公开(公告)号：US11252239B2

公开(公告)日：2022-02-15

申请号：US15842705

申请日：2017-12-14

Applicant: Arm IP Limited ,  Arm Limited

Inventor： Yongbeom Pak ,  Hannes Tschofenig

IPC: H04L29/08 ,  H04L29/06 ,  H04L9/32 ,  H04W12/069 ,  H04W12/0431

Abstract: A method of establishing a communications path between devices comprising: receiving, at a first device, data, the data comprising: a first resource having a first identifier for a second device remote from the first device; a second resource having a second identifier for the second device; addressing the second device with the first identifier; generating, at the first device, first connection data based on the second identifier; transmitting, from the first device to the second device, the first connection data; receiving, at the first device, second connection data; validating, at the first device, the second connection data; establishing the communications path between the first device and second device responsive to valid second connection data.

公开(公告)号：US10924475B2

公开(公告)日：2021-02-16

申请号：US15536518

申请日：2015-11-30

Applicant: ARM IP Limited ,  ARM Limited

Inventor： Hannes Tschofenig ,  Remy Pottier

IPC: H04L29/06 ,  G06F21/34 ,  G06F21/62 ,  G06F21/44

Abstract: An authentication device is used to create a secure connection between an Internet of Things (IoT) device and a service provider, so that the IoT device is not limited to only the services of one specific provider or the specific services of the provider of the IoT device. In addition, multiple IoT devices purchased from several different providers can all be connected to the same service provider.

公开(公告)号：US12143470B2

公开(公告)日：2024-11-12

申请号：US17310338

申请日：2020-01-09

Applicant: ARM IP LIMITED ,  ARM LIMITED

Inventor： Mikko Johannes Saarnivala ,  Szymon Sasin ,  Yongbeom Pak ,  Hannes Tschofenig

IPC: H04L9/08 ,  H04L67/146

Abstract: The present techniques generally describe a computer implemented method for establishing a secure communication session between a client device and a first server, the method performed by the client device comprising: obtaining, from a second server, credential data comprising a session identifier and cryptographic key data; performing a connection handshake with the first server to establish the secure communication session; creating a security state record defining one or more parameters used to establish the secure communication session, and associating the session identifier with the security state record; performing a first resumption handshake with the first server using the session identifier to re-establish the secure communication session.

公开(公告)号：US12058197B2

公开(公告)日：2024-08-06

申请号：US17310283

申请日：2019-12-13

Applicant: Arm Limited ,  Arm IP Limited

Inventor： Mikko Johannes Saarnivala ,  Szymon Sasin ,  Yongbeom Pak ,  Hannes Tschofenig

IPC: H04L67/025 ,  G06F11/30 ,  H04L67/01 ,  H04L67/12

CPC classification number: H04L67/025 ,  G06F11/3082 ,  H04L67/01 ,  H04L67/12

Abstract: A method implemented e.g. in a Lightweight Machine-to-Machine (LwM2M) server, comprises establishing a secure communication session with a client and transmitting an observation request to the client. The observation request identifies a first resource at the client, one or more criteria relating to the first resource to trigger a notification to be transmitted from the client to the server, and one or more resources at the client comprising at least one resource other than the first resource, the value of which is to be included in the notification.

公开(公告)号：US12022010B2

公开(公告)日：2024-06-25

申请号：US16492757

申请日：2018-03-26

Applicant: ARM Ltd ,  ARM IP Limited

Inventor： Yongbeom Pak ,  Hannes Tschofenig

IPC: H04L9/32 ,  H04L9/06 ,  H04W4/70 ,  H04W12/03 ,  H04W12/069 ,  H04W12/088 ,  H04W12/50 ,  H04L9/40 ,  H04W12/06

CPC classification number: H04L9/3268 ,  H04L9/0643 ,  H04W4/70 ,  H04W12/03 ,  H04W12/069 ,  H04W12/088 ,  H04W12/50 ,  H04L9/3263 ,  H04L63/0823 ,  H04W12/06

Abstract: Broadly speaking, embodiments of the present technique provide methods, apparatuses and systems for performing a TLS/DTLS handshake process between machines in a manner that reduces the amount of data sent during the handshake process.

公开(公告)号：US10742655B2

公开(公告)日：2020-08-11

申请号：US15317805

申请日：2015-05-29

Applicant: ARM IP LIMITED

Inventor： Robert George Taylor ,  Milosch Meriac ,  Andrew John Pritchard ,  Hannes Tschofenig ,  Christopher Mark Paola

IPC: H04L29/06 ,  G06F21/62 ,  G06F21/10

Abstract: Access to a resource controlled by a resource server (6, 8) is provided using a validity token issued by a validation server (4). When a resource request from a user (12) is received at the resource server (6, 8), then the resource server (6, 8) determines if the resource request satisfies a policy. If the resource request satisfies the policy, then access to the resource may be permitted without confirming the validity of the validation token with the validation server (4). Conversely, if the resource request does not satisfy the policy, then validation of the validation token with the validation server (4) is performed before the access requested is permitted.