| 发明名称 | Set of servers for “machine-to-machine” communications using public key infrastructure | ||
| 摘要 | A set of servers can support secure and efficient “Machine to Machine” communications using an application interface and a module controller. The set of servers can record data for a plurality of modules in a shared module database. The set of servers can (i) access the Internet to communicate with a module using a module identity, (i) receive server instructions, and (iii) send module instructions. Data can be encrypted and decrypted using a set of cryptographic algorithms and a set of cryptographic parameters. The set of servers can (i) receive a module public key with a module identity, (ii) authenticate the module public key, and (iii) receive a subsequent series of module public keys derived by the module with a module identity. The application interface can use a first server private key and the module controller can use a second server private key. | ||
| 申请公布号 | US9596078(B2) | 申请公布日期 | 2017.03.14 |
| 申请号 | US201514789255 | 申请日期 | 2015.07.01 |
| 申请人 | M2M and IoT Technologies, LLC | 发明人 | Nix John A. |
| 分类号 | H04L29/06;H04L9/08;H04W52/02;H04W12/04;H04W4/00;H04L9/32;H04W12/06;H04W12/02;H04L29/08;H04L9/00;H04L9/30;G06F21/35;H04L9/14;H04J11/00;H04L12/28;H04W8/08;H04W40/00;H04W76/04;H04W80/04;H04W84/12;H04W88/12 | 主分类号 | H04L29/06 |
| 代理机构 | McDonnell Boehnen Hulbert & Berghoff LLP | 代理人 | McDonnell Boehnen Hulbert & Berghoff LLP |
| 主权项 | 1. A method for supporting machine-to-machine communications, the method performed by a set of servers using at least one computer processor, the method comprising: recording a first server private key in a nonvolatile memory, wherein the first server private key is used to establish a secure connection with an application server; receiving a message through at least one local area network (LAN) interface, wherein the message includes a module identity and a module digital signature, wherein the module digital signature is verified using a first module public key, and wherein the message includes a first source Internet protocol address and port (IP:port) number; transmitting a response to the first source IP:port number, wherein the response includes a server digital signature processed using a second server private key; using the module identity to select from a module database a set of cryptographic parameters for processing a second module public key; transmitting the set of cryptographic parameters; receiving the second module public key and the module identity, wherein at least one member of the set of servers processes the second module public key using (i) the module identity and (ii) at least a portion of the set of cryptographic parameters, wherein the second module public key is verified using the first module public key, wherein the second module public key is used to decrypt a module encrypted data, and wherein the module encrypted data includes a sensor data; and transmitting the sensor data and the module identity to the application server using the secure connection. | ||
| 地址 | Evanston IL US | ||