What technology area does this patent fall under?

Primary CPC classification G06F21/44. Mapped technology areas include Physics.

When was this patent published?

Publication date Thu Apr 12 2018 00:00:00 GMT+0000 (Coordinated Universal Time) (A1). Legal status and post-grant events are not shown on this page.

What related patents are in patentsdb?

We list 8 related publications on this page (citations in our corpus or others sharing the same primary CPC).

Authentication of a new device by a trusted device

US2018102906A1 · US · A1

Patent metadata
Field	Value
Publication number	US-2018102906-A1
Application number	US-201715725706-A
Country	US
Kind code	A1
Filing date	Oct 5, 2017
Priority date	Oct 7, 2016
Publication date	Apr 12, 2018
Grant date	—

How to read this patent

A practical reading order for non-experts. Skip the full description unless you need deep technical detail.

Title
What the patent document calls the invention.
Abstract
A short plain-language summary of the technical disclosure.
Assignees and inventors
Who owns or filed the patent and who is credited as inventor.
Key dates
Filing, priority, publication, and grant dates set the timeline.
First independent claim
The legal scope of protection — read this for what is actually claimed.
CPC / IPC classifications
Technology tags used to group this patent with similar filings.
Citations and related patents
Prior art links and similar publications in this corpus.

Abstract

Official abstract text for this publication.

A method, computer program, apparatus, and system for authentication of devices in a network of devices, and more specifically to a challenge-response authentication in which one trusted device presents a question (“challenge”) and another party must provide a valid answer (“response”) to be authenticated. The challenge includes processing data by an application specific integrated circuit (ASIC).

First claim

Opening claim text (preview).

What is claimed is: 1 . A method performed by a trusted device for authentication of a new device, the method comprising: retrieving authentication data; transmitting the authentication data and a set of processing parameter to the new device; generating processed authentication data by processing the authentication data using an application specific integrated circuit (ASIC) of the trusted device and the set of processing parameters; and authenticating the new device only if: a response from the new device is received, wherein the response comprises data; and a difference between the processed authentication data and the data comprised in the response does not exceed a threshold difference. 2 . The method of claim 1 , wherein the new device is authenticated only if: a response from the new device is received, wherein the response comprises data; the response is received within a threshold time span from transmitting the authentication data and the set of processing parameters to the new device; and a difference between the processed authentication data and the data comprised in the response does not exceed a threshold difference. 3 . The method of claim 1 , wherein the method comprises further authentication processes between the trusted device and new device. 4 . The method of claim 1 , wherein the ASIC is selected from the group comprising: an image processing pipeline, video analytics pipeline and an audio processing pipeline. 5 . The method of claim 1 , wherein the retrieving the authentication data comprises reading the authentication data from a computer memory of the trusted device. 6 . The method of claim 1 , wherein the trusted device is a camera, wherein the step of retrieving the authentication data comprises capturing image data by an image sensor of the camera and using at least parts of the image data as the authentication data. 7 . The method of claim 1 , wherein the ASIC comprises a first version number, wherein the response received from the new device comprises a second version number, wherein the method further comprises determining the threshold difference based on the first version number and the second version number. 8 . The method of claim 2 , wherein the ASIC comprises a first version number, wherein the response received from the new device comprises a second version number, wherein the method further comprises determining the threshold time span based on the first version number and the second version number. 9 . A device configured to authenticate a new device, the device comprising: an application specific integrated circuit (ASIC); a processor configured to: retrieve authentication data; and generate processed authentication data by processing the authentication data using the ASIC and a set of processing parameters; and a digital network module configured to transmit the authentication data and a set of processing parameter to the new device, and to receive a response from the new device, wherein the processor is configured to authenticating the new device only if: a response from the new device is received by the digital network module, wherein the response comprises data; and a difference between the processed authentication data and the data comprised in the response does not exceed a threshold difference. 10 . The device of claim 9 , wherein the processor is configured to authenticating the new device only if: a response from the new device is received by the digital network module, wherein the response comprises data; the response is received within a threshold time span from transmitting, by the digital network module, the authentication data and the set of processing parameters to the new device; and a difference between the processed authentication data and the data comprised in the response does not exceed a threshold difference. 11 . The device of claim 9 , wherein the device is a network camera. 12 . A device comprising: a digital network module configured to receive a challenge from a second device, the challenge comprising authentication data and a set of processing parameter; an application specific integrated circuit (ASIC); and a processor configured to generate processed authentication data by processing the authentication data using the ASIC and the set of processing parameters, wherein the digital network module being further configured to transmit a response to the challenge to the second device, the response comprising the processed authentication data. 13 . The device of claim 12 , being a network camera. 14 . A system comprising: a device; and a new device, wherein the device comprises: an application specific integrated circuit (ASIC); a processor configured to: retrieve authentication data; and generate processed authentication data by processing the authentication data using the ASIC and a set of processing parameters; and a digital network module configured to transmit the authentication data and a set of processing parameter to the new device, and to receive a response from the new device, wherein the processor is configured to authenticating the new device only if: a response from the new device is received by the digital network module, wherein the response comprises data; and a difference between the processed authentication data and the data comprised in the response does not exceed a threshold difference; and wherein the new device comprises: a digital network module configured to receive the authentication data and the set of processing parameter from the device; an ASIC; and a processor configured to generate processed authentication data by processing the authentication data using the ASIC and the set of processing parameters; wherein the digital network module being further configured to transmit a response to the device, the response comprising the processed authentication data. 15 . A computer program product comprising a non-transitory computer-readable medium having computer readable program code recorded thereon which when executed on a device having processing capability is configured to perform the steps of: retrieving authentication data; transmitting the authentication data and a set of processing parameter to the new device; generating processed authentication data by processing the authentication data using an application specific integrated circuit (ASIC) of the trusted device and the set of processing parameters; and authenticating the new device only if: a response from the new device is received, wherein the response comprises data; and a difference between the processed authentication data and the data comprised in the response does not exceed a threshold difference.

Assignees

Axis Ab

Inventors

Lindberg Mikael

Classifications

G06F21/44Primary
Program or device authentication · CPC title
G06F21/72
in cryptographic circuits · CPC title
H04L9/321
involving a third party or a trusted authority · CPC title
G06F2221/2103
Challenge-response · CPC title
H04L9/3271Primary
using challenge-response · CPC title

Patent family

Related publications grouped by family.

View patent family 57121091

External sources

Frequently asked questions

Answers are generated from the same data shown on this page.

What does patent US2018102906A1 cover?: A method, computer program, apparatus, and system for authentication of devices in a network of devices, and more specifically to a challenge-response authentication in which one trusted device presents a question (“challenge”) and another party must provide a valid answer (“response”) to be authenticated. The challenge includes processing data by an application specific integrated circuit (ASIC).
Who is the assignee on this patent?: Axis Ab
What technology area does this patent fall under?: Primary CPC classification G06F21/44. Mapped technology areas include Physics.
When was this patent published?: Publication date Thu Apr 12 2018 00:00:00 GMT+0000 (Coordinated Universal Time) (A1). Legal status and post-grant events are not shown on this page.
What related patents are in patentsdb?: We list 8 related publications on this page (citations in our corpus or others sharing the same primary CPC).