US2016285635A1PendingUtilityA1

Secure communication of data between devices

Assignee: ALCATEL LUCENT USA INCPriority: Sep 2, 2014Filed: Jun 3, 2016Published: Sep 29, 2016
Est. expirySep 2, 2034(~8.1 yrs left)· nominal 20-yr term from priority
H04L 9/0866H04L 63/0876H04L 9/3226H04L 9/14H04L 9/0894H04L 63/0428H04L 2463/062
46
PatentIndex Score
0
Cited by
0
References
0
Claims

Abstract

A capability for secure communication of data from a source device to a destination device is presented. The source device has a device identifier associated therewith. The source device stores an encrypted version of the device identifier that is encrypted based on a master key of the destination device. The source device stores an encryption key. The source device communicates data to the destination device in a secure manner by encrypting the data using the encryption key and propagating the encrypted version of the device identifier and the encrypted data to the destination device. The destination device recovers the data sent by the source device by decrypting the encrypted version of the device identifier based on the master key to determine the device identifier, determining a decryption key based on the device identifier, and decrypting the encrypted data based on the decryption key to recover the data sent by the source device.

Claims

exact text as granted — not AI-modified
What is claimed is: 
     
         1 . A first device configured to securely communicate data to a second device, the first device comprising:
 a processor and a memory communicatively connected to the processor, the processor configured to:
 obtain, at the first device, an encrypted version of a device identifier of the first device, wherein the encrypted version of the device identifier of the first device is encrypted based on a master key of the second device; 
 encrypt the data, at the first device using an encryption key, to form encrypted data; and 
 propagate, from the first device toward the second device, the encrypted version of the device identifier of the first device and the encrypted data. 
   
     
     
         2 . The first device of  claim 1 , wherein, to obtain the encrypted version of the device identifier of the first device, the processor is configured to:
 select the encrypted version of the device identifier of the first device from a set of multiple encrypted versions of the device identifier of the first device that are available on the first device.   
     
     
         3 . The first device of  claim 2 , wherein the processor is configured to:
 receive the set of multiple encrypted versions of the device identifier of the first device from the second device; and   store the set of multiple encrypted versions of the device identifier of the first device in the memory.   
     
     
         4 . The first device of  claim 1 , wherein the processor is configured to:
 receive the encryption key from the second device; and   store the encryption key in the memory.   
     
     
         5 . The first device of  claim 1 , wherein the encryption key is based on the device identifier of the first device and the master key of the second device. 
     
     
         6 . A method for use by a first device to securely communicate data to a second device, the method comprising:
 obtaining, at the first device, an encrypted version of a device identifier of the first device, wherein the encrypted version of the device identifier of the first device is encrypted based on a master key of the second device;   encrypting the data, at the first device using an encryption key, to form encrypted data; and   propagating, from the first device toward the second device, the encrypted version of the device identifier of the first device and the encrypted data.   
     
     
         7 . The method of  claim 6 , wherein obtaining the encrypted version of the device identifier of the first device comprises:
 selecting the encrypted version of the device identifier of the first device from a set of multiple encrypted versions of the device identifier of the first device that are available on the first device.   
     
     
         8 . The method of  claim 7 , further comprising:
 receiving the set of multiple encrypted versions of the device identifier of the first device from the second device; and   storing the set of multiple encrypted versions of the device identifier of the first device in the memory.   
     
     
         9 . The method of  claim 6 , further comprising:
 receiving the encryption key from the second device; and   storing the encryption key in the memory.   
     
     
         10 . The method of  claim 6 , wherein the encryption key is based on the device identifier of the first device and the master key of the second device. 
     
     
         11 . A first device configured to securely receive data from a second device, the first device comprising:
 a processor and a memory communicatively connected to the processor, the processor configured to:
 receive, at the first device from the second device, an encrypted version of a device identifier of the second device and encrypted data; 
 decrypt the encrypted version of the device identifier of the second device, at the first device based on a master key of the first device, to recover the device identifier of the second device; 
 determine, at the first device based on the device identifier of the second device, a decryption key; and 
 decrypt the encrypted data, at the first device based on the decryption key, to recover data sent by the second device. 
   
     
     
         12 . The first device of  claim 11 , wherein, to determine the decryption key based on the device identifier of the second device, the processor is configured to:
 generate the decryption key based on the master key of the first device and the device identifier of the second device; or   retrieve the decryption key based on the device identifier of the second device.   
     
     
         13 . The first device of  claim 11 , wherein the processor is configured to at least one of:
 store, at the first device, the data sent by the second device; or   generate, at the first device based on the data sent by the second device, a response for the second device.   
     
     
         14 . The first device of  claim 11 , wherein the processor is configured to:
 generate, at the first device based on the master key of the first device, a set of encrypted device identifiers for the second device; and   propagate, from the first device toward the second device, the set of encrypted device identifiers for the second device.   
     
     
         15 . The first device of  claim 11 , wherein the processor is configured to:
 generate, at the first device based on the master key of the first device and the device identifier of the second device, an encryption key for the second device; and   propagate the encryption key from the first device toward the second device.   
     
     
         16 . A method for a first device to securely receive data from a second device, the method comprising:
 receiving, at the first device from the second device, an encrypted version of a device identifier of the second device and encrypted data;   decrypting the encrypted version of the device identifier of the second device, at the first device based on a master key of the first device, to recover the device identifier of the second device;   determining, at the first device based on the device identifier of the second device, a decryption key; and   decrypting the encrypted data, at the first device based on the decryption key, to recover data sent by the second device.   
     
     
         17 . The method of  claim 16 , wherein determining the decryption key based on the device identifier of the second device comprises:
 generating the decryption key based on the master key of the first device and the device identifier of the second device; or   retrieving the decryption key based on the device identifier of the second device.   
     
     
         18 . The method of  claim 16 , further comprising at least one of:
 storing, at the first device, the data sent by the second device; or   generating, at the first device based on the data sent by the second device, a response for the second device.   
     
     
         19 . The method of  claim 16 , further comprising:
 generating, at the first device based on the master key of the first device, a set of encrypted device identifiers for the second device; and   propagating, from the first device toward the second device, the set of encrypted device identifiers for the second device.   
     
     
         20 . The method of  claim 16 , further comprising:
 generating, at the first device based on the master key of the first device and the device identifier of the second device, an encryption key for the second device; and   propagating the encryption key from the first device toward the second device.

Join the waitlist — get patent alerts

Track US2016285635A1 — get alerts on status changes and closely related new filings.

We store only your email — no account needed. See our privacy policy.