Environment-aware security tokens
First Claim
1. A computer implemented method comprising:
- receiving, at a server comprising one or more processing devices, information about multiple assets associated with a network of devices;
generating, by the server, for a first asset of the multiple assets, a first security token that is based at least on a portion of the received information about the first asset, wherein the first security token is configured to identify a first home network defined for the first asset, the first home network being specific to the first asset and being defined by a first selection of other assets;
generating, by the server, for a second asset of the multiple assets, a second security token that is based at least on a portion of the received information about the second asset, wherein the second security token is configured to identify a second home network defined for the second asset, the second home network being specific to the second asset and being defined by a second selection of other assets;
storing, in a storage device communicably coupled with the server, information about the first and second security tokens and information linking the first and second security tokens to the corresponding assets;
initiating, by the server, integration of the first and second security tokens with the corresponding assets by providing the first and second security tokens to the corresponding assets; and
restricting access, by the server, to the first or second asset upon detecting an occurrence of an unauthorized activity involving the corresponding asset, wherein the server is communicably coupled to the first home network and the second home network, and is configured to detect the occurrence of the unauthorized activity based on information received from the corresponding security token.
1 Assignment
0 Petitions
Accused Products
Abstract
The technology described in this document can be embodied in a computer implemented method that includes receiving, at a processing device, information about one or more assets associated with a network of devices. The method also includes generating, for at least one of the assets, a security token that is based at least on a portion of the received information about the corresponding asset. The security token can be configured to identify a home network defined for the asset, and to restrict access to the corresponding asset upon detecting an occurrence of an unauthorized activity involving the asset. The method further includes storing, in a storage device, information about the security token and information linking the security token to the corresponding asset, and initiating integration of the security token with the corresponding asset.
62 Citations
30 Claims
-
1. A computer implemented method comprising:
-
receiving, at a server comprising one or more processing devices, information about multiple assets associated with a network of devices; generating, by the server, for a first asset of the multiple assets, a first security token that is based at least on a portion of the received information about the first asset, wherein the first security token is configured to identify a first home network defined for the first asset, the first home network being specific to the first asset and being defined by a first selection of other assets; generating, by the server, for a second asset of the multiple assets, a second security token that is based at least on a portion of the received information about the second asset, wherein the second security token is configured to identify a second home network defined for the second asset, the second home network being specific to the second asset and being defined by a second selection of other assets; storing, in a storage device communicably coupled with the server, information about the first and second security tokens and information linking the first and second security tokens to the corresponding assets; initiating, by the server, integration of the first and second security tokens with the corresponding assets by providing the first and second security tokens to the corresponding assets; and restricting access, by the server, to the first or second asset upon detecting an occurrence of an unauthorized activity involving the corresponding asset, wherein the server is communicably coupled to the first home network and the second home network, and is configured to detect the occurrence of the unauthorized activity based on information received from the corresponding security token. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12)
-
-
13. A system comprising:
-
memory; and a server comprising one or more processing devices, the server configured to; receive information about multiple assets associated with a network of devices, generate, a first asset of the multiple assets, a first security token that is based at least on a portion of the received information about the first asset, wherein the first security token is configured to identify a first home network defined for the first asset, the first home network being specific to the first asset and being defined by a first selection of other assets, generate, for a second asset of the multiple assets, a second security token that is based at least on a portion of the received information about the second asset, wherein the second security token is configured to identify a second home network defined for the second asset, the second home network being specific to the second asset and being defined by a second selection of other assets, store, in a storage device communicably coupled with the server, information about the first and second security tokens and information linking the first and second security tokens to the corresponding assets, initiate integration of the first and second security tokens with the corresponding assets, and restrict access to the first or second asset upon detecting an occurrence of an unauthorized activity involving the corresponding asset, wherein the server is communicably coupled to the first home network and the second home network, and is configured to detect the occurrence of the unauthorized activity based on information received from the corresponding security token. - View Dependent Claims (14, 15, 16, 17, 18, 19, 20, 21, 22, 23, 24)
-
-
25. One or more machine-readable storage devices storing instructions that are executable by one or more processing devices to perform operations comprising:
-
receiving information about multiple assets associated with a network of devices; generating, a first asset of the multiple assets, a first security token that is based at least on a portion of the received information about the first asset, wherein the first security token is configured to identify a first home network defined for the first asset, the first home network being specific to the first asset and being defined by a first selection of other assets; generating, for a second asset of the multiple assets, a second security token that is based at least on a portion of the received information about the second asset, wherein the second security token is configured to identify a second home network defined for the second asset, the second home network being specific to the second asset and being defined by a second selection of other assets; storing, in a storage device communicably coupled to the one or more processing devices, information about the first and second security tokens and information linking the first and second security tokens to the corresponding assets; initiating integration of the first and second security tokens with the corresponding assets; and restricting access to the first or second asset upon detecting an occurrence of an unauthorized activity involving the corresponding asset, wherein the one or more processing devices are communicably coupled to the first home network and the second home network, and are configured to detect the occurrence of the unauthorized activity based on information received from the corresponding security token. - View Dependent Claims (26, 27, 28, 29, 30)
-
Specification