Techniques to provision and manage a digital telephone to authenticate with a network

US 8,943,560 B2
Filed: 05/28/2008
Issued: 01/27/2015
Est. Priority Date: 05/28/2008
Status: Active Grant

First Claim

Patent Images

1. A method, comprising:

receiving a personal identification number by a digital telephone comprising a microphone;

receiving encrypted security credentials from a first computing device, the digital telephone and the first computing device comprising a trusted pair;

decrypting the encrypted security credentials with the personal identification number;

transmitting the decrypted security credentials to a communications server at a second computing device, the decrypted security credentials comprising security information;

receiving an authentication request by the digital telephone from the communications server, the authentication request requesting for a remaining portion of the security information;

transmitting the authentication request from the digital telephone to the first computing device;

receiving the remaining portion of the security information by the digital telephone from the first computing device;

transmitting the remaining portion of the security information of the digital telephone to the communications server at the second computing device; and

completing authentication of the digital telephone with the communications server at the second computing device using the remaining portion of the security information.

View all claims

2 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

Techniques to manage digital telephones are described. An apparatus may comprise a digital telephone management component having a telephone interface module operative to receive security information in the form of a personal identification number (PIN) for an operator or device. The digital telephone management component may also comprise a telephone security module communicatively coupled to the telephone interface module, the telephone security module operative to receive encrypted security credentials from a computing device, and decrypt the encrypted security credentials with the PIN. The digital telephone management component may further comprise a telephone authentication module communicatively coupled to the telephone security module, the telephone authentication module operative to authenticate the digital telephone using the security credentials. Other embodiments are described and claimed.

19 Citations

20 Claims

1. A method, comprising:
- receiving a personal identification number by a digital telephone comprising a microphone;
  
  receiving encrypted security credentials from a first computing device, the digital telephone and the first computing device comprising a trusted pair;
  
  decrypting the encrypted security credentials with the personal identification number;
  
  transmitting the decrypted security credentials to a communications server at a second computing device, the decrypted security credentials comprising security information;
  
  receiving an authentication request by the digital telephone from the communications server, the authentication request requesting for a remaining portion of the security information;
  
  transmitting the authentication request from the digital telephone to the first computing device;
  
  receiving the remaining portion of the security information by the digital telephone from the first computing device;
  
  transmitting the remaining portion of the security information of the digital telephone to the communications server at the second computing device; and
  
  completing authentication of the digital telephone with the communications server at the second computing device using the remaining portion of the security information.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10)
- - 2. The method of claim 1, comprising storing the encrypted security credentials at the digital telephone for subsequent authentication requests from the communications server.
  - 3. The method of claim 1, comprising decrypting a domain user name, password, and domain name from the encrypted security credentials with the personal identification number.
  - 4. The method of claim 1, comprising sending a registration request with a domain user name, a password and domain name decrypted from the encrypted security credentials to the communications server.
  - 5. The method of claim 1, comprising decrypting a domain user name and domain name from the encrypted security credentials with the personal identification number.
  - 6. The method of claim 1, comprising sending a registration request with a domain user name and domain name decrypted from the encrypted security credentials to the communications server.
  - 7. The method of claim 1, comprising relaying an authentication request from the communications server to the first computing device, and a password from the first computing device to the communications server to authenticate the digital telephone.
  - 8. The method of claim 1, comprising receiving control directives to lock or unlock the digital telephone from the first computing device.
  - 9. The method of claim 1, comprising sending control directives to lock or unlock the first computing device from the digital telephone.
  - 10. The method of claim 1, comprising determining to lock or unlock the digital telephone based on presence information for the first computing device.

11. An article of manufacture comprising a storage device containing instructions that if executed enable a system to:
- receive a personal identification number by a digital telephone comprising a microphone;
  
  receive encrypted security credentials from a first computing device, the digital telephone and the first computing device comprising a trusted pair;
  
  decrypt the encrypted security credentials with the personal identification number;
  
  transmit the decrypted security credentials to a communications server at a second computing device, the decrypted security credentials comprising security information;
  
  receive an authentication request by the digital telephone from the communications server, the authentication request requesting for a remaining portion of the security information, the remaining portion of the security information comprising a password;
  
  transmit the authentication request from the digital telephone to the first computing device;
  
  receive the remaining portion of the security information by the digital telephone from the first computing device;
  
  transmit the remaining portion of the security information of the digital telephone to the communications server at the second computing device; and
  
  complete authentication of the digital telephone with the communications server at the second computing device using the remaining portion of the security information.
- View Dependent Claims (12, 13, 14, 15)
- - 12. The article of manufacture of claim 11, further comprising instructions that if executed enable the system to send a registration request with a domain user name, a password and domain name decrypted from the encrypted security credentials to the communications server.
  - 13. The article of manufacture of claim 11, further comprising instructions that if executed enable the system to receive control directives to lock or unlock the digital telephone from the first computing device.
  - 14. The article of manufacture of claim 11, further comprising instructions that if executed enable the system to send control directives to lock or unlock the first computing device from the digital telephone.
  - 15. The article of manufacture of claim 11, further comprising instructions that if executed enable the system to determine to lock or unlock the digital telephone based on presence information for the first computing device.

16. An apparatus, comprising:
- a digital telephone management component operative to manage a digital telephone, the digital telephone comprising a microphone, the digital telephone management component comprising;
  
  a telephone interface module operative to receive a personal identification number by the digital telephone;
  
  a telephone security module communicatively coupled to the telephone interface module, the telephone security module operative to receive encrypted security credentials from a first computing device, and decrypt the encrypted security credentials with the personal identification number, the encrypted security credentials comprising a first portion of security information, the digital telephone and the first computing device comprising a trusted pair; and
  
  a telephone authentication module communicatively coupled to the telephone security module, the telephone authentication module operative to provide a relay circuit between the first computing device and a communications server at a second computing device to transmit the first portion of the security information and a second portion of the security information and authenticate the digital telephone with the communications server at the second computing device using the first portion of the security information and the second portion of the security information.
- View Dependent Claims (17, 18, 19, 20)
- - 17. The apparatus of claim 16, the telephone authentication module operative to send a registration request with a domain user name, a password and domain name decrypted from the encrypted security credentials to the communications server.
  - 18. The apparatus of claim 16, the telephone authentication module operative to send a registration request with a domain user name and domain name decrypted from the encrypted security credentials to the communications server.
  - 19. The apparatus of claim 16, the telephone authentication module operative to relay an authentication request from the communications server to the first computing device, and a password from the first computing device to the communications server to authenticate the digital telephone.
  - 20. The apparatus of claim 16, comprising a storage component communicatively coupled to the digital telephone management component, the storage component operative to store the encrypted security credentials for subsequent authentication requests from the communications server.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Microsoft Technology Licensing LLC (Microsoft Corporation)
Original Assignee
Microsoft Corporation
Inventors
Krantz, Anton, Ramanathan, Rajesh, Potra, Adrian
Primary Examiner(s)
Arani, Taghi
Assistant Examiner(s)
VICTORIA, NARCISO F

Application Number

US12/127,828
Publication Number

US 20090296930A1
Time in Patent Office

2,435 Days
Field of Search

726/5
US Class Current

726/5
CPC Class Codes

G06F 21/31   User authentication

H04L 2463/062   applying encryption of the ...

H04L 63/08   for authentication of entit...

H04L 63/0815   providing single-sign-on or...

H04L 63/0823   using certificates cryptogr...

H04L 63/083   using passwords cryptograph...

H04L 63/0853   using an additional device,...

H04L 9/32   including means for verifyi...

H04L 9/3226   using a predetermined code,...

H04M 1/2473   Telephone terminals interfa...

H04M 1/2535   adapted for voice communica...

H04Q 2213/13095   PIN / Access code, authenti...

Techniques to provision and manage a digital telephone to authenticate with a network

First Claim

2 Assignments

0 Petitions

Accused Products

Abstract

19 Citations

20 Claims

Specification

Solutions

Use Cases

Quick Links

Techniques to provision and manage a digital telephone to authenticate with a network

First Claim

2 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

19 Citations

20 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links