Method of establishing a trusted identity for an agent device
First Claim
1. A method of establishing a trusted identity for an agent device for performing trusted communication with one or more application providing apparatuses, the method comprising steps of:
- (a) determining which of a plurality of authentication models is a selected authentication model to be used for uniquely authenticating the agent device, wherein the selected authentication model is selected based on the agent device'"'"'s resources, and wherein the authentication model for uniquely authenticating the agent device indicates a degree of trust for said agent device;
(b) generating first authentication information and second authentication information according to the selected authentication model, the first authentication information for uniquely authenticating the identity of the agent device and the second authentication information for verifying that the agent device has the first authentication information;
(c) embedding the first authentication information in the agent device;
(d) transmitting, to a registry apparatus for maintaining a device registry of agent devices, the second authentication information and authentication model information identifying which of the plurality of authentication models is the selected authentication model used by the agent device;
(e) receiving, at the registry apparatus, an authentication model query from the one or more application providing apparatuses requesting the authentication model information for the agent device;
(f) transmitting, from the registry apparatus to the one or more application providing apparatuses, the authentication model information for the agent device; and
(g) receiving, at the registry apparatus from the one or more application providing apparatuses, an indication that the authentication model information for the agent device meets a minimum security requirement, and that the one or more application providing apparatuses will perform communication with the agent device.
1 Assignment
0 Petitions
Accused Products
Abstract
A trusted identity may be established for an agent device for performing trusted communication with one or more application providing apparatuses. The method of establishing the trusted identity includes determining which of a number of authentication models is a selected authentication model to be used for uniquely authenticating the agent device. First and second authentication information is generated according to the selected model. The first authentication information is for uniquely authenticating the identity of the device and the second authentication information is for verifying that the agent device has the first authentication information. The first authentication information is embedded in the agent device while the second authentication information is transmitted to a registry apparatus for maintaining a device of agent devices. Authentication model information identifying which is the selected authentication model is also sent to the registry.
55 Citations
28 Claims
-
1. A method of establishing a trusted identity for an agent device for performing trusted communication with one or more application providing apparatuses, the method comprising steps of:
-
(a) determining which of a plurality of authentication models is a selected authentication model to be used for uniquely authenticating the agent device, wherein the selected authentication model is selected based on the agent device'"'"'s resources, and wherein the authentication model for uniquely authenticating the agent device indicates a degree of trust for said agent device; (b) generating first authentication information and second authentication information according to the selected authentication model, the first authentication information for uniquely authenticating the identity of the agent device and the second authentication information for verifying that the agent device has the first authentication information; (c) embedding the first authentication information in the agent device; (d) transmitting, to a registry apparatus for maintaining a device registry of agent devices, the second authentication information and authentication model information identifying which of the plurality of authentication models is the selected authentication model used by the agent device; (e) receiving, at the registry apparatus, an authentication model query from the one or more application providing apparatuses requesting the authentication model information for the agent device; (f) transmitting, from the registry apparatus to the one or more application providing apparatuses, the authentication model information for the agent device; and (g) receiving, at the registry apparatus from the one or more application providing apparatuses, an indication that the authentication model information for the agent device meets a minimum security requirement, and that the one or more application providing apparatuses will perform communication with the agent device. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16, 17, 18, 19, 20, 21)
-
-
22. A registry apparatus for maintaining a device registry of agent devices for performing trusted communication with one or more application providing apparatuses, comprising:
-
a storage circuit configured to store the device registry comprising at least one registry entry for a corresponding agent device comprising authentication model information identifying which of a plurality of authentication models is a selected authentication model used for uniquely authenticating the corresponding agent device, wherein the selected authentication model is selected based on the agent device'"'"'s resources, and wherein the selected authentication model indicates a degree of trust of said agent device; and a communication circuit configured, in response to an authentication model query from an application providing apparatus requesting the authentication model information for a specified agent device, to transmit to the application providing apparatus the authentication model information of the registry entry for the specified agent device, and to receive from the application providing apparatus an indication that the authentication model information for the specified agent device meets a minimum security requirement and that the application providing apparatus will perform communication with said agent device. - View Dependent Claims (23, 24)
-
-
25. A registry apparatus for maintaining a device registry of agent devices for performing trusted communication with one or more application providing apparatuses, comprising:
-
means for storing the device registry comprising at least one registry entry for a corresponding agent device comprising authentication model information identifying which of a plurality of authentication models is a selected authentication model used for uniquely authenticating the corresponding agent device, wherein the selected authentication model is selected based on the agent device'"'"'s resources, and wherein the selected authentication model indicates a degree of trust of said agent device; and means for transmitting the authentication model information of the registry entry for a specified agent device to an application providing apparatus in response to an authentication model query from the application providing apparatus requesting the authentication model information for the specified agent device and for receiving from the application providing apparatus an indication that the authentication model information for the specified agent device meets a minimum security requirement, and the application providing apparatus will perform communication with said agent device.
-
-
26. A method for a registry apparatus for maintaining a device registry of agent devices for performing trusted communication with one or more application providing apparatuses, comprising steps of:
-
maintaining a device registry comprising at least one registry entry for a corresponding agent device comprising authentication model information identifying which of a plurality of authentication models is a selected authentication model used for uniquely authenticating the corresponding agent device, wherein the selected authentication model is selected based on the agent device'"'"'s resources, and wherein the selected authentication model indicates a degree of trust of said agent device; receiving from an application providing apparatus an authentication model query requesting the authentication model information for a specified agent device; in response to the authentication model query, transmitting to the application providing apparatus the authentication model information of the registry entry for the specified agent device; and receiving from the application providing apparatus an indication that the authentication model information for the specified agent device meets a minimum security requirement and the application providing apparatus will perform communication with said agent device.
-
-
27. A method of registering an agent device with a device registry of agent devices for performing trusted communication with one or more application providing apparatuses, the method comprising steps of:
-
determining which of a plurality of authentication models is a selected authentication model used by the agent device for uniquely authenticating the agent device, wherein the plurality of authentication models provide different levels of security, wherein the selected authentication model is selected based on the agent device'"'"'s resources, and wherein the selected authentication model indicates a degree of trust of said agent device; transmitting, to a registry apparatus for maintaining the device registry, authentication model information identifying which of the plurality of authentication models is the selected authentication model for the agent device; receiving, at the registry apparatus, an authentication model query from the one or more application providing apparatuses requesting the authentication model information for the agent device; transmitting, from the registry apparatus to the one or more application providing apparatuses, the authentication model information for the agent device; and receiving, at the registry apparatus from the one or more application providing apparatuses, an indication that the authentication model information for the agent device meets a minimum security requirement, and that the one or more application providing apparatuses will perform communication with the agent device. - View Dependent Claims (28)
-
Specification