公开(公告)号：US20180146367A1

公开(公告)日：2018-05-24

申请号：US15360850

申请日：2016-11-23

Applicant: AFERO, INC.

Inventor： DANIEL ALTIN ,  SCOTT ZIMMERMAN ,  CLIF LIU ,  STEPHEN SEWERYNEK

IPC: H04W12/04 ,  H04L9/08 ,  H04L29/08

Abstract: An apparatus and method are described for sharing WiFi credentials. For example, one embodiment of a method comprises: generating a first secret on a first IoT device, the first IoT device having WiFi credentials stored thereon; sharing the first secret with a second IoT device; encrypting the WiFi credentials on the first IoT device using the first secret to generate encrypted WiFi credentials; receiving the encrypted WiFi credentials from the first IoT device at an IoT service; encrypting the encrypted WiFi credentials at the IoT service using a second secret to generate twice-encrypted WiFi credentials, the second secret known by the second IoT device; transmitting the twice-encrypted WiFi credentials from the IoT service to the second IoT device; decrypting, at the second IoT device, the twice-encrypted WiFi credentials using the second secret to generate the encrypted WiFi credentials and decrypting the encrypted WiFi credentials using the first secret to generate the WiFi credentials; and establishing a secure WiFi connection on the second IoT device using the WiFi credentials.

公开(公告)号：US20200221295A1

公开(公告)日：2020-07-09

申请号：US16730736

申请日：2019-12-30

Applicant: Afero, Inc.

Inventor： DANIEL ALTIN ,  SCOTT ZIMMERMAN ,  CLIF LIU ,  STEPHEN SEWERYNEK

IPC: H04W12/04 ,  H04L9/06 ,  H04L9/08 ,  H04W4/70 ,  H04W12/02 ,  H04L9/00 ,  H04W12/00 ,  H04L29/08

Abstract: An apparatus and method are described for sharing WiFi credentials. For example, one embodiment of a method comprises: generating a first secret on a first IoT device, the first IoT device having WiFi credentials stored thereon; sharing the first secret with a second IoT device; encrypting the WiFi credentials on the first IoT device using the first secret to generate encrypted WiFi credentials; receiving the encrypted WiFi credentials from the first IoT device at an IoT service; encrypting the encrypted WiFi credentials at the IoT service using a second secret to generate twice-encrypted WiFi credentials, the second secret known by the second IoT device; transmitting the twice-encrypted WiFi credentials from the IoT service to the second IoT device; decrypting, at the second IoT device, the twice-encrypted WiFi credentials using the second secret to generate the encrypted WiFi credentials and decrypting the encrypted WiFi credentials using the first secret to generate the WiFi credentials; and establishing a secure WiFi connection on the second IoT device using the WiFi credentials.

公开(公告)号：US20190250899A1

公开(公告)日：2019-08-15

申请号：US15894603

申请日：2018-02-12

Applicant: AFERO, INC.

Inventor： ERHARD RIEDL ,  CLIF LIU ,  LUCAS FINKELSTEIN

IPC: G06F8/65 ,  H04L9/08 ,  H04L29/06 ,  H04L29/08

CPC classification number: G06F8/65 ,  H04L9/0825 ,  H04L63/123 ,  H04L67/02 ,  H04L67/12

Abstract: A system and method are described for performing service-initiated updates to IoT devices. For example, one embodiment of a system comprises: a plurality of IoT devices, each IoT device comprising: a storage device to store attributes and/or program code; a processor to execute the program code using the attributes to perform one or more specified functions of the IoT device, and attribute/code management circuitry and/or logic to manage a current state of the attributes and/or program code; an Internet of Things (IoT) cloud service to be communicatively coupled to IoT devices over the Internet, the IoT cloud service including an update service to initiate updates of the attributes and/or program code stored on the plurality of IoT devices, an IoT device to transmit a notification to the update service upon reaching a particular initialization state, the notification including an indication of a current attribute and/or program code state; the update service to responsively determine whether an update to the current attribute and/or program code state is available and, if so, to use a first key to generate a signature over a binary which includes the update to the attribute and/or program code state to generate a signed binary; the update service to further store the signed binary in a designated network location and to generate or retrieve a Uniform Resource Locator (URL) identifying the network location, the update service to transmit an update command to the IoT device containing the URL; the attribute/code management circuitry and/or logic of the IoT device to interpret the URL to retrieve the signed binary, to use a second key to verify the signature, and to responsively update the attribute and/or program code in accordance with the binary.