Device certificate individualization

US 8,347,078 B2
Filed: 12/20/2004
Issued: 01/01/2013
Est. Priority Date: 10/18/2004
Status: Active Grant

First Claim

Patent Images

1. A method of generating a device certificate, the method comprising:

initiating a trigger originating at a device without connecting the device to a second device;

constructing, in response to the trigger, a device certificate challenge at the device based at least in part on device specific information and a device certificate template disposed on the device at a time of manufacture;

sending the device certificate challenge to a device certificate individualization server in response to the construction of the device certificate challenge;

receiving a device certificate response at the device from the device certificate individualization server, the device certificate response indicative of a validation of the device certificate challenge by the device certificate individualization server; and

validating the device certificate response by the device.

View all claims

2 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A method of generating a device certificate. A method of generating a device certificate comprising, constructing a device certificate challenge at a device, sending information to a device certificate individualization server in response to the device certificate challenge, validating the device certificate challenge by the device certificate individualization server, and validating the device certificate response by the device.

696 Citations

20 Claims

1. A method of generating a device certificate, the method comprising:
- initiating a trigger originating at a device without connecting the device to a second device;
  
  constructing, in response to the trigger, a device certificate challenge at the device based at least in part on device specific information and a device certificate template disposed on the device at a time of manufacture;
  
  sending the device certificate challenge to a device certificate individualization server in response to the construction of the device certificate challenge;
  
  receiving a device certificate response at the device from the device certificate individualization server, the device certificate response indicative of a validation of the device certificate challenge by the device certificate individualization server; and
  
  validating the device certificate response by the device.
- View Dependent Claims (2, 3, 4, 5, 6)
- - 2. The method of claim 1, the device certificate challenge comprising the device certificate template.
  - 3. The method of claim 2, the device certificate template comprised in the device certificate challenge being signed and the device certificate template comprising an authorization certificate.
  - 4. The method of claim 1, the device certificate challenge comprising the device specific information.
  - 5. The method of claim 1, the device certificate challenge comprising a URL of the device certificate individualization server.
  - 6. The method of claim 1, validating the device certificate response comprising imparting the device certificate on the device, the device certificate configured to allow an encrypted file to be accessed by the device.

7. A system for generating a device certificate, the system comprising:
- one or more processors; and
  
  memory comprising instructions that when executed via at least some of the one or more processors perform actions, comprising;
  
  initiating a trigger originating at a device without connecting the device to a second device;
  
  constructing, in response to the trigger, a device certificate challenge at the device based at least in part on device specific information and a device certificate template disposed on the device at a time of manufacture;
  
  sending the device certificate challenge to a device certificate individualization server in response to the construction of the device certificate challenge;
  
  receiving a device certificate response at the device from the device certificate individualization server, the device certificate response indicative of a validation of the device certificate challenge by the device certificate individualization server; and
  
  validating the device certificate response by the device.
- View Dependent Claims (8, 9, 10, 11)
- - 8. The system of claim 7, wherein the device certificate template includes information that is common to a product line of devices that includes the device and one or more other devices, and the device certificate response received from the device certificate individualization server is unique to the device.
  - 9. The system of claim 7, wherein the device certificate template includes information that is common to a product line of devices that includes the device and one or more other devices.
  - 10. The system of claim 7, the device certificate response comprising the device certificate.
  - 11. The system of claim 7, validating the device certificate response comprising an action of imparting the device certificate on the device.

12. A computer readable storage device comprising computer executable instructions that when executed via a processor perform a method for generating a device certificate, the method comprising:
- initiating a trigger originating at a device without connecting the device to a second device;
  
  constructing, in response to the trigger, a device certificate challenge at the device based at least in part on device specific information and a device certificate template disposed on the device at a time of manufacture;
  
  sending the device certificate challenge to a device certificate individualization server in response to the construction of the device certificate challenge;
  
  receiving a device certificate response at the device from the device certificate individualization server, the device certificate response indicative of a validation of the device certificate challenge by the device certificate individualization server; and
  
  validating the device certificate response by the device.
- View Dependent Claims (13, 14, 15, 16, 17, 18, 19, 20)
- - 13. The computer readable storage device of claim 12, wherein the device certificate template includes information that is common to a product line of devices that includes the device and one or more other devices, and the device certificate response received from the device certificate individualization server is unique to the device.
  - 14. The computer readable storage device of claim 12, wherein the device certificate template includes information that is common to a product line of devices that includes the device and one or more other devices.
  - 15. The computer readable storage device of claim 12, the device certificate response comprising the device certificate.
  - 16. The computer readable storage device of claim 12, device specific portions of the device certificate template being completed based upon the device certificate response, yielding the device certificate unique to the device.
  - 17. The computer readable storage device of claim 12, no device certificate comprised on the device at the time of manufacture.
  - 18. The computer readable storage device of claim 12, the device certificate configured to allow an encrypted file to be accessed by the device.
  - 19. The computer readable storage device of claim 18, the encrypted file comprising at least one of a music file that is played after access by the device and a video file that is viewed after access by the device.
  - 20. The computer readable storage device of claim 12, the device certificate operating under a DRM system to cause playback of an encrypted file.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Microsoft Technology Licensing LLC (Microsoft Corporation)
Original Assignee
Microsoft Corporation
Inventors
Jain, Amit, Storm, Clifford Paul, Cutter, Benjamin Brooks Jr., Evans, Brian Patrick
Primary Examiner(s)
Shiferaw, Eleni
Assistant Examiner(s)
CALLAHAN, PAUL E

Application Number

US11/018,095
Publication Number

US 20060085634A1
Time in Patent Office

2,934 Days
Field of Search

380/44, 380/285, 713/156, 713/159, 713/173, 226/20, 726/20, 726/30
US Class Current

713/156
CPC Class Codes

G06F 21/10   Protecting distributed prog...

H04L 2209/603   Digital right managament [DRM]

H04L 9/3263   involving certificates, e.g...

H04L 9/3271   using challenge-response

Device certificate individualization

First Claim

2 Assignments

0 Petitions

Accused Products

Abstract

696 Citations

20 Claims

Specification

Solutions

Use Cases

Quick Links

Device certificate individualization

First Claim

2 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

696 Citations

20 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links