公开(公告)号：US10575273B2

公开(公告)日：2020-02-25

申请号：US15087106

申请日：2016-03-31

Applicant: Intel Corporation

Inventor： Meiyuan Zhao ,  Jesse R. Walker ,  Victor B. Lortz ,  Jianqing Zhang

IPC: H04L29/06 ,  H04W60/04 ,  H04W4/08 ,  H04W12/04

Abstract: Embodiments are directed to enrollment of an endpoint device in a secure domain. An enrollment request is sent to a delegated registrar (DR) device to initiate a trust-establishment procedure with the DR device to establish initial connectivity and an initial symmetric key to be shared between the DR and the endpoint device. The DR device provides to the endpoint device limited-use credentials for group-access key establishment, and group connectivity parameters for accessing a group administrator (GA) device. The endpoint device and the GA device perform a group-enrollment procedure in which the endpoint device provides the limited-use credentials to the GA device and receives, from the GA device, the group-access key.

公开(公告)号：US20190296967A1

公开(公告)日：2019-09-26

申请号：US16306558

申请日：2016-07-01

Applicant: Intel Corporation

Inventor： Shao-Wen Yang ,  Meiyuan Zhao

IPC: H04L12/24 ,  H04W4/70

Abstract: A registrar device is delegated enrollment authority for a group by a group authority. The registrar device identifies a particular asset device in association with a reconfiguration of a machine-to-machine (M2M) system that includes the group. The registrar device identifies an enrollment request for enrollment of the particular asset device within the group of devices in association with the reconfiguration of the M2M system and communicates with the particular device to initiate enrollment of the particular device within the group of devices, where enrollment of the particular device includes provisioning the particular device with a group access credential.

公开(公告)号：US10516654B2

公开(公告)日：2019-12-24

申请号：US15070166

申请日：2016-03-15

Applicant: Intel Corporation

Inventor： Meiyuan Zhao ,  Jesse Walker ,  Xiruo Liu ,  Steffen Schulz ,  Jianqing Zhang

IPC: H04L29/06 ,  H04W12/06

Abstract: In one embodiment, a computing device includes at least one hardware processor to execute instructions, a network interface to enable communication with a second computing device and a third computing device, and at least one storage medium. Such medium may store instructions that when executed by the computing device enable the computing device to request delegation of a key provisioning privilege for the second computing device from the third computing device via a parent-guardian delegation protocol comprising a three-party key distribution protocol with the second computing device and the third computing device, the three-party key distribution protocol having interposed therein a two-party authenticated key exchange protocol between the computing device and the third computing device. Other embodiments are described and claimed.

公开(公告)号：US09124421B2

公开(公告)日：2015-09-01

申请号：US14096386

申请日：2013-12-04

Applicant: Intel Corporation

Inventor： Meiyuan Zhao ,  Christian Maciocco ,  Shilpa Talwar ,  Jessie Walker

IPC: H04L29/00 ,  H04L9/08 ,  H04W12/04 ,  H04L29/08

CPC classification number: H04L9/0819 ,  H04L9/0897 ,  H04L63/0428 ,  H04L63/08 ,  H04L63/12 ,  H04L67/12 ,  H04L2209/80 ,  H04L2209/84 ,  H04W4/046 ,  H04W12/02 ,  H04W12/04 ,  H04W12/10

Abstract: This disclosure is directed to data prioritization, storage and protection in a vehicular communication system. A black box (BB) in a vehicle may receive data from an on-board unit (OBU) and a vehicular control architecture (VCA). The OBU may interact with at least one RSU that is part of an intelligent transportation system (ITS) via at least two channels, at least one of the at least two channels being reserved for high priority messages. The OBU may transmit ITS data to the BB via a secure communication channel, which may be stored along with vehicular data received from the VCA in encrypted form. In response to a request for data, the BB may authenticate a requesting party, determine at least part of the stored data to which the authenticated party is allowed and sign the at least part of the stored data before providing it to the authenticated party.

Abstract translation: 本公开涉及车辆通信系统中的数据优先级，存储和保护。 车辆中的黑盒（BB）可以从车载单元（OBU）和车辆控制架构（VCA）接收数据。 OBU可以经由至少两个信道与作为智能交通系统（ITS）的一部分的至少一个RSU交互，所述至少两个信道中的至少一个被保留用于高优先级消息。 OBU可以经由安全通信信道向BB发送ITS数据，安全通信信道可以与加密形式从VCA接收的车辆数据一起存储。 响应于对数据的请求，BB可以对请求方进行身份验证，确定允许认证方的所存储的数据的至少一部分，并在将其提供给认证方之前对存储的数据的至少一部分进行签名。

公开(公告)号：US11019490B2

公开(公告)日：2021-05-25

申请号：US16306558

申请日：2016-07-01

Applicant: Intel Corporation

Inventor： Shao-Wen Yang ,  Meiyuan Zhao

IPC: H04W12/06 ,  H04W4/70 ,  H04L12/24 ,  H04L29/06 ,  H04W4/08 ,  H04L12/18 ,  H04W4/06

Abstract: A registrar device is delegated enrollment authority for a group by a group authority. The registrar device identifies a particular asset device in association with a reconfiguration of a machine-to-machine (M2M) system that includes the group. The registrar device identifies an enrollment request for enrollment of the particular asset device within the group of devices in association with the reconfiguration of the M2M system and communicates with the particular device to initiate enrollment of the particular device within the group of devices, where enrollment of the particular device includes provisioning the particular device with a group access credential.

公开(公告)号：US20170272415A1

公开(公告)日：2017-09-21

申请号：US15070166

申请日：2016-03-15

Applicant: Intel Corporation

Inventor： Meiyuan Zhao ,  Jesse Walker ,  Xiruo Liu ,  Steffen Schulz ,  Jianqing Zhang

IPC: H04L29/06

CPC classification number: H04L63/061 ,  H04L63/0807 ,  H04L63/0884 ,  H04W12/06

Abstract: In one embodiment, a computing device includes at least one hardware processor to execute instructions, a network interface to enable communication with a second computing device and a third computing device, and at least one storage medium. Such medium may store instructions that when executed by the computing device enable the computing device to request delegation of a key provisioning privilege for the second computing device from the third computing device via a parent-guardian delegation protocol comprising a three-party key distribution protocol with the second computing device and the third computing device, the three-party key distribution protocol having interposed therein a two-party authenticated key exchange protocol between the computing device and the third computing device. Other embodiments are described and claimed.

公开(公告)号：US09923802B2

公开(公告)日：2018-03-20

申请号：US14334171

申请日：2014-07-17

Applicant: Intel Corporation

Inventor： Wendy C. Wong ,  Meiyuan Zhao

IPC: H04L12/28 ,  H04L12/755 ,  H04L12/751 ,  H04L12/733

CPC classification number: H04L45/021 ,  H04L45/02 ,  H04L45/08 ,  H04L45/20

Abstract: In some embodiments, the invention involves information routing in networks, and, more specifically, to defining a framework using swarm intelligence and utilization of the defined framework for routing information in the network, especially for cloud computing applications. In an embodiment, information about available information/services is pushed to network nodes using information packets (ants). Nodes requiring services send query packets (ants) and a node may send a response to a query ant when information is available. Ants may be forwarded throughout the network based on popularity of nodes, freshness of information/requests, routing table information, and requests or interest by consumer nodes captured in information routing table. Other embodiments are described and claimed.