METHOD AND SYSTEM FOR CONFIGURING AND SECURING A DEVICE OR APPARATUS, A DEVICE OR APPARATUS, AND A COMPUTER PROGRAM PRODUCT

摘要

A computer-implemented method for configuring and securing a first device, the method including performing a first check of the first device to determine the presence of unauthorised components or modules in a memory of the first device, performing a second check of the device to compare hardware components of the first device against a predetermined list of authorised components, initiating an encrypted virtual private network (VPN) tunnel between the first device and a second device that is remote from the first device by transmitting a request from the first device to the second device including data representing multiple parameters associated with the first device.

主权项

1. A computer-implemented method for configuring and securing a first device, the method including:
performing a first check of the first device to determine the presence of unauthorised components or modules in a memory of the first device; performing a second check of the device to compare hardware components of the first device against a predetermined list of authorised components; initiating an encrypted virtual private network (VPN) tunnel between the first device and a second device that is remote from the first device by transmitting a request from the first device to the second device including data representing multiple parameters associated with the first device; determining, at the second device, whether the multiple parameters associated with the first device correspond to a known and trusted device; and on the basis of the determination, providing the encrypted VPN tunnel between the first device and a second device; transmitting data representing a first acknowledgement message, on the basis of the first and second checks, from the first device to a second device using the VPN; on receipt of the first acknowledgement message at the second device, transmitting encrypted data packets representing respective portions of an operating system (OS) for the first device from the second device to the first device using the VPN tunnel; for a predefined task conforming operations of the hardware components of the first device according to a set of preferred hardware operations and behaviours for the task; performing a third check of the first device, using the OS, to compare hardware components of the first device against a predetermined list of authorised components, whereby to approve the hardware components of the first device; transmitting, on the basis of the third check, data representing an application request message from the first device to the second device using the VPN tunnel; and on receipt of the application request message at the second device, transmitting encrypted data packets representing respective portions of application data for an application for performing the predefined task from the second device to the first device using the VPN tunnel.