Client authentication during network boot
US8990902B2 · kind B2 · utility
Assignee
Inventors
Key dates
| Filing date | Sep 23, 2013 |
| Grant date | Mar 24, 2015 |
| Priority date | — |
| Expiry date | Sep 23, 2033 |
Classification
- Technology area (CPC H)Electricity
- CPC primaryH04L2209/127
- WIPO fieldDigital communication
- WIPO sectorElectrical engineering
Abstract
A secure mechanism for performing a network boot sequence and provisioning a remote device may use a private key of a public key/private key encryption mechanism to generate a command by a server and have the command executed by the device. The command may be used to verify the authenticity of the remote device, and may be used to establish ownership of the device. After authenticity and, in some cases ownership is established, bootable software may be downloaded and executed. The remote device may be provisioned with software applications. One mechanism for performing the initial encrypted commands is through a Trusted Platform Module. In many embodiments, the public key for the initial encrypted communication may be provided through a trusted second channel.
Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.