主权项 |
1. A method for authenticating communications from a first device with a second device through a network, the method comprising:
registering the first device with the second device by:
receiving, at the second device and from the first device, a device public key that is specific to the second device; andreceiving, at the second device and originating from a secure repository, a repository public key that is specific to the second device; and after registering the first device with the second device, authenticating a communication from the first device by:
receiving, at the second device and from the first device, the communication;receiving, at the second device and from the first device, a first digital signature, wherein the first digital signature is generated by the first device using a device private key corresponding to the device public key;receiving, at the second device and originating from the secure repository, a second digital signature, wherein:
the second digital signature is generated by the secure repository using a repository private key corresponding to the repository public key; andthe second digital signature is generated by the secure repository only after the first device is authenticated by the secure repository;authenticating, by the second device, the first digital signature using the device public key;authenticating, by the second device, the second digital signature using the repository public key; andauthenticating, by the second device, the communication based on authenticating the first digital signature and authenticating the second digital signature. |