Secure pairing for wired or wireless communications devices
First Claim
1. A method of pairing a host/trusted device and a peripheral device, the method comprising:
- sending a beacon signal from the host/trusted device seeking a nearby peripheral device including an identifier of the host/trusted device;
the peripheral device detecting the beacon signal and entering a beacon detect sub-state of a link initialization state;
the peripheral device replying to the beacon signal with an announcement including identification and entering an announced sub-state;
mutually authenticating the host/trusted device and the peripheral device-and obtaining from said peripheral device a device identification relating to said peripheral device identification by associating its printed serial number to the peripheral device'"'"'s public key and receiving at said peripheral device a device identification relating to said host/trusted device identification;
the first and second device checking their respective paired device databases to determine whether they are already paired with the respective other device;
upon determining that the first and second device are not already paired with the respective other device by checking their respective paired device databases, the host/trusted device requesting a pairing procedure with the peripheral device, the pairing procedure comprising;
a) the host/trusted device sending a pairing request signal to the peripheral device,b) the host/trusted and peripheral device entering into their respective pairing states,c) the peripheral device returning a pairing started signal to the host/trusted device,d) the peripheral device providing a visual indication to a user that pairing is in process,e) the peripheral device entering into a trusted mode in which it will not engage in a pairing procedure with any device other than the first device;
f)the host/trusted device displaying to a user a device identification of the peripheral trusted device,g) the user comparing the displayed device identification displayed on the host/trusted device with the device identification physically written on the peripheral device;
h) the user sending a pairing confirm signal via the first device to the peripheral device in the case where the user confirms that the displayed device identification of the peripheral device matches the device identification written on the peripheral device,i) the peripheral trusted device sending a pairing acknowledge signal to the host/trusted device; and
j) pairing the host/trusted device and the peripheral device;
wherein said pairing procedure is terminated if not completed within a pre-determined set time period.
3 Assignments
0 Petitions
Accused Products
Abstract
Pairing is achieved between a host communications device and a peripheral communications device, in order to establish an ad hoc wireless or wired network. A device identification, relating uniquely to the peripheral device, is displayed on the host device. In order to accept the pairing, the user confirms that the device identification displayed on the host device matches that printed on the peripheral device, and then completes the pairing procedure by pressing a key on the peripheral device, or, if Near Field Communication (NFC) techniques are implemented in the devices, by placing the peripheral device in contact with, or sufficiently close to, the host device. Thus, secure pairing is achieved, without requiring a complex user interface on the peripheral device.
18 Citations
48 Claims
-
1. A method of pairing a host/trusted device and a peripheral device, the method comprising:
-
sending a beacon signal from the host/trusted device seeking a nearby peripheral device including an identifier of the host/trusted device; the peripheral device detecting the beacon signal and entering a beacon detect sub-state of a link initialization state; the peripheral device replying to the beacon signal with an announcement including identification and entering an announced sub-state; mutually authenticating the host/trusted device and the peripheral device-and obtaining from said peripheral device a device identification relating to said peripheral device identification by associating its printed serial number to the peripheral device'"'"'s public key and receiving at said peripheral device a device identification relating to said host/trusted device identification; the first and second device checking their respective paired device databases to determine whether they are already paired with the respective other device; upon determining that the first and second device are not already paired with the respective other device by checking their respective paired device databases, the host/trusted device requesting a pairing procedure with the peripheral device, the pairing procedure comprising; a) the host/trusted device sending a pairing request signal to the peripheral device, b) the host/trusted and peripheral device entering into their respective pairing states, c) the peripheral device returning a pairing started signal to the host/trusted device, d) the peripheral device providing a visual indication to a user that pairing is in process, e) the peripheral device entering into a trusted mode in which it will not engage in a pairing procedure with any device other than the first device; f)the host/trusted device displaying to a user a device identification of the peripheral trusted device, g) the user comparing the displayed device identification displayed on the host/trusted device with the device identification physically written on the peripheral device; h) the user sending a pairing confirm signal via the first device to the peripheral device in the case where the user confirms that the displayed device identification of the peripheral device matches the device identification written on the peripheral device, i) the peripheral trusted device sending a pairing acknowledge signal to the host/trusted device; and j) pairing the host/trusted device and the peripheral device; wherein said pairing procedure is terminated if not completed within a pre-determined set time period. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16, 17, 18, 19, 20, 21)
-
-
22. A peripheral communications device, comprising:
-
means for detecting a beacon signal and entering a beacon detect sub-state of a link initialization state; means for replying to the beacon signal including an identifier of a host/trusted device, with an announcement including an identification and entering an announced sub-state; means for authenticating the peripheral device to a host/trusted device by associating the peripheral device printed serial number to the peripheral device'"'"'s public key, and transmitting a peripheral device identification to said host/trusted device; means for authenticating the said host/trusted device to the peripheral device, and receiving said host/trusted device identification; means for checking a paired device database to determine if said peripheral communication device is already paired with the host/trusted device; upon determining that the peripheral communications device is not already paired with the host/trusted device; means for putting the peripheral device into a trusted mode in which it will not engage in a pairing procedure with any device other than said host/trusted device; means for determining if said peripheral device has been placed in said trusted mode within a predetermined set time period; means for receiving a pairing acceptance input from a user and for confirming pairing with said host device in response to the pairing acceptance input. - View Dependent Claims (23, 24, 25, 26, 27, 28, 29, 30, 31, 32, 33, 34, 35)
-
-
36. A host communications device, comprising:
-
means for receiving a request to pair said host device with a peripheral device; means for authenticating the peripheral device based in part on the public keys of the host and peripheral devices, and obtaining from said peripheral device a device identification relating to said peripheral device; means for authenticating to the peripheral device and transmitting a host device identification to said peripheral device; means for checking a host communications paired device database to determine if said host communications device is already paired with the peripheral device; upon determining that the host communications device is not already paired with the peripheral device; means for obtaining a device identification relating to a trusted device; and means for comparing the device identification relating to the peripheral device and the device identification relating to the trusted device; means for pairing the host and peripheral devices in the event that the device identification relating to the peripheral device and the device identification relating to the trusted device match, and in response to the receipt of a pairing confirmation from the peripheral device, and means for determining if said pairing is completed within a predetermined set time period.
-
-
37. A host communications device, comprising:
-
means for sending a beacon signal to a nearby peripheral device, said beacon signal including an identifier of the host device; means for receiving a request to pair said host device with a peripheral device; means for authenticating the peripheral device using the peripheral device'"'"'s public key and obtaining from said peripheral device a device identification relating to said peripheral device; means for authenticating to the peripheral device and transmitting a host device identification to said peripheral device; means for checking a host communications paired device database to determine if said host communications device is already paired with the peripheral device; upon determining that the host communications device is not already paired with the peripheral device; means for displaying the device identification relating to said peripheral device; and means for pairing the host and peripheral communications devices in response to the receipt of a pairing confirmation from the peripheral device and a host pairing acceptance from the user entered into the host device, and means for determining if said pairing is completed within a predetermined set time period. - View Dependent Claims (38, 39, 40, 41, 42, 43, 44, 45, 46, 47, 48)
-
Specification