| 发明名称 | Securely connecting control device to target device | ||
| 摘要 | In an approach, a target computing device receives a pairing request from a controller computing device, the pairing request including controller credentials that were previously received by the controller computing device from an authentication server computer and encrypted under a service key. The target computing device forwards the pairing request to the authentication server, the authentication server computer being configured to return a pairing response based at least in part on the controller credentials. The target computing device receives the pairing which includes a shared secret encrypted under a target device key and the same shared secret encrypted under a controller key. The target computing device decrypts the shared secret encrypted under the target device key and forwards the shared secret encrypted under the controller key to the controller device. Using the decrypted shared secret, the target computing device establishes a secure connection to the controller computing device. | ||
| 申请公布号 | US9438571(B2) | 申请公布日期 | 2016.09.06 |
| 申请号 | US201514792191 | 申请日期 | 2015.07.06 |
| 申请人 | Netflix, Inc. | 发明人 | White Jean-Marie;Odayarkoil Baskar;Adams Lee |
| 分类号 | H04L29/06;H04L9/08;H04W12/04;H04W12/06;H04L9/32 | 主分类号 | H04L29/06 |
| 代理机构 | Hickman Palermo Becker Bingham LLP | 代理人 | Hickman Palermo Becker Bingham LLP |
| 主权项 | 1. A method comprising: using a target computing device, receiving a pairing request from a controller computing device, the pairing request including controller credentials that were previously received by the controller computing device from an authentication server computer and encrypted under a service key that is not available to the controller computing device and the target computing device; using the target computing device, sending at least a portion of the pairing request to a target application executing on the target computing device that is configured determine whether to accept or reject the pairing request based on one or more criteria; using the target computing device, in response to receiving a communication from the target application indicating that the target application has accepted the pairing request, forwarding the pairing request to the authentication server computer, the authentication server computer being configured to return a pairing response based at least in part on the controller credentials; using the target computing device, receiving the pairing response from the authentication server computer, wherein the pairing response includes a shared secret encrypted under a target device key and the same shared secret encrypted under a controller key, the controller key being unavailable to the target computing device and the target device key being unavailable to the controller computing device; using the target computing device, decrypting the shared secret encrypted under the target device key; using the target computing device, forwarding the shared secret encrypted under the controller key to the controller computing device; using the target computing device, establishing a secure connection to the controller computing device using the decrypted shared secret; using the target computing device, receiving, over the secure connection, one or more control messages from the controller computing device that are configured to control one or more functions of the target computing device. | ||
| 地址 | Los Gatos CA US | ||