发明名称 |
Online secure device provisioning framework |
摘要 |
A method for updating network-enabled devices with new identity data includes generating a plurality of new identity data records and loading the new identity data records onto an update server. A request is received at the update server for new identity data from at least one network-enabled device having a previously assigned identity linked to an identifier. The previously assigned identifier is linked to a new identifier that is linked to one of the new identity data records. One or more new identity data records are securely delivered to the network-enabled device. |
申请公布号 |
US9130928(B2) |
申请公布日期 |
2015.09.08 |
申请号 |
US201113087847 |
申请日期 |
2011.04.15 |
申请人 |
Google Technology Holdings LLC |
发明人 |
Qiu Xin;Medvinsky Alexander;Moskovics Stuart P.;Pasion Jason A.;Sprunk Eric J.;Wang Fan;Yao Ting |
分类号 |
H04L29/06;G06F21/57 |
主分类号 |
H04L29/06 |
代理机构 |
McDermott Will & Emery LLP |
代理人 |
McDermott Will & Emery LLP |
主权项 |
1. A method for updating network-enabled devices with new identity data, comprising:
collecting a first identifier for each network-enabled device from a first database and a second identifier for each network-enabled device from a second database; consolidating into a whitelist the first and second identifiers associated with network-enabled devices that are authorized to be upgraded with new identity data; generating a plurality of new identity data records; encrypting the plurality of new identity data records at an identity generation system that is separate from the network-enabled devices using a key previously installed in each respective network-enabled device to produce encrypted new identity data records; loading the encrypted new identity data records onto an update server; receiving at the update server a request for new identity data from at least one network-enabled device having a previously assigned identity linked to the first identifier; authorizing the at least one network-enabled device for the new identity data based on the whitelist; linking the previously assigned identifier to a new identifier linked to one of the encrypted new identity data records; and securely delivering one or more encrypted new identity data records to the network-enabled device. |
地址 |
Mountain View CA US |