Provisioning of electronic devices
First Claim
1. A method, comprising:
- transmitting a first communication from an automation device to a remotely located provisioning service, the first communication including a device identifier encrypted using a public key, the device identifier and the public key stored in a memory of the automation device, the first communication transmitted after a message originated by a computing device is received by the provisioning service, the message including the device identifier, the provisioning service having access to a database configured to store a plurality of device identifiers and corresponding private-public key pairs, each device identifier and corresponding private-public key pair associated with an automation device; and
receiving a second communication at the automation device from the provisioning service, the second communication including a private key corresponding to the public key, the private key identified by the provisioning service among the plurality of private-public key pairs based upon one or more attempts to decrypt the first communication using other private keys, the second communication received in response to the encrypted device identifier of the first communication matching the device identifier of the message.
3 Assignments
0 Petitions
Accused Products
Abstract
Systems and methods for provisioning electronic devices. In some embodiments, a method may include receiving a first message at a provisioning server, the first message originated by a computing device, the first message including a device identifier associated with an automation device. The method may also include receiving a second message at the provisioning server, the second message originated by the automation device and including at least a device identifier portion. In response to the device identifier portion of the second message matching the device identifier of the first message and/or in response to the automation device not being associated with a provisioning account, the method may then include providing configuration information to the automation device.
-
Citations
20 Claims
-
1. A method, comprising:
-
transmitting a first communication from an automation device to a remotely located provisioning service, the first communication including a device identifier encrypted using a public key, the device identifier and the public key stored in a memory of the automation device, the first communication transmitted after a message originated by a computing device is received by the provisioning service, the message including the device identifier, the provisioning service having access to a database configured to store a plurality of device identifiers and corresponding private-public key pairs, each device identifier and corresponding private-public key pair associated with an automation device; and receiving a second communication at the automation device from the provisioning service, the second communication including a private key corresponding to the public key, the private key identified by the provisioning service among the plurality of private-public key pairs based upon one or more attempts to decrypt the first communication using other private keys, the second communication received in response to the encrypted device identifier of the first communication matching the device identifier of the message. - View Dependent Claims (2, 3, 4, 5, 6)
-
-
7. A method, comprising:
-
obtaining, by a computing device, a device identifier associated with an automation device; and transmitting, from the computing device to a provisioning server, a first message including the device identifier, the provisioning server having access to a database configured to store a plurality of device identifiers and corresponding private-public key pairs, each device identifier and corresponding private-public key pair associated with a different automation device, the provisioning server configured to receive a second message originated by the automation device, the second message including at least the device identifier encrypted using a public key, the public key stored in the automation device during manufacturing of the automation device, the provisioning service configured to decrypt the device identifier of the second message into a decrypted device identifier using a private key corresponding to the public key, the provisioning service configured to, in response to the decrypted device identifier matching the device identifier of the first message, transmit the private key to the automation device, the automation device configured to use the private key in a subsequent communication. - View Dependent Claims (8, 9, 10, 11)
-
-
12. A non-transitory computer-readable storage medium having program instructions stored thereon that, upon execution by a processor of an automation device, cause the automation device to:
-
transmit a first communication from an automation device to a remotely located provisioning service, the first communication including a device identifier encrypted using a public key, the device identifier and the public key stored in the automation device, the first communication transmitted after a message originated by a computing device is received by the provisioning service, the message including the device identifier, the provisioning service having access to a database configured to store a plurality of device identifiers and corresponding private-public key pairs, each device identifier and corresponding private-public key pair associated with an automation device; and receive a second communication at the automation device from the provisioning service, the second communication including a private key corresponding to the public key, the private key identified by the provisioning service among the plurality of private-public key pairs based upon one or more attempts to decrypt the first communication using other private keys, the second communication received in response to the encrypted device identifier of the first communication matching the device identifier of the message. - View Dependent Claims (13, 14, 15, 16)
-
-
17. A computing device having a processor and a memory coupled to the processor, the memory having program instructions stored thereon that, upon execution by the processor, cause the computing device to:
-
obtain a device identifier associated with an automation device; and transmit a first message to a provisioning server, the first message including the device identifier, the provisioning server having access to a database configured to store a plurality of device identifiers and corresponding private-public key pairs, each device identifier and corresponding private-public key pair associated with a different automation device, the provisioning server configured to receive a second message originated by the automation device, the second message including at least the device identifier encrypted using a public key, the public key stored in the automation device during manufacturing of the automation device, the provisioning service configured to decrypt the device identifier of the second message into a decrypted device identifier using a private key corresponding to the public key, the provisioning service configured to, in response to the decrypted device identifier matching the device identifier of the first message, transmit the private key to the automation device, the automation device configured to use the private key in a subsequent communication. - View Dependent Claims (18, 19, 20)
-
Specification