Device credentialing for network access
First Claim
1. A computer-implemented method comprising:
- receiving, at a credential service implemented in a hosted computing environment, a first communication indicating that a first device has connected to a wireless network, the first communication including a set of credentials employed by the first device for connecting to the wireless network and for connecting to another network;
determining, by the credential service implemented in the hosted computing environment, that the first device is associated with a device group, the device group including a plurality of devices;
associating, by the credential service implemented in the hosted computing environment, the set of credentials with the device group, the set of credentials including information describing the first device, the wireless network, and the another network;
receiving, at the credential service implemented in the hosted computing environment, a second communication indicating that a second device has connected to the wireless network, the second communication including information indicating that the second device is associated with the device group;
authenticating, by the credential service implemented in the hosted computing environment, the second device, the authenticating to include verifying that the second device is associated with the device group; and
in response to the second communication;
providing, by the credential service implemented in the hosted computing environment, the set of credentials to the second device to enable the second device to automatically connect to the another network; and
associating the second device with the set of credentials.
1 Assignment
0 Petitions
Accused Products
Abstract
Various embodiments provide techniques for sharing network service access credentials among multiple devices that share a common user or are associated in a device group. After connecting to a network service (e.g., a wireless network, wired network, or web site), a first device can upload the credentials used to access the network service to a cloud-hosted credential service. The credential service can store the credentials and associate them with the first device and/or its user. Later, a second device can log in to the credential service and receive a download of one or more sets of credentials to enable access to one or more network services that are authorized for the second device. Various embodiments include a credential management interface to enable an authorized user to manage device/network service pairings, permissions, and/or restrictions for network service access.
13 Citations
27 Claims
-
1. A computer-implemented method comprising:
-
receiving, at a credential service implemented in a hosted computing environment, a first communication indicating that a first device has connected to a wireless network, the first communication including a set of credentials employed by the first device for connecting to the wireless network and for connecting to another network; determining, by the credential service implemented in the hosted computing environment, that the first device is associated with a device group, the device group including a plurality of devices; associating, by the credential service implemented in the hosted computing environment, the set of credentials with the device group, the set of credentials including information describing the first device, the wireless network, and the another network; receiving, at the credential service implemented in the hosted computing environment, a second communication indicating that a second device has connected to the wireless network, the second communication including information indicating that the second device is associated with the device group; authenticating, by the credential service implemented in the hosted computing environment, the second device, the authenticating to include verifying that the second device is associated with the device group; and in response to the second communication; providing, by the credential service implemented in the hosted computing environment, the set of credentials to the second device to enable the second device to automatically connect to the another network; and associating the second device with the set of credentials. - View Dependent Claims (2, 3, 4, 5)
-
-
6. A system comprising:
-
a data store configured to store network service credentials; and a computing device including a processor in communication with the data store, the processor configured to; receive an indication that a first device has connected to a network service using a set of network service credentials, the first device associated with a device group, wherein the device group comprises a plurality of devices; associate, in the data store, the set of network service credentials with the device group; and provide the set of network service credentials to the device group, wherein the set of network service credentials enables at least one second device associated with the device group to automatically connect to the network service. - View Dependent Claims (7, 8, 9, 10, 11, 12, 13)
-
-
14. A computing device comprising:
-
a memory configured to store a credential management application; a network interface; and at least one processor in communication with the memory and the network interface, the at least one processor configured to execute the credential management application to; authenticate the computing device to a credential service, following establishment of a connection to a first wireless network via the network interface, wherein the credential service is implemented in a hosted computing environment that is independent of the computing device; receive, from the credential service, a set of credentials to enable the computing device to automatically connect to a second wireless network via the network interface; and based at least in part on the network interface detecting the second wireless network, automatically establish a connection to the second wireless network via the network interface using the set of credentials received from the credential service. - View Dependent Claims (15, 16, 17)
-
-
18. One or more non-transitory computer-readable storage media storing instructions that, when executed, instruct at least one processor to perform actions comprising:
-
receiving, at a credential server, a first communication to a credential service, the first communication indicating that a device has connected to a network service, the first communication including one or more credentials employed by the device for connecting to the network service, the device operating in a computing environment that is independent of the credential server; storing, by the credential server, the one or more credentials with information describing the network service; receiving, at the credential server, a second communication authenticating at least one other device to the credential service, the at least one other device operating in a computing environment that is independent of the credential server; and in response to the second communication, providing the one or more credentials included with the first communication to the at least one other device, the one or more credentials enabling the at least one other device to connect to the network service responsive to detecting the network service. - View Dependent Claims (19, 20, 21, 22, 23, 24)
-
-
25. A computing device comprising:
-
a memory; a processor in communication with the memory and a data store, the processor configured to; receive an indication that a first device has connected to a network service using a set of credentials, the first device associated with a device group, wherein the device group comprises a plurality of devices; cause to be stored, in the data store, the set of credentials as a stored set of network service credentials for the network service; and provide the stored set of network service credentials to the device group, wherein the stored set of network service credentials enables at least one second device associated with the device group to automatically connect to the network service. - View Dependent Claims (26, 27)
-
Specification