×

Asynchronous enhanced shared secret provisioning protocol

  • US 8,433,903 B2
  • Filed: 10/06/2008
  • Issued: 04/30/2013
  • Est. Priority Date: 03/31/2004
  • Status: Expired due to Fees
First Claim
Patent Images

1. A method for registering a first device with a second device, the method comprising:

  • deriving a first commitment value at the first device from a first registration nonce value known to the first device and sending the first commitment value from the first device to the second device;

    receiving, over at least a first communication channel, a second commitment value by the second device, wherein the second commitment value comprises at least one selected from the group consisting of the first commitment value and a commitment value generated by a third device;

    communicating, over the first communication channel, the first registration nonce value from the first device to the second device;

    receiving, over the first communication channel, a second registration nonce value by the second device, wherein the second registration nonce value comprises at least one selected from the group consisting of the first registration nonce value and a nonce value generated by the third device;

    at the second device, attempting to validate the second registration nonce value received by the second device by generating a value based on the second registration nonce value and verifying that the generated value is equal to the second commitment value;

    generating, at the first device, a first secret based at least in part on the first registration nonce value;

    generating, at the second device, a second secret based at least in part on the second registration nonce value; and

    verifying, using a second communication channel, first verification information derived from the first secret and the second verification information derived from the second secret.

View all claims
  • 1 Assignment
Timeline View
Assignment View
    ×
    ×