Stateless attestation system

US 9,497,210 B2
Filed: 04/07/2016
Issued: 11/15/2016
Est. Priority Date: 01/07/2008
Status: Active Grant

First Claim

Patent Images

1. A method comprising:

receiving, at a mobile computing device, an attestation record from a first server via a first operating environment in response to the first server verifying trustworthiness of the mobile computing device, wherein the mobile computing device comprises the first operating environment and a second operating environment isolated from the first operating environment;

storing, at the mobile computing device, the attestation record within a trusted platform module (TPM) via the first operating environment;

requesting, at the mobile computing device, access to a service of a second server over a network via the second operating, environment;

receiving, at the mobile computing device, an attestation request from the second server, via the second operating environment, in response to requesting access to the service;

obtaining, at the mobile computing device, the attestation record from the TPM, via the first operating environment;

transmitting, at the mobile computing device, the attestation record to the second server via the first operating environment; and

receiving, at the mobile computing device, access to the service in response to the second server verifying the attestation record.

View all claims

0 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A method includes assessing a trustworthiness level of a user computer by communication between the user computer and a first server. A record indicating the trustworthiness level is sent from the first server to the user computer, for storage by the user computer. A request is sent from the user computer to a second server, different from the first server, for a service to be provided to the user computer by the second server. The record is provided from the user computer to the second server by communicating between the user computer and the second server. At the second server, the trustworthiness level is extracted from the record, and the requested service is conditionally allowed to be provided to the user computer depending on the extracted trustworthiness level.

53 Citations

View as Search Results

15 Claims

1. A method comprising:
- receiving, at a mobile computing device, an attestation record from a first server via a first operating environment in response to the first server verifying trustworthiness of the mobile computing device, wherein the mobile computing device comprises the first operating environment and a second operating environment isolated from the first operating environment;
  
  storing, at the mobile computing device, the attestation record within a trusted platform module (TPM) via the first operating environment;
  
  requesting, at the mobile computing device, access to a service of a second server over a network via the second operating, environment;
  
  receiving, at the mobile computing device, an attestation request from the second server, via the second operating environment, in response to requesting access to the service;
  
  obtaining, at the mobile computing device, the attestation record from the TPM, via the first operating environment;
  
  transmitting, at the mobile computing device, the attestation record to the second server via the first operating environment; and
  
  receiving, at the mobile computing device, access to the service in response to the second server verifying the attestation record.
- View Dependent Claims (2, 3, 4, 5)
- - 2. The method of claim 1, wherein verifying trustworthiness of the mobile computing device comprises:
    - transmitting, at the mobile computing device configuration information to the first server, wherein the first server verifies trustworthiness of the mobile computing device based on the configuration information.
  - 3. The method of claim 2, further comprising transmitting, at the mobile computing device, a secure signature to the second server to cause the second server to verify trustworthiness of the mobile computing device based on the secure signature.
  - 4. The method of claim 1, wherein verifying trustworthiness of the mobile computing device comprises:
    - transmitting, at the mobile device, a value of a secure counter to the first server, wherein the value is incremented during each interaction of the mobile computing device with the second server, wherein the first server verifies trustworthiness of the mobile computing device based on the value.
  - 5. The method of claim 1, further comprising executing, at the mobile device, the second operating environment for performing general purpose operations and the first operating environment configured exclusively for providing a secure communication session, wherein operations performed in the second operating environment do not affect operation of the first operating environment.

6. At least one non transitory computer readable storage medium that stores instructions, which when executed, cause one or more processors to:
- receive an attestation record from a first server via a first operating environment in response to the first server verifying trustworthiness of a mobile computing device, wherein the mobile computing device comprises the first operating environment and a second operating environment isolated from the first operating environment;
  
  store the attestation record within a trusted platform module (TPM) via the first operating environment;
  
  request access to a service of a second server over a network via the second operating environment;
  
  receive an attestation request from the second server, via the second operating environment in response to requesting access to the service;
  
  obtain the attestation record from the TPM, via the first operating environment;
  
  transmit the attestation record to the second server via the first operating environment; and
  
  receive access to the service in response to the second server verifying the attestation record.
- View Dependent Claims (7, 8, 9, 10)
- - 7. The non-transitory computer readable storage medium of claim 6, wherein verifying trustworthiness of the mobile computing device comprises:
    - transmitting configuration information to the first server, wherein the first server verifies trustworthiness of the mobile computing device based on the configuration information.
  - 8. The non-transitory computer readable storage medium of claim 7, that stores instructions, which when further executed, cause one or more processors to transmit a secure signature to the second server to cause the second server to verify trustworthiness of the mobile computing device based on the secure signature.
  - 9. The non-transitory computer readable storage medium of claim 6, wherein verifying trustworthiness of the mobile computing device comprises:
    - transmitting a value of a secure counter to the first server, wherein the value is incremented during each interaction of the mobile computing device with the second server, wherein the first server verifies trustworthiness of the mobile computing device based on the value.
  - 10. The non-transitory computer readable storage medium of claim 6, that stores instructions, which when further executed, cause one or more processors to execute the second operating environment for performing general purpose operations and the first operating environment configured exclusively for providing, a secure communication session, wherein operations performed in the second operating environment do not affect operation of the first operating environment.

11. A mobile computing device comprising:
- a first operating environment;
  
  a second operating environment isolated from the first operating environment;
  
  a secure storage device to locally store an attestation record received from a first server; and
  
  a network interface device to communicate with a first server over a network and a second server separate from the first server, the mobile computing device configured to;
  
  communicate with the first server to verify a trustworthiness of the mobile computing device;
  
  receive the attestation record from the first server, via the first operating environment, in response to the first server verifying trustworthiness of the mobile computing device;
  
  store the attestation record within a trusted platform module (TPM) via the first operating environment;
  
  request access to a service of a second server over the network via the second operating environment;
  
  receive an attestation request from the second server, via the second operating environment, in response to requesting, access to the service;
  
  obtain the attestation record from the TPM, via the first operating environment;
  
  transmit the attestation record to the second server via the first operating environment; and
  
  receive access to the service in response to the second server verifying the attestation record.
- View Dependent Claims (12, 13, 14, 15)
- - 12. The mobile computing device of claim 11, wherein verifying trustworthiness of the mobile computing device comprises transmitting configuration information to the first server, wherein the first server verifies trustworthiness of the mobile computing device based on the configuration information.
  - 13. The mobile computing device of claim 12, further to transmit a secure signature to the second server to cause the second server to verify trustworthiness of the mobile computing device based on the secure signature.
  - 14. The mobile computing device of claim 11, wherein verifying trustworthiness of the mobile computing device comprises transmitting a value of a secure counter to the first server, wherein the value is incremented during each interaction of the mobile computing device with the second server, wherein the first server verifies trustworthiness of the mobile computing device based on the value.
  - 15. The mobile computing device of claim 11, further to execute the second operating environment for performing general purpose operations and the first operating environment configured exclusively for providing a secure communication session, wherein operations performed in the second operating environment do not affect operation of the first operating environment.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Intel Corporation
Original Assignee
Intel Corporation
Inventors
Weiss, Yoav, Bogner, Etay
Primary Examiner(s)
SCHMIDT, KARI L

Application Number

US15/092,795
Publication Number

US 20160226907A1
Time in Patent Office

222 Days
Field of Search
US Class Current

1/1
CPC Class Codes

G06F 21/10   Protecting distributed prog...

G06F 21/44   Program or device authentic...

G06F 21/57   Certifying or maintaining t...

G06F 21/577   Assessing vulnerabilities a...

H04L 63/10   for controlling access to d...

H04L 63/1433   Vulnerability analysis

Stateless attestation system

First Claim

0 Assignments

0 Petitions

Accused Products

Abstract

53 Citations

15 Claims

Specification

Solutions

Use Cases

Quick Links

Stateless attestation system

First Claim

0 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

53 Citations

15 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links