公开(公告)号：US20170346836A1

公开(公告)日：2017-11-30

申请号：US15167817

申请日：2016-05-27

Applicant: AFERO, INC.

Inventor： SHANNON HOLLAND ,  ROBEY POINTER ,  STEPHEN SEWERYNEK ,  NICKOLAS HECKMAN ,  CHRIS AUITO ,  LUCAS FINKELSTEIN ,  SCOTT ZIMMERMAN

IPC: H04L29/06 ,  H04W4/00 ,  G06F17/30 ,  H04B1/3816 ,  H04W76/02 ,  H04W12/08

Abstract: A system and method are described for preventing security breaches in an IoT system. For example, one embodiment of a system comprises: an Internet of Things (IoT) device comprising a wireless communication module to establish communication with a plurality of IoT hubs over local wireless communication channels; advertising control logic to transmit first advertising beacons to the plurality of IoT hubs of a user indicating that the IoT device is connectable; the advertising control logic to begin transmitting a second advertising beacon to IoT hubs indicating that the IoT device is not connectable if the IoT device establishes a connection with a first IoT hub, the IoT hubs other than the first IoT hub to report the not connectable status of the IoT device to an IoT service; and a connection security module of the IoT service to determine whether the IoT device is connected to any known IoT hub upon receiving the not connectable status from one or more of the IoT hubs; wherein if the connection security module cannot identify a known IoT hub to which the IoT device is connected, then an alert condition is generated.

公开(公告)号：US20180146367A1

公开(公告)日：2018-05-24

申请号：US15360850

申请日：2016-11-23

Applicant: AFERO, INC.

Inventor： DANIEL ALTIN ,  SCOTT ZIMMERMAN ,  CLIF LIU ,  STEPHEN SEWERYNEK

IPC: H04W12/04 ,  H04L9/08 ,  H04L29/08

Abstract: An apparatus and method are described for sharing WiFi credentials. For example, one embodiment of a method comprises: generating a first secret on a first IoT device, the first IoT device having WiFi credentials stored thereon; sharing the first secret with a second IoT device; encrypting the WiFi credentials on the first IoT device using the first secret to generate encrypted WiFi credentials; receiving the encrypted WiFi credentials from the first IoT device at an IoT service; encrypting the encrypted WiFi credentials at the IoT service using a second secret to generate twice-encrypted WiFi credentials, the second secret known by the second IoT device; transmitting the twice-encrypted WiFi credentials from the IoT service to the second IoT device; decrypting, at the second IoT device, the twice-encrypted WiFi credentials using the second secret to generate the encrypted WiFi credentials and decrypting the encrypted WiFi credentials using the first secret to generate the WiFi credentials; and establishing a secure WiFi connection on the second IoT device using the WiFi credentials.

公开(公告)号：US20200259848A1

公开(公告)日：2020-08-13

申请号：US16791684

申请日：2020-02-14

Applicant: Afero, Inc.

Inventor： SHANNON HOLLAND ,  ROBEY POINTER ,  STEPHEN SEWERYNEK ,  NICKOLAS HECKMAN ,  CHRIS AUITO ,  LUCAS FINKELSTEIN ,  SCOTT ZIMMERMAN

IPC: H04L29/06 ,  H04W74/00 ,  H04W4/80 ,  G06F16/951 ,  H04W12/08 ,  H04B1/3816

Abstract: A system and method are described for preventing security breaches in an IoT system. For example, one embodiment of a system comprises: an Internet of Things (IoT) device comprising a wireless communication module to establish communication with a plurality of IoT hubs over local wireless communication channels; advertising control logic to transmit first advertising beacons to the plurality of IoT hubs of a user indicating that the IoT device is connectable; the advertising control logic to begin transmitting a second advertising beacon to IoT hubs indicating that the IoT device is not connectable if the IoT device establishes a connection with a first IoT hub, the IoT hubs other than the first IoT hub to report the not connectable status of the IoT device to an IoT service; and a connection security module of the IoT service to determine whether the IoT device is connected to any known IoT hub upon receiving the not connectable status from one or more of the IoT hubs; wherein if the connection security module cannot identify a known IoT hub to which the IoT device is connected, then an alert condition is generated.

公开(公告)号：US20170347264A1

公开(公告)日：2017-11-30

申请号：US15167799

申请日：2016-05-27

Applicant: AFERO, INC.

Inventor： SHANNON HOLLAND ,  ROBEY POINTER ,  STEPHEN SEWERYNEK ,  NICKOLAS HECKMAN ,  CHRIS AUITO ,  LUCAS FINKELSTEIN ,  SCOTT ZIMMERMAN

IPC: H04W12/06 ,  H04L9/30 ,  H04L9/00 ,  H04L9/32 ,  H04W12/04 ,  H04L29/06

CPC classification number: H04W12/06 ,  H04L9/0861 ,  H04L9/12 ,  H04L9/3242 ,  H04L63/0435 ,  H04L63/06 ,  H04L63/0823 ,  H04L63/0876 ,  H04L67/12 ,  H04L2209/80 ,  H04W4/70 ,  H04W4/80 ,  H04W12/04

Abstract: A system and method are described for establishing secure communication channels. For example, one embodiment of a system comprises: an IoT device comprising secret/counter processing logic/circuitry to generate a master secret, the master secret to be transmitted to an IoT service; one or more IoT hubs to receive the master secret from the IoT service over a first secure communication channel, at least one of the IoT hubs to use the master secret to establish a second secure communication channel with the IoT device.

公开(公告)号：US20170342741A1

公开(公告)日：2017-11-30

申请号：US15167848

申请日：2016-05-27

Applicant: AFERO, INC.

Inventor： SHANNON HOLLAND ,  ROBEY POINTER ,  STEPHEN SEWERYNEK ,  NICKOLAS HECKMAN ,  CHRIS AIUTO ,  LUCAS FINKELSTEIN ,  SCOTT ZIMMERMAN

IPC: E05B45/06 ,  H04L29/08

CPC classification number: H04L67/125 ,  E05B2045/064 ,  H04L63/0823 ,  H04W4/70 ,  H04W4/90 ,  H04W12/02 ,  H04W12/04 ,  H04W12/06

Abstract: A system and method are described for implementing latched attributes within an IoT system. For example, one embodiment of a method comprises: specifying an attribute for each of a plurality of items of data managed in an Internet of Things (IoT) device and/or an IoT service, at least some of the attributes comprising latched attributes having a current value and an indication of state changes to the latched attribute over a period of time; when an IoT device is unable to connect with the IoT service for a period of time maintaining an indication of any state changes occurring to the latched attribute over the period of time; upon establishing a successful connection between the IoT device and the IoT service after the period of time, transmitting the indication of state changes of the latched attribute from the IoT device to the IoT service; and analyzing the indication of state changes to determine whether to generate an alert condition on the IoT service.

公开(公告)号：US20240422840A1

公开(公告)日：2024-12-19

申请号：US18211146

申请日：2023-06-16

Applicant: Afero, Inc.

Inventor： LUCAS FINKELSTEIN ,  STEPHEN SEWERYNEK ,  BENJAMIN K. GIBBS ,  CHRISTOPHER AIUTO ,  ROBEY POINTER ,  JOE BRITT

IPC: H04W76/14 ,  H04W12/0471

Abstract: System and method for reduced latency control of IoT devices. For example, one embodiment of a method comprises: associating a control device with one or more internet of things (IoT) devices, the control device including a wireless interface supporting broadcast messages over advertising channels and the one or more IoT devices including wireless interfaces supporting listening for the broadcast messages over the advertising channels; generating an advertising packet including an indication of an operation to be performed by the one or more IoT devices and generating a signature with a control device key; receiving the advertising packet at an IoT device of the one or more IoT devices; validating the signature using an IoT device key corresponding to the control device key; and performing the operation by the IoT device.

公开(公告)号：US20200221295A1

公开(公告)日：2020-07-09

申请号：US16730736

申请日：2019-12-30

Applicant: Afero, Inc.

Inventor： DANIEL ALTIN ,  SCOTT ZIMMERMAN ,  CLIF LIU ,  STEPHEN SEWERYNEK

IPC: H04W12/04 ,  H04L9/06 ,  H04L9/08 ,  H04W4/70 ,  H04W12/02 ,  H04L9/00 ,  H04W12/00 ,  H04L29/08

Abstract: An apparatus and method are described for sharing WiFi credentials. For example, one embodiment of a method comprises: generating a first secret on a first IoT device, the first IoT device having WiFi credentials stored thereon; sharing the first secret with a second IoT device; encrypting the WiFi credentials on the first IoT device using the first secret to generate encrypted WiFi credentials; receiving the encrypted WiFi credentials from the first IoT device at an IoT service; encrypting the encrypted WiFi credentials at the IoT service using a second secret to generate twice-encrypted WiFi credentials, the second secret known by the second IoT device; transmitting the twice-encrypted WiFi credentials from the IoT service to the second IoT device; decrypting, at the second IoT device, the twice-encrypted WiFi credentials using the second secret to generate the encrypted WiFi credentials and decrypting the encrypted WiFi credentials using the first secret to generate the WiFi credentials; and establishing a secure WiFi connection on the second IoT device using the WiFi credentials.