    ×
    ×