Methods and systems for pairing devices

US 9,203,819 B2
Filed: 01/18/2013
Issued: 12/01/2015
Est. Priority Date: 01/18/2012
Status: Active Grant

First Claim

Patent Images

1. A method of pairing an unregistered device with a virtual identity, the method comprising:

at a pairing repository;

receiving a request from the unregistered device to pair the unregistered device with the virtual identity;

sharing a pairing code between the pairing repository and the unregistered device;

sharing, between the pairing repository and the unregistered device, an identifier to encrypt data;

receiving, from a registered device, the pairing code after the registered device is paired with the virtual identity; and

sending the identifier to the registered device; and

at an identity repository;

receiving the pairing code and secret information from the registered device, where;

the secret information has been encrypted by the registered device using the identifier; and

the identity repository does not have access to the identifier to decrypt the secret information;

receiving the pairing code from the unregistered device;

pairing the unregistered device with the virtual identity using the pairing code; and

sending the secret information to the unregistered device.

View all claims

6 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A method of pairing an unregistered device with a virtual identity may include, at a first repository: receiving a request from the unregistered device, sending a pairing code and an identifier to the unregistered device, receiving the pairing code from a registered device, and sending the identifier to the registered device. The method may also include, at a second repository, receiving the pairing code and secret information from the registered device, receiving the pairing code in a transmission associated with the unregistered device, associating the unregistered device with the virtual identity using the pairing code, and sending the secret information to the unregistered device.

59 Citations

View as Search Results

19 Claims

1. A method of pairing an unregistered device with a virtual identity, the method comprising:
- at a pairing repository;
  
  receiving a request from the unregistered device to pair the unregistered device with the virtual identity;
  
  sharing a pairing code between the pairing repository and the unregistered device;
  
  sharing, between the pairing repository and the unregistered device, an identifier to encrypt data;
  
  receiving, from a registered device, the pairing code after the registered device is paired with the virtual identity; and
  
  sending the identifier to the registered device; and
  
  at an identity repository;
  
  receiving the pairing code and secret information from the registered device, where;
  
  the secret information has been encrypted by the registered device using the identifier; and
  
  the identity repository does not have access to the identifier to decrypt the secret information;
  
  receiving the pairing code from the unregistered device;
  
  pairing the unregistered device with the virtual identity using the pairing code; and
  
  sending the secret information to the unregistered device.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16)
- - 2. The method of claim 1 further comprising, at the pairing repository:
    - receiving an identity repository locator from the registered device; and
      
      providing the identity repository locator to the unregistered device.
  - 3. The method of claim 2 where the identity repository locator comprises a Universal Resource Locator (URL) of the identity repository.
  - 4. The method of claim 1 where the identifier comprises a pseudo-random number.
  - 5. The method of claim 1 where the pairing code is displayed by the unregistered device to a user and provided to the registered device by the user.
  - 6. The method of claim 1 where the pairing repository and the identity repository are geographically remote from the registered device and the unregistered device.
  - 7. The method of claim 1 where the secret information is encrypted using at least the identifier.
  - 8. The method of claim 7 where the secret information is encrypted using an encryption key derived from the pairing code and the identifier.
  - 9. The method of claim 1 where the secret information comprises an encryption key.
  - 10. The method of claim 1, further comprising:
    - at the pairing repository;
      
      receiving a blind verifier from the unregistered device; and
      
      sending the blind verifier to the registered device; and
      
      at the identity repository;
      
      receiving, from the registered device, a salted blind verifier that is based on the blind verifier;
      
      sending the salted blind verifier to the unregistered device;
      
      receiving, from the unregistered device, a salted verifier that is based on the salted blind verifier; and
      
      verifying that the salted verifier corresponds to a correct passcode.
  - 11. The method of claim 10 where the blind verifier is computed by the unregistered device at least in part by hashing a passcode guess on an elliptic curve and shifting the hash of the passcode guess on the elliptic curve using a value R.
  - 12. The method of claim 10 where the slated blind verifier is computed by the registered device at least in part by shifting the blind verifier on an elliptic curve using a salt value.
  - 13. The method of claim 10 where the salted verifier is computed by the unregistered device at least in part by shifting the salted blind verifier on an elliptic curve using an inverse of a value R.
  - 14. The method of claim 10 where the salted verifier is hashed one or more times before it is received.
  - 15. The method of claim 10 where the salted verifier is verified by comparing the salted verifier to a hash of a salted passcode.
  - 16. The method of claim 10 where the salted verifier is verified by verifying a signature on a nonce that is signed using the salted verifier.

17. A method of pairing an unregistered device with a virtual identity, the method comprising:
- at a pairing repository;
  
  receiving a request and a blind verifier from the unregistered device;
  
  receiving a request from the unregistered device to pair the unregistered device with the virtual identity;
  
  sharing a pairing code between the pairing repository and the unregistered device;
  
  sharing, between the pairing repository and the unregistered device, an identifier to encrypt data;
  
  receiving, from a registered device, the pairing code after the registered device is paired with the virtual identity;
  
  receiving a salted blind verifier from a registered device; and
  
  sending the identifier to the registered device; and
  
  at an identity repository;
  
  receiving the pairing code, secret information, and the salted blind verifier from the registered device, where;
  
  the secret information has been encrypted by the registered device using the identifier; and
  
  the identity repository does not have access to the identifier to decrypt the secret information;
  
  receiving the pairing code in a transmission associated with the unregistered device;
  
  pairing the unregistered device with the virtual identity using the pairing code;
  
  sending the salted blind verifier to the unregistered device;
  
  receiving a salted verifier from the unregistered device;
  
  verifying that the salted verifier corresponds to a correct passcode; and
  
  sending the secret information to the unregistered device.
- View Dependent Claims (18, 19)
- - 18. The method of claim 17 further comprising, at the pairing repository:
    - receiving an identity repository locator from the registered device; and
      
      sending the identity repository locator to the unregistered device.
  - 19. The method of claim 17 where the salted verifier is verified by comparing the salted verifier to a hash of a salted passcode.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Neustar Incorporated
Original Assignee
OneID Inc.
Inventors
Back, Adam, Kirsch, Steven Todd, Fenton, James Lewis
Primary Examiner(s)
Holder, Bradley
Assistant Examiner(s)
MOHAMMADI, FAHIMEH M

Application Number

US13/745,341
Publication Number

US 20130198516A1
Time in Patent Office

1,047 Days
Field of Search

713168-170, 713/182, 713/375
US Class Current

1/1
CPC Class Codes

G06F 21/31   User authentication

G06F 21/335   for accessing specific reso...

G06F 2221/2103   Challenge-response

H04L 63/06   for supporting key manageme...

H04L 63/08   for authentication of entit...

H04L 63/0823   using certificates cryptogr...

H04L 63/083   using passwords cryptograph...

H04L 63/0869   for achieving mutual authen...

H04L 63/12   Applying verification of th...

H04L 9/14   using a plurality of keys o...

H04L 9/30   Public key, i.e. encryption...

H04L 9/3247   involving digital signatures

H04L 9/3263   involving certificates, e.g...

Methods and systems for pairing devices

First Claim

6 Assignments

0 Petitions

Accused Products

Abstract

59 Citations

19 Claims

Specification

Solutions

Use Cases

Quick Links

Methods and systems for pairing devices

First Claim

6 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

59 Citations

19 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links