A method of provisioning a secured storage device for use with a trusted host platform enables the trusted host platform to access both a first secured network [figure 8, 8150a] operating in a first security domain and a second secured network operating in a second security domain [figure 8, 8150b] w?thout exposing the first and second security domains to one another. An enrollment agent provides access to a certificate authority associated with the first security domain to obtain authentication and authorization materials for a user authorized to access the first secured network. Likewise, an enrollment agent provides access to a certificate authority associated with the second security domain to obtain authentication and authorization materials for the user when the user is authorized to access the second secured network. According to various embodiments of the invention, a portion of the authentication and authorization materials from each of the respective security domains is stored on the trusted host platform and a portion of the authentication and authorization materials from each of the respective security domains is stored on a secure storage device associated with the user and operable with the trusted host platform.
申请公布号
WO2007092651(A3)
申请公布日期
2008.06.19
申请号
WO2007US60116
申请日期
2007.01.04
申请人
NYTOR, INC.;TOME, AGUSTIN J.;RIDDOCK, CARY;SMALSER, PAUL J., JR.;RUOF, KENNETH ROBERT;GINTER, KARL
发明人
TOME, AGUSTIN J.;RIDDOCK, CARY;SMALSER, PAUL J., JR.;RUOF, KENNETH ROBERT;GINTER, KARL
