公开(公告)号：US20170346848A1

公开(公告)日：2017-11-30

申请号：US15168321

申请日：2016-05-31

申请人： Ned M. Smith ,  Ravi S. Subramaniam ,  David W. Grawrock

发明人： Ned M. Smith ,  Ravi S. Subramaniam ,  David W. Grawrock

IPC分类号： H04L29/06 ,  H04W12/04 ,  H04W4/00 ,  H04W12/08 ,  H04W12/06

CPC分类号： H04L63/1441 ,  H04L63/06 ,  H04L63/08 ,  H04W4/00 ,  H04W4/70 ,  H04W12/04 ,  H04W12/06 ,  H04W12/08

摘要： In one embodiment, a domain controller includes: a quarantine logic to quarantine unknown devices from unrestricted network access, the quarantine logic comprising a first quarantine point at a first layer of a multi-layer communication model; a first logic to communicate with a domain name system (DNS) service to self-allocate and register a domain name with the DNS service, the domain name associated with a domain to be managed by the domain controller; a second logic to manage a group of devices of the domain; and a third logic to receive a provisioning request for a first device via an access point, wherein the access point comprises a second quarantine point at a second layer of the multi-level communication model. Other embodiments are described and claimed.

公开(公告)号：US20160134419A1

公开(公告)日：2016-05-12

申请号：US14670874

申请日：2015-03-27

申请人： Ned M. Smith ,  Jesse Walker ,  Mats Agerstam ,  Ravi S. Subramaniam ,  Eduardo Cabre

发明人： Ned M. Smith ,  Jesse Walker ,  Mats Agerstam ,  Ravi S. Subramaniam ,  Eduardo Cabre

IPC分类号： H04L9/08 ,  H04L9/30 ,  H04L9/14

CPC分类号： H04L9/0841 ,  H04L9/0833 ,  H04L9/0844 ,  H04L9/0866 ,  H04L9/14 ,  H04L9/30 ,  H04L9/3013 ,  H04L2209/127 ,  H04W12/04

摘要： Technologies for trusted device on-boarding include a first computing device to generate a first public Diffie-Hellman key based on a private Diffie-Hellman key and a first unique identifier of the first computing device. The first unique identifier is retrieved from secure memory of the first computing device. The first computing device transmits the first public Diffie-Hellman key to a second computing device and receives, from the second computing device, a second public Diffie-Hellman key of the second computing device. The second public Diffie-Hellman key incorporates a second unique identifier of the second computing device. Further, the first computing device removes a contribution of the second unique identifier from the second public Diffie-Hellman key to generate a modified public Diffie-Hellman key and generates a shared Diffie-Hellman key based on the modified public Diffie-Hellman key and the private Diffie-Hellman key of the first computing device.

摘要翻译： 用于可信设备登机的技术包括第一计算设备，用于基于私有Diffie-Hellman密钥和第一计算设备的第一唯一标识符生成第一公共Diffie-Hellman密钥。 从第一计算设备的安全存储器检索第一唯一标识符。 第一计算设备将第一公共Diffie-Hellman密钥发送到第二计算设备，并从第二计算设备接收第二计算设备的第二公共Diffie-Hellman密钥。 第二个公共Diffie-Hellman密钥包含第二计算设备的第二唯一标识符。 此外，第一计算设备从第二公共Diffie-Hellman密钥去除第二唯一标识符的贡献，以生成修改的公共Diffie-Hellman密钥，并且基于修改的公共Diffie-Hellman密钥生成共享Diffie-Hellman密钥，并且 第一个计算设备的私人Diffie-Hellman密钥。