摘要 |
A method and system authenticates and securely enrolls an untrusted device over a cellular network. In operation, a mobile device transmits an identifier (such as the phone number of the mobile device) via a communication transport over a first network (which may be untrusted or partially untrusted) network (such as the cellular network). A server receives the transmission and sends a token to the mobile device across a trusted network (such as the SMS system). The token is transmitted by the mobile device over the first network to the server. The server verifies the token and may, for example, issue a digital certificate for device authentication.
|