Secure device authentication
First Claim
1. A method for authenticating a client device into a network, comprising:
- at a server device, generating a multi-digit random secret number;
displaying the random secret number on a server display coupled to the server device;
while the client device is positioned in close enough physical proximity to the server device to permit observation of the displayed random secret number, receiving, at the client device, a signal representing sequential entry of each digit of the random secret number by actuation of a switch coupled to the client device a number of times equivalent to each digit of the random secret number; and
upon correct entry of the random secret number at the client device, completing an authentication and key exchange process using the random secret number in an encryption and decryption process carried out at the server device and the client device.
1 Assignment
0 Petitions
Accused Products
Abstract
A method for authenticating a client device into a network consistent with certain embodiments involves at a server device, generating a multi-digit random secret number; displaying the random secret number on a server display coupled to the server device; positioning the client device in close enough physical proximity to the server device to permit observation of the displayed random secret number; at the client device, sequentially entering each digit of the random secret number by actuation of a switch coupled to the client device a number of times equivalent to each digit of the random secret number; and upon correct entry of the random secret number at the client device, completing an authentication and key exchange process using the random secret number in an encryption and decryption process carried out at the server device and the client device. This abstract is not to be considered limiting, since other embodiments may deviate from the features described in this abstract.
-
Citations
34 Claims
-
1. A method for authenticating a client device into a network, comprising:
-
at a server device, generating a multi-digit random secret number; displaying the random secret number on a server display coupled to the server device; while the client device is positioned in close enough physical proximity to the server device to permit observation of the displayed random secret number, receiving, at the client device, a signal representing sequential entry of each digit of the random secret number by actuation of a switch coupled to the client device a number of times equivalent to each digit of the random secret number; and upon correct entry of the random secret number at the client device, completing an authentication and key exchange process using the random secret number in an encryption and decryption process carried out at the server device and the client device. - View Dependent Claims (2, 3, 4, 5, 6, 7)
-
-
8. A method for authenticating a client device into a network, comprising:
-
at a server device, generating a multi-digit random secret number; displaying the random secret number on a server display coupled to the server device; while the client device is positioned in close enough physical proximity to the server device to permit observation of the displayed random secret number, receiving, at the client device, a signal representing sequential entry of each digit of the random secret number by actuation of a switch coupled to the client device a number of times equivalent to each digit of the random secret number; hashing the random secret number at the server device using a hashing algorithm to produce a secret key; hashing the random secret number at the client device using the hashing algorithm to produce the secret key; and using the secret key to encrypt and decrypt an encryption/decryption key that is exchanged between the client device and the server device. - View Dependent Claims (9, 10, 11, 12, 13)
-
-
14. A method for authenticating a client device into a power line communication (PLC) network, comprising:
-
at a server device, generating a multi-digit random secret number; displaying the random secret number on a server display coupled to the server device; while the client device is positioned in close enough physical proximity to the server device to permit observation of the displayed random secret number, receiving, at the client device, a signal representing sequential entry of each digit of the random secret number by actuation of a switch coupled to the client device a number of times equivalent to each digit of the random secret number; at the client device, actuating an enter switch after entry of each digit in order to signify the end of entry of the digit; hashing the random secret number at the server device using a hashing algorithm to produce a secret key; hashing the random secret number at the client device using the hashing algorithm to produce the secret key; and using the secret key to encrypt and decrypt an encryption/decryption key that is exchanged between the client device and the server device. - View Dependent Claims (15, 16, 17)
-
-
18. A network client device, comprising:
-
a network interface for communication over a communication network; a switch;
wherein a random secret number can be entered at the client device by sequentially entering each digit of the random secret number by actuation of the switch a number of times equivalent to each digit of the random secret number;means for hashing the random secret number at the client device using the hashing algorithm to produce a secret key; and an encryption/decryption engine that uses the secret key in a decryption process for the exchange of an encryption/decryption key with a server device. - View Dependent Claims (19, 20, 21)
-
-
22. A network server device, comprising:
-
a network interface for communication over a communication network; a random number generator that generates a multi-digit random secret number; a display that displays the random secret number; means for hashing the random secret number using a hashing algorithm to produce a secret key; and an encryption/decryption engine that uses the secret key to encrypt an encryption/decryption key that is exchanged between a client device and the server device. - View Dependent Claims (23, 24, 25, 26, 27)
-
-
28. A communication network, comprising:
-
a server device having; a server network interface for communication over a communication medium; a random number generator that generates a multi-digit random secret number; a display that displays the random secret number; server hashing means for hashing the random secret number using a hashing algorithm to produce a secret key; and a server encryption/decryption engine that uses the secret key to exchange an encryption/decryption key between the server device and a client device; the client device having; a client network interface for communication over the communication network; a switch;
wherein a random secret number can be entered at the client device by sequentially entering each digit of the random secret number by actuation of the switch a number of times equivalent to each digit of the random secret number;client hashing means for hashing the random secret number at the client device using the hashing algorithm to produce a secret key; and a client encryption/decryption engine that uses the secret key to exchange of the encryption/decryption key with the server device. - View Dependent Claims (29, 30, 31, 32, 33, 34)
-
Specification