Authorization of device access to network services
First Claim
1. A method for securing a network comprising a plurality of devices, comprising:
- receiving, from a first device, an authorization request to access at least one network service;
broadcasting the authorization request;
presenting a representation of the authorization request in an interface;
receiving, from said first device, a device identifier (ID);
determining that the first device is not included in a list associated with disallowed devices;
receiving, via said interface, an approval of the first device, wherein said approval is performed using the device ID;
generating, from the device ID, a key for the first device, wherein the key is also separately generated from the device ID by the first device, wherein said at least one network service may be accessed using said key;
replicating a security service to the first device based on a determination that the first device can provide the security service and serve as an authorizing device for subsequent device approvals and validations; and
synchronizing, to the first device and to other devices of the plurality of devices, security information indicative of access to said at least one network service.
1 Assignment
0 Petitions
Accused Products
Abstract
Techniques are disclosed for authorization of devices entering a network. A new device entering a network sends an authorization request. Another device in the network may receive the request and prompt the user to approve the device. The user can use a device identifier provided by the new device in approving the new device. Assuming the identifier provided by the new device matches an identifier accessible by the authorizing device, the user authorizes the new device. A key is then generated for the new device, which allows access to an appropriate range of network services. Authorization decisions can be synchronized among the various devices in a network, so even if an authorizing device leaves the network, the new device key can be validated. A security service can be replicated in a new device once the device is authorized to access the network.
-
Citations
14 Claims
-
1. A method for securing a network comprising a plurality of devices, comprising:
-
receiving, from a first device, an authorization request to access at least one network service; broadcasting the authorization request; presenting a representation of the authorization request in an interface; receiving, from said first device, a device identifier (ID); determining that the first device is not included in a list associated with disallowed devices; receiving, via said interface, an approval of the first device, wherein said approval is performed using the device ID; generating, from the device ID, a key for the first device, wherein the key is also separately generated from the device ID by the first device, wherein said at least one network service may be accessed using said key; replicating a security service to the first device based on a determination that the first device can provide the security service and serve as an authorizing device for subsequent device approvals and validations; and synchronizing, to the first device and to other devices of the plurality of devices, security information indicative of access to said at least one network service. - View Dependent Claims (2, 3, 4, 5)
-
-
6. A method for securing a network comprising a plurality of devices, comprising:
-
sending, by a first device, an authorization request to access at least one network service, wherein the authorization request is broadcasted and a representation of the authorization request is presented in an interface; providing, by said first device, a device identifier (ID), wherein an approval of the first device is received, via said interface, and wherein said approval is performed using the device ID, wherein it is determined that the first device is not included in a list associated with disallowed devices; generating, from the device ID, by the first device, a key for the first device, wherein the key is also separately generated from the device ID by one or more other devices, wherein said at least one network service may be accessed using said key; replicating, by the first device, a security service based on a determination that the first device can provide the security service and serve as an authorizing device for subsequent device approvals and validations; and synchronizing, by the first device and to other devices of the plurality of devices, security information indicative of access to said at least one network service. - View Dependent Claims (7, 8, 9)
-
-
10. A computing system for securing a network comprising a plurality of devices, comprising:
-
one or more processors; and one or more memories having stored therein instructions that, upon execution by the one or more processors, cause the computing system to perform operations comprising; receiving, from a first device, an authorization request to access at least one network service; broadcasting the authorization request; presenting a representation of the authorization request in an interface; receiving, from said first device, a device identifier (ID); receiving, via said interface, an approval of the first device, wherein said approval is performed using the device ID and serve as an authorizing device for subsequent device approvals and validations, wherein the operations further comprise determining that the first device is not included in a list associated with disallowed devices; generating, from the device ID, a key for the first device, wherein the key is also separately generated from the device ID by the first device, wherein said at least one network service may be accessed using said key; replicating a security service to the first device based on a determination that the first device can provide the security service; and synchronizing, to the first device and to other devices of the plurality of devices, security information indicative of access to said at least one network service. - View Dependent Claims (11, 12, 13, 14)
-
Specification