Using device certificates for automated authentication of communicating devices

Assignee

• International Business Machines Corporation · US

Inventors

• John R. Hind · Raleigh, US
• Marcia L. Peters · Raleigh, US

Key dates

Classification

• Technology area (CPC H)Electricity
• CPC primaryH04L2209/80
• WIPO fieldDigital communication
• WIPO sectorElectrical engineering

Abstract

A device certificate identifies a particular device using a globally-unique device identifier and contains a public key associated therewith. A private key stored in protected storage of the device is used to digitally sign outbound messages, enabling communicating devices to authenticate one another using the associated device certificate and public key, before returning a response. Devices functioning as servers can thereby securely participate in dynamic, automatic address assignment services using a service such as a Boot Protocol or Dynamic Host Configuration Protocol, and/or to update address information stored in a Domain Name System (DNS) server, ensuring that the update is authentic, and when the DNS is also authenticated, ensuring that a legitimate DNS has been contacted.