Video surveillance systems using out of band key exchange
US-12177293-B2 · Dec 24, 2024 · US
Method for associating an image-forming device, a mobile device, and a user
US9240982B2 · US · B2
| Field | Value |
|---|---|
| Publication number | US-9240982-B2 |
| Application number | US-201314142442-A |
| Country | US |
| Kind code | B2 |
| Filing date | Dec 27, 2013 |
| Priority date | Dec 27, 2013 |
| Publication date | Jan 19, 2016 |
| Grant date | Jan 19, 2016 |
How to read this patent
A practical reading order for non-experts. Skip the full description unless you need deep technical detail.
- Title
What the patent document calls the invention.
- Abstract
A short plain-language summary of the technical disclosure.
- Assignees and inventors
Who owns or filed the patent and who is credited as inventor.
- Key dates
Filing, priority, publication, and grant dates set the timeline.
- First independent claim
The legal scope of protection — read this for what is actually claimed.
- CPC / IPC classifications
Technology tags used to group this patent with similar filings.
- Citations and related patents
Prior art links and similar publications in this corpus.
Abstract
Official abstract text for this publication.
Systems, methods, and devices for associating an image forming device and a mobile device receive, at a first device, a request to establish a connection with a second device; generating an optically-readable code that encodes a first set of data, wherein the first set of data includes first key-derivation data; display the optically-readable code of the first set of data; establish a communication channel with the second device; receiving a second set of data from the second device via the established communication channel, wherein the second set of data includes second key-derivation data, and wherein the second key-derivation data is generated in response to receiving the first key-derivation data at the second device; and determine the common key from the first key-derivation data and the second key-derivation data.
First claim
Opening claim text (preview).
What is claimed is: 1. A method for associating devices, the method comprising: receiving, at a first device, user-identification information; determining whether the user-identification information is associated with a common key; in response to determining that the user-identification information is not associated with the common key, generating an optically-readable code that encodes a first set of data, wherein the first set of data includes at least first key-derivation data, a network address of the first device, and session-identification information; displaying the optically-readable code of the first set of data; establishing a connection with a second device; receiving a second set of data from the second device via the established connection, wherein the second set of data includes at least second key-derivation data, and wherein the second key-derivation data is generated in response to receiving the first key-derivation data at the second device; determining the common key from the first key-derivation data and the second key-derivation data; encrypting, at the first device, secure-connection establishing data using the common key; sending the secure-connection establishing data from the first device to the second device via the established connection; decrypting, at the second device, the secure-connection establishing data using the common key; and establishing a secure connection using the decrypted secure-connection establishing data. 2. The method of claim 1 , further comprising: establishing an association between the user-identification information and the common key; and storing the association at the first device. 3. The method of claim 1 , further comprising providing an indication for indicating that the connection between the first device and the second device has been established. 4. The method of claim 1 , wherein the secure-connection establishing data includes a common name and a certificate hash. 5. One or more non-transitory computer-readable media storing computer-executable instructions that, when executed by one or more computing devices, cause the one or more computing devices to perform operations comprising: receiving, at a first device, user-identification information; determining whether the user-identification information is associated with a common key; in response to determining that the user-identification information is not associated with the common key, generating an optically-readable code that encodes a first set of data, wherein the first set of data includes at least first key-derivation data, a network address of the first device, and session-identification information; displaying the optically-readable code of the first set of data; establishing a connection with a second device; receiving a second set of data from the second device via the established connection, wherein the second set of data includes at least second key-derivation data, and wherein the second key-derivation data is generated in response to receiving the first key-derivation data at the second device; determining the common key from the first key-derivation data and the second key-derivation data; encrypting, at the first device, secure-connection establishing data using the common key; sending the secure-connection establishing data from the first device to the second device via the established connection; decrypting, at the second device, the secure-connection establishing data using the common key; and establishing a secure connection using the decrypted secure-connection establishing data. 6. The one or more non-transitory computer-readable media of claim 5 , further comprising: establishing an association between the user-identification information and the common key; and storing the association at the first device. 7. The one or more non-transitory computer-readable media of claim 5 , further comprising providing an indication for indicating that the connection between the first device and the second device has been established. 8. The one or more non-transitory computer-readable media of claim 5 , wherein the secure-connection establishing data includes a common name and a certificate hash. 9. A system for associating devices, the system comprising: a receiver for receiving user-identification information; at least one non-transitory computer-readable medium; and at least one processor in communication with the at least one non-transitory computer-readable medium, the at least one processor configured to: determine whether the user-identification information is associated with a common key; generate, in response to the determining that the user-identification information is not associated with a common key, an optically-readable code that encodes a first set of data, wherein the first set of data includes at least first key-derivation data, a network address of the first device, and session-identification information; display the optically-readable code of the first set of data; establish a connection with a second device; receive a second set of data from the second device via an established connection, wherein the second set of data includes at least second key-derivation data, and wherein the second key-derivation data is generated in response to receiving a first key-derivation data at the second device; derive the common key from the first key-derivation data and the second key-derivation data; encrypt, at the first device, secure-connection establishing data using the common key; send the secure-connection establishing data from the first device to the second device via the established connection; decrypt, at the second device, the secure-connection establishing data using the common key; and establish a secure connection using the decrypted secure-connection establishing data.
Assignees
Inventors
Classifications
Authentication · CPC title
- H04L63/061Primary
for key exchange, e.g. in peer-to-peer networks (cryptographic mechanisms or cryptographic arrangements for key agreement H04L9/0838) · CPC title
for authentication of entities (cryptographic mechanisms or cryptographic arrangements for entity authentication H04L9/32) · CPC title
Key management, e.g. using generic bootstrapping architecture [GBA] · CPC title
wherein the data content is protected, e.g. by encrypting or encapsulating the payload · CPC title
Patent family
Related publications grouped by family.
External sources
Frequently asked questions
Answers are generated from the same data shown on this page.
- What does patent US9240982B2 cover?
- Systems, methods, and devices for associating an image forming device and a mobile device receive, at a first device, a request to establish a connection with a second device; generating an optically-readable code that encodes a first set of data, wherein the first set of data includes first key-derivation data; display the optically-readable code of the first set of data; establish a communica…
- Who is the assignee on this patent?
- Canon Information & Imaging Solutions Inc, Canon Usa Inc
- What technology area does this patent fall under?
- Primary CPC classification H04L63/061. Mapped technology areas include Electricity.
- When was this patent published?
- Publication date Tue Jan 19 2016 00:00:00 GMT+0000 (Coordinated Universal Time) (B2). Legal status and post-grant events are not shown on this page.
- What related patents are in patentsdb?
- We list 8 related publications on this page (citations in our corpus or others sharing the same primary CPC).