摘要 |
One embodiment of the present invention provides a system that facilitates remotely configuring a device across a network. The system operates by receiving configuration information at the device from a remote system across the network. Next, the system encrypts this configuration information using a device key, which is locally stored at the device and is different from keys associated with other devices. The system then configures the device by storing the encrypted configuration information in a non-volatile configuration store associated with the device. In this way, the encrypted configuration information contained in the non-volatile configuration store cannot be used with another device. In one embodiment of the present invention, receiving the configuration information involves using a secret key, which is locally stored at the device, to decrypt the configuration information received from the remote system. In one embodiment of the present invention, the device key is stored in a one-time programmable memory within the device that can be programmed only once and cannot be reprogrammed.
|