Provisioning sensitive data into third party
US9219607B2 · kind B2 · utility
Assignee
Inventor
Key dates
| Filing date | Dec 18, 2013 |
| Grant date | Dec 22, 2015 |
| Priority date | — |
| Expiry date | Dec 18, 2033 |
Classification
- Technology area (CPC H)Electricity
- CPC primaryH04L9/006
- WIPO fieldDigital communication
- WIPO sectorElectrical engineering
Abstract
A method for providing identity data to network-enabled devices includes receiving a request for identity data from a network-enabled device that is deployed to an end-user. The network-enabled device is pre-provisioned with a PIN, a global key pair, a user-accessible first device identifier, and a second device identifier usable by a service provider delivering a service to the device. The identity data request includes the first and second identifiers, a protected rendition of the PIN, and an encryption key or other data from which an encryption key is derivable. The identifiers, the protected rendition of the PIN, and the encryption key or the other data are signed by a private key in the global key pair. The validity of the PIN included in the request is verified to authenticate the device. If the PIN is valid, identity data for the device is generated, encrypted and sent to the network-enabled device.
Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.