Device certificate individualization
First Claim
Patent Images
1. One or more computer-readable memory devices or storage devices storing instructions which, when executed by one or more processing units, cause the one or more processing units to:
- access an instance of a device certificate template, wherein the device certificate template is shared by a plurality of devices of a product line and the device certificate template includes product line characteristics of the plurality of devices of the product line; and
use the instance of the device certificate template and information specific to an individual device of the plurality of devices to obtain a device certificate for the individual device, wherein the information specific to the individual device distinguishes the individual device from other devices of the product line,wherein the device certificate that is obtained using the instance of the device certificate template and the information specific to the individual device enables the individual device to access protected content, andwherein the device certificate template provides a chain of trust structure linking a first certificate associated with a manufacturer of the individual device to a second certificate associated with a certificate authority.
2 Assignments
0 Petitions
Accused Products
Abstract
A method of generating a device certificate. A method of generating a device certificate comprising, constructing a device certificate challenge at a device, sending information to a device certificate individualization server in response to the device certificate challenge, validating the device certificate challenge by the device certificate individualization server, and validating the device certificate response by the device.
782 Citations
23 Claims
-
1. One or more computer-readable memory devices or storage devices storing instructions which, when executed by one or more processing units, cause the one or more processing units to:
-
access an instance of a device certificate template, wherein the device certificate template is shared by a plurality of devices of a product line and the device certificate template includes product line characteristics of the plurality of devices of the product line; and use the instance of the device certificate template and information specific to an individual device of the plurality of devices to obtain a device certificate for the individual device, wherein the information specific to the individual device distinguishes the individual device from other devices of the product line, wherein the device certificate that is obtained using the instance of the device certificate template and the information specific to the individual device enables the individual device to access protected content, and wherein the device certificate template provides a chain of trust structure linking a first certificate associated with a manufacturer of the individual device to a second certificate associated with a certificate authority. - View Dependent Claims (2, 3, 4, 5, 6, 7)
-
-
8. A computing device comprising:
-
one or more processing units; and one or more memory devices or storage devices storing instructions which, when executed by the one or more processing units, cause the one or more processing units to; access a device certificate template for a product line, wherein the computing device is one of a plurality of devices of the product line and the device certificate template identifies one or more device features that are common to the plurality of devices of the product line; and use the device certificate template and information specific to the computing device to obtain a device certificate for the computing device, wherein; the device certificate enables the computing device to access protected content, the device certificate template comprises another certificate associated with a manufacturer of the plurality of computing devices of the product line, and the one or more device features included in the device certificate template distinguish the product line from at least some other product lines. - View Dependent Claims (9, 10, 11, 12, 13, 14, 15, 16)
-
-
17. A method performed by at least one computer processing unit, the method comprising:
-
populating a device certificate template to obtain a populated device certificate template comprising; information common to a plurality of computing devices of a product line, an authorization certificate associated with a manufacturer of the plurality of computing devices of the product line, and an authorization root certificate associated with a certificate authority, wherein the plurality of computing devices have stored thereon different identifiers; receiving, from the plurality of computing devices, the different identifiers; and using the populated device certificate template and the different identifiers to create a plurality of individualized device certificates for the plurality of computing devices responsive to receiving the different identifiers. - View Dependent Claims (18, 19, 20, 21, 22, 23)
-
Specification