Method for enabling a secure provisioning of a credential, and related wireless devices and servers

摘要

This disclosure provides a method, performed in a wireless device 60, for enabling a secure provisioning of a credential from a server 70. The wireless device 60 stores a device public key and a device private key. The server 70 stores the device public key. The method comprises receiving S1 an authentication request from the server 70; generating S2 a device authentication and integrity, DAI, indicator; and transmitting S3 an authentication response to the server 70. The authentication response comprises the DAI indicator. The method comprises receiving S4 a credential message from the server 70, the credential message comprising a server authentication and integrity, SAI, indicator. The SAI indicator provides a proof of the server's possession of the device public key. The method comprises verifying S5 the received credential message using the device public key.

主权项

1. A method, performed in a wireless device, for enabling a secure provisioning of a credential from a server, the wireless device storing a device public key and a device private key, the server storing the device public key, the method comprising:
receiving an authentication request from the server; generating a device authentication and integrity (DAI) indicator; transmitting an authentication response to the server, the authentication response comprising the DAI indicator; receiving a credential message from the server, the credential message comprising a server authentication and integrity (SAI) indicator; wherein the SAI indicator provides a proof of the server's possession of the device public key; and verifying the received credential message using the device public key.