Invention Grant
- Patent Title: Access control protocol for embedded devices
- Patent Title (中): 嵌入式设备的访问控制协议
-
Application No.: US12207182Application Date: 2008-09-09
-
Publication No.: US08971537B2Publication Date: 2015-03-03
- Inventor: Martin Naedele
- Applicant: Martin Naedele
- Applicant Address: CH Zurich
- Assignee: ABB Research Ltd
- Current Assignee: ABB Research Ltd
- Current Assignee Address: CH Zurich
- Agency: Buchanan Ingersoll & Rooney PC
- Priority: EP06405110 20060310
- Main IPC: G06F21/00
- IPC: G06F21/00 ; H04L29/06

Abstract:
The client requests from the authentication and authorization server a capability for accessing the target server. The authentication and authorization server sends client a capability (capC,S) comprising the public key (pubC) of the client, said capability being signed with a private key (privAA) of the authentication and authorization server. The client sends the capability (capC,S) to the target server. If the capability is valid, the target server grants the client access and a data exchange session can be initiated. The disclosed protocol is scalable, as it does not require individual configuration of each target server device, allows revocation of user access within reasonable time, stores no compromisable secret data on any target server device, enables individual access permission per user, and accountability of each user.
Public/Granted literature
- US20090022325A1 ACCESS CONTROL PROTOCOL FOR EMBEDDED DEVICES Public/Granted day:2009-01-22
Information query