Secure provisioning of a portable device using a representation of a key

US 8,712,043 B2
Filed: 08/07/2012
Issued: 04/29/2014
Est. Priority Date: 09/30/2008
Status: Active Grant

First Claim

Patent Images

1. A system for provisioning devices for secure communication comprising:

a local device behind a firewall, the local device previously provisioned to communicate with a secure server via a secure network and configured to;

receive a representation of a key associated with a user, the key configured to allow a portable device located outside the firewall to communicate with a secure server located behind the firewall via a secure network; and

present, by the local device behind the firewall, the representation of the key to a user of the portable device outside the firewall using one or more output methods, wherein the presented representation of the key can be decoded using one or more data capture components.

View all claims

0 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A portable device initially accesses a secure server and requests a certificate. The secure server generates a random key and encodes the generated key to generate a representation of the key, such as a two-dimensional bar code or an audio signal, and communicated to a local device, such as a laptop or desktop computer, using a web interface. The local device is used to present the representation of the key to a mobile device. The mobile device then captures the representation of the key from the local device, for example using an image capture device or audio capture device, and extracts the key by decoding the representation of the key. The key is then stored by the mobile device and used to securely communicate with the secure server without manually entering the key.

7 Citations

20 Claims

1. A system for provisioning devices for secure communication comprising:
- a local device behind a firewall, the local device previously provisioned to communicate with a secure server via a secure network and configured to;
  
  receive a representation of a key associated with a user, the key configured to allow a portable device located outside the firewall to communicate with a secure server located behind the firewall via a secure network; and
  
  present, by the local device behind the firewall, the representation of the key to a user of the portable device outside the firewall using one or more output methods, wherein the presented representation of the key can be decoded using one or more data capture components.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8)
- - 2. The system of claim 1, wherein the representation of the key comprises an audio file that includes an encoding of the key.
  - 3. The system of claim 1, wherein the representation of the key comprises an image that includes an encoding of one or more of:
    - a network identifier associated with a proxy server;
      
      account information associated with the user;
      
      and the key.
  - 4. The system of claim 1, wherein the key comprises a fixed-length string.
  - 5. The system of claim 4, wherein the fixed-length string includes alphanumeric characters, numeric characters, or symbols.
  - 6. The system of claim 1, wherein the representation of the key comprises an image that includes an encoding of the key.
  - 7. The system of claim 6, wherein the image comprises a two-dimensional barcode.
  - 8. The system of claim 7, wherein the two-dimensional barcode comprises a matrix barcode.

9. A method for provisioning a portable device for communication using a secure network, the method comprising:
- receiving, at a local device behind a firewall, a representation of a key associated with a user, the key configured to allow a portable device located outside the firewall to communicate with a secure server located behind the firewall via a secure network,the local device previously provisioned to communicate with a secure server via a secure network; and
  
  presenting, by the local device behind the firewall, the representation of the key to a user of the portable device outside the firewall using one or more output methods, wherein the presented representation of the key can be decoded using one or more data capture components.
- View Dependent Claims (10, 11, 12, 13, 14, 15, 16)
- - 10. The method of claim 9, wherein the representation of the key comprises an audio file that includes an encoding of the key.
  - 11. The method of claim 9, wherein the representation of the key comprises an image that includes an encoding of one or more of:
    - determining a network identifier associated with a proxy server;
      
      determining account information associated with the user; and
      
      the key.
  - 12. The method of claim 9, wherein the key comprises a fixed-length string.
  - 13. The method of claim 12, wherein the fixed-length string includes alphanumeric characters, numeric characters, or symbols.
  - 14. The method of claim 9, wherein the representation of the key comprises an image that includes an encoding of the key.
  - 15. The method of claim 14, wherein the image comprises a two-dimensional barcode.
  - 16. The method of claim 15, wherein the two-dimensional barcode comprises a matrix barcode.

17. A method for provisioning a portable device for communication using a secure network comprising:
- capturing, by the portable device, a representation of a key presented by one or more output methods on a local device, the local device previously provisioned for communication using the secure network, the local device located behind a firewall and the portable device located outside the firewall;
  
  decoding, by the portable device, the representation of the key using one or more data capture components to extract the key;
  
  storing the extracted key; and
  
  establishing a connection to the secure network using the extracted key.
- View Dependent Claims (18, 19, 20)
- - 18. The method of claim 17, wherein capturing the representation of the key comprises:
    - capturing image data from the local device, the image data associated with the representation of the key.
  - 19. The method of claim 18, wherein decoding the representation of the key comprises:
    - enhancing the captured image data to generate enhanced imaged data; and
      
      extracting the key from the enhanced image data.
  - 20. The method of claim 18, wherein the captured image data comprises a two-dimensional barcode.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Apple Inc.
Original Assignee
Apple Inc.
Inventors
Yanagihara, Kazuhisa, Zelenka, Eric, Vaughan, Gregory B.
Primary Examiner(s)
Lipman, Jacob

Application Number

US13/568,879
Publication Number

US 20130034227A1
Time in Patent Office

630 Days
Field of Search

380/44
US Class Current

380/44
CPC Class Codes

H04L 2209/76 Proxy, i.e. using intermedi...

H04L 9/0827 involving distinctive inter...

Secure provisioning of a portable device using a representation of a key

First Claim

0 Assignments

0 Petitions

Accused Products

Abstract

7 Citations

20 Claims

Specification

Solutions

Use Cases

Quick Links

Secure provisioning of a portable device using a representation of a key

First Claim

0 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

7 Citations

20 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links