Communicating a secret
First Claim
Patent Images
1. A computer-implemented method for providing a cryptographic key having a plurality of portions, comprising:
- sending a first portion of the cryptographic key over a secure channel, from a first home automation device in a home automation network, to a second device distinct from the first device,wherein the sending of the first portion of the cryptographic key from the first device to the second device comprises displaying the first portion to a user through a limited output display of the first device, to allow the user to enter the first portion into the second device through a keypad of the second device;
clearing the display after displaying the first portion of the cryptographic key;
receiving over a non-secure channel, by the first device from a third device different than the second device, a command to provide a second portion of the cryptographic key;
sending over the secure channel, from the first device to the second device, the second portion of the cryptographic key,wherein the sending of the second portion from the first device to the second device comprises displaying the second portion to the user through the display, to allow the user to enter the second portion into the second device through the keypad; and
determining that all of the plurality of portions of the cryptographic key have been sent.
2 Assignments
0 Petitions
Accused Products
Abstract
A first portion of a cryptographic key can be conveyed through a secure channel to a device that can interact with a home network. After the first portion is received, a prompt can be sent by the recipient of the portion through a non-secure channel to the sender of the portion to send a second portion of the key. The cryptographic key can be constituted from the received portions and used by the device to secure communications with home network.
-
Citations
9 Claims
-
1. A computer-implemented method for providing a cryptographic key having a plurality of portions, comprising:
-
sending a first portion of the cryptographic key over a secure channel, from a first home automation device in a home automation network, to a second device distinct from the first device, wherein the sending of the first portion of the cryptographic key from the first device to the second device comprises displaying the first portion to a user through a limited output display of the first device, to allow the user to enter the first portion into the second device through a keypad of the second device; clearing the display after displaying the first portion of the cryptographic key; receiving over a non-secure channel, by the first device from a third device different than the second device, a command to provide a second portion of the cryptographic key; sending over the secure channel, from the first device to the second device, the second portion of the cryptographic key, wherein the sending of the second portion from the first device to the second device comprises displaying the second portion to the user through the display, to allow the user to enter the second portion into the second device through the keypad; and determining that all of the plurality of portions of the cryptographic key have been sent. - View Dependent Claims (2)
-
-
3. A computer-implemented method for receiving a cryptographic key having a plurality of portions, comprising:
-
receiving, through a secure channel, a first portion of the cryptographic key from a first home automation device in a home automation network, wherein the receiving of the first portion comprises receiving the first portion at a second device, distinct from the first device, through a user-operated keypad of the second device after the first portion has been displayed to the user on a limited output display of the first device; storing, by a computing device, the first portion of the cryptographic key in a computer-readable storage; receiving a second portion of the cryptographic key at least partially through the secure channel, wherein the receiving of the second portion comprises receiving the second portion through the keypad from the user, after the second portion has been displayed to the user; combining the second portion of the cryptographic key with the first portion of the cryptographic key; sending, by the computing device, over a non-secure channel, a command to display over the secure channel a third portion of the cryptographic key; sending, over the non-secure channel, an indication that all of the cryptographic key has been received; and sending over the non-secure channel a command to clear the display. - View Dependent Claims (4, 5)
-
-
6. A system comprising:
-
in a home automation device in a home automation network, a memory for storing a cryptographic key having a plurality of portions; and a processor connected to the memory, the processor configured to; send over a secure channel, to a first remote device distinct from the home automation device, a first portion of the cryptographic key, wherein the sending of the first portion of the cryptographic key to the first remote device comprises displaying the first portion to a user through a limited output display of the home automation device, to allow the user to enter the first portion into a keypad of the first remote device; clear the display after displaying the first portion of the cryptographic key; receive, over a non-secure channel from a second remote device, a command to display a second portion of the cryptographic key; send over the secure channel the second portion of the cryptographic key, wherein the sending of the second portion comprises displaying the second portion to the user to allow the user to enter the second portion into the first remote device through the keypad; and determine that all of the plurality of the portions of the cryptographic key have been displayed. - View Dependent Claims (7)
-
-
8. A system, comprising:
-
in a remote device, a memory configured to store portions of a cryptographic key; a processor connected to the memory, the processor configured to; receive a first portion of the cryptographic key through a secure channel from a home automation device, distinct from the remote device, in a home automation network, wherein the receiving of the first portion comprises receiving the first portion through a user-operated keypad of the remote device, after the first portion has been displayed to the user on a limited output display of the home automation device; store the first portion of the cryptographic key; receive a second portion of the cryptographic key through the secure channel, wherein the receiving of the second portion comprises receiving the second portion through the keypad from the user after the second portion has been displayed to the user; combine the second portion of the cryptographic key with the first portion of the cryptographic key; send over a non-secure channel a command to display over the secure channel a third portion of the cryptographic key; determine that all of the plurality of portions of the cryptographic key have been received; and send over the non-secure channel a command to clear the display. - View Dependent Claims (9)
-
Specification