Method of authorizing an operation to be performed on a targeted computing device

US 9,819,661 B2
Filed: 09/12/2013
Issued: 11/14/2017
Est. Priority Date: 09/12/2013
Status: Active Grant

First Claim

Patent Images

1. A method of requesting an operation be performed on a targeted computing device, said method comprising:

generating a request to perform the operation on the targeted computing device, the request including a geographic location of the targeted computing device, the operation to be performed on the targeted computing device, and a time period in which the operation will be performed;

signing the request with a private key of a first private, public key pair;

transmitting the request to an authentication server;

receiving, in response to the request, an authorization response from the authentication server that includes the request and an authorization token, wherein the authorization token includes at least one of a predetermined authorization period, an authorization to perform the operation on a predetermined targeted computing device, and an authorization to perform predetermined operations on the targeted computing device; and

transmitting the authorization response to the targeted computing device.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A method of authorizing an operation to be performed on a targeted computing device is provided. The method includes generating a request to perform an operation on the targeted computing device, signing the request with a private key of a first private, public key pair, transmitting the request to an authentication server, receiving an authorization response from the authentication server that includes the request and an authorization token, and transmitting the authorization response to the targeted computing device.

86 Citations

View as Search Results

17 Claims

1. A method of requesting an operation be performed on a targeted computing device, said method comprising:
- generating a request to perform the operation on the targeted computing device, the request including a geographic location of the targeted computing device, the operation to be performed on the targeted computing device, and a time period in which the operation will be performed;
  
  signing the request with a private key of a first private, public key pair;
  
  transmitting the request to an authentication server;
  
  receiving, in response to the request, an authorization response from the authentication server that includes the request and an authorization token, wherein the authorization token includes at least one of a predetermined authorization period, an authorization to perform the operation on a predetermined targeted computing device, and an authorization to perform predetermined operations on the targeted computing device; and
  
  transmitting the authorization response to the targeted computing device.
- View Dependent Claims (2, 3, 4, 5, 6, 7)
- - 2. The method in accordance with claim 1, wherein generating a request comprises generating the request to further include an identification of the targeted computing device.
  - 3. The method in accordance with claim 1 further comprising verifying the authorization response with a public key of a second private, public key pair, wherein the authorization response is signed with a private key of the second private, public key pair.
  - 4. The method in accordance with claim 3, wherein transmitting the authorization response comprises transmitting the authorization response upon verification of the authorization response with the public key of the second private, public key pair.
  - 5. The method in accordance with claim 1 further comprising signing the authorization response with the private key of the first private, public key pair.
  - 6. The method in accordance with claim 1, wherein receiving the authorization response comprises determining whether the authorization token authorizes the operation requested to be performed on the targeted computing device.
  - 7. The method in accordance with claim 1, wherein transmitting the request comprises transmitting the request to the authentication server via a removable media.

8. A method of authorizing an operation to be performed on a targeted computing device, said method comprising:
- receiving, at an authentication server, a request from a requesting device to perform the operation on the targeted computing device, the request including parameters that include a geographic location of the targeted computing device, the operation to be performed on the targeted computing device, and a time period in which the operation will be performed;
  
  verifying, at the authentication server, the request with a public key of a first private, public key pair, wherein the request is signed by a private key of the first private, public key pair;
  
  forming, at the authentication server in response to the request, an authorization response that includes the request and an authorization token, wherein the authorization token includes at least one of a predetermined authorization period, an authorization to perform the operation on a predetermined targeted computing device, and an authorization to perform predetermined operations on the targeted computing device; and
  
  transmitting, at the authentication server, the authorization response to the requesting device.
- View Dependent Claims (9, 10, 11, 12, 13, 14)
- - 9. The method in accordance with claim 8 further comprising determining whether to grant the request based on the parameters and a security policy for the targeted computing device.
  - 10. The method in accordance with claim 9, wherein determining whether to grant the request comprises determining whether the parameters for the operation to be performed align with the security policy for the targeted computing device.
  - 11. The method in accordance with claim 8 further comprising creating the authorization token either prior to receiving the request to perform the operation on the targeted computing device or in response to verification of the request to perform the operation on the targeted computing device.
  - 12. The method in accordance with claim 8 further comprising signing the authorization response with a private key of a second private, public key pair.
  - 13. The method in accordance with claim 8, wherein transmitting the authorization response comprises transmitting the authorization response to the requesting device via a removable media.
  - 14. The method in accordance with claim 8, wherein receiving a request comprises receiving the request wherein the parameters further include an identification of the targeted computing device.

15. A method of carrying out an operation on a targeted computing device, said method comprising:
- receiving, at a requesting device, an authorization response from an authorization server, the authorization response including a request to perform the operation on the targeted computing device, including parameters that include a geographic location of the targeted computing device, the operation to be performed on the targeted computing device, a time period in which the operation will be performed, and an authorization token, the authorization response generated by the authorization server in response to the request, wherein the authorization token includes at least one of a predetermined authorization period, an authorization to perform the operation on a predetermined targeted computing device, and an authorization to perform predetermined operations on the targeted computing device;
  
  verifying, at the requesting device, the authorization response with a public key of a private, public key pair, wherein the authorization response is signed by a private key of the private, public key pair; and
  
  granting, at the requesting device, authorization to perform the operation upon verification of the authorization response.
- View Dependent Claims (16, 17)
- - 16. The method in accordance with claim 15, wherein receiving an authorization response comprises receiving the authorization response including the request, wherein the parameters additionally include an identification of the targeted computing device.
  - 17. The method in accordance with claim 15, wherein verifying the authorization response comprises determining whether the parameters for the operation to be performed align with a security policy for the targeted computing device.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
The Boeing Co.
Original Assignee
The Boeing Co.
Inventors
Stern, Allon Joseph
Primary Examiner(s)
Rahman, Mahfuzur
Assistant Examiner(s)
VICTORIA, NARCISO F

Application Number

US14/025,560
Publication Number

US 20150074764A1
Time in Patent Office

1,524 Days
Field of Search

726 4
US Class Current
CPC Class Codes

G06F 21/305   by remotely controlling dev...

G06F 21/335   for accessing specific reso...

H04L 63/06   for supporting key manageme...

H04L 9/088   Usage controlling of secret...

H04L 9/3247   involving digital signatures

Method of authorizing an operation to be performed on a targeted computing device

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

86 Citations

17 Claims

Specification

Use Cases

Quick Links

Others

Method of authorizing an operation to be performed on a targeted computing device

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

86 Citations

17 Claims

Specification

Subscription Required

Use Cases

Quick Links

Others