The Wireless Home Digital Interface (WHDI) is a wireless standard proposed for a wireless multimedia device network, which may be used at home, in the office or in other short-range wireless network environments. WHDI allows for high bandwidth wireless channels for sending content between devices, which may support uncompressed High Definition (HD) content. For example, a DVD player may be wirelessly connected to multiple HDTVs and send uncompressed content to the HDTVs using WHDI. WHDI eliminates the need for cabling, such as High Definition Multimedia Interface (HDMI) cables, component cables, etc., used to transmit uncompressed content between devices. Conventional wireless technologies such as 802.11, BLUETOOTH, etc., do not have the bandwidth or interface to transmit uncompressed multimedia content between devices.
WHDI can be used in various environments. For example, a user located in a single family home or in an apartment may connect a DVD player, an MP3 player, a laptop PC, a gaming console, and a flat panel TV all together, wirelessly, using WHDI. In another environment, a user wirelessly connects a multimedia projector in a conference room to a desktop PC in his office, and to a set of notebook computers using WHDI. In these and other examples, security is a concern because of the wireless communication between the WHDI devices. Due to the nature of wireless networks, they are typically easy to identify by unauthorized users. An unauthorized user may attempt to identify and connect to the devices connected to a home WHDI network. The homeowner may desire to keep the identity of their devices private away from unauthorized users. For example, a homeowner may not want a neighbor to know they have 5 HDTVs, or they may not want any non-family members to know they have a server connected to their home network, because the server may contain confidential information, such as personal videos, etc. While WHDI provides the protocol and interfaces for high-bandwidth wireless networks, WHDI may lack the security procedures to maintain user privacy.
In accordance with the present invention, a method and apparatus is provided for registering a first device with a second device over a wireless network. The method includes receiving a registration request from the first device and sending one or more user input choices to the first device. The user input choices each specify a user input action available though a user interface associated with the second device. A device description describing the second device is sent to the first device in a manner that allows it to be presented to the user by the first device. At least one of the user input actions are sequentially received through the user interface in response to instructions provided to the user by the first device. The first device is registered with the second device if the user input actions received by the second device correctly reflect the instructions provided to the user by the first device.
In accordance with another aspect of the invention, a method is provided for registering a first device with a second device over a wireless network in which a registration request is sent to the second device. One or more user input choices are received from the second device. The user input choices each specify a user input action available though a user interface associated with the second device. A device description describing the second device is received and presented to a user. based on the received user input choices, instructions are presented to the user specifying a sequence of user input choices representing a sequence of user input actions to be performed on the second device. The first device is registered with the second device if the user input actions received by the second device correctly reflect the instructions presented to the user.
For simplicity and illustrative purposes, the present invention is described by referring mainly to exemplary embodiments thereof. In the following description, numerous specific details are set forth to provide a thorough understanding of the present invention. However, it will be apparent to one of ordinary skill in the art that the present invention may be practiced without limitation to these specific details. In other instances, well known methods and structures have not been described in detail to avoid unnecessarily obscuring the present invention.
WHDI is a proposed standard for high bandwidth wireless digital data connectivity between multiple points. WHDI wirelessly transmits multimedia data, such as high definition video and the associated audio in a reliable manner from source devices to sink devices in the WHDI network. Devices in a WHDI network are referred to as WHDI devices, and a WHDI network include WHDI devices communicating wirelessly amongst each other using the WHDI standard. WHDI devices are characterized as two types. One type is a source device and the other type is a sink device. A WHDI device may be a source device, a sink device, or both depending on its functionality. A source device transmits data streams across a WHDI network to a sink device, and a sink device receives data streams across the WHDI network from the source device. Examples of source devices are set-top boxes, notebook Personal Computers (PCs), desktop PCs, DVD players MP3 players, video camcorders, audio/video receivers, gaming consoles, etc. Examples of sink device are TVs, PCs, projectors, etc.
Many device networking technologies including WHDI face the issue of how to securely allow a new device to become part of an existing network. One way of doing this is to use a Personal Identification Number (PIN) during a device registration process. The device registration is a process to let a new device join another device or a network of devices in a domain. A domain is a group of devices that are approved to share content with each other. Device registration or domain registration includes the process of allowing or preventing a device from connecting with other devices over a network. Device registration can provide a user with control over which devices are allowed to connect to the other devices in the user's domain. For instance, if a family has a domain, then all the devices owned by the family may be members of the domain, but a friend's device may not be allowed to join the domain.
In order to provide the user with control over which devices are allowed to connect to a domain or another device, WHDI devices generally support three registration configuration settings: domain registration, device registration and no more registration. When the domain registration setting is employed on an existing device, a remote device is allowed to register with this device as well as all other devices in the domain of this device. In this configuration the existing device provides the remote device with a domain key as well as its device registration key. When the device registration setting is employed on an existing device, a remote device is allowed to register with this existing device only. (However, the existing device may be able to register with the remote device's domain if the remote device is configured in the domain registration mode). In this configuration the existing device provides the remote device with its device registration key but not its domain key. Finally, when the no more registration setting is employed on an existing device, the existing device will not allow any registration operation. Any remote devices already registered remain registered when the no more registration setting is activated.
Prior to a new device being allowed to connect to an existing device or join a domain, the new device must be authorized or pre-approved to ensure that it is a device that the user wants to connect to the existing device or domain. For example, a family member may purchase a new TV that the family member wants to become part of the family domain so that the TV can play content received from other devices in the family domain, such as a set-top box or a DVD player. If a neighbor purchases a TV, the family member likely does not want the neighbor's TV to join the family's domain. However, the neighbor's TV may inadvertently attempt to become part of the family domain through a wireless network. This problem is illustrated in connection with
Currently, in a WHDI network, the user can identify the device that responds to its message M1 using the WHDI certificate of the responding device. This certificate, which includes device manufacturer information and a unique device ID such as a serial number, is typically included in the message M2 that is sent to the user's device. The user can identify the device by comparing the device ID in the certificate to the device ID that is physically located on the device it expects to have sent the message M2. If the two IDs are the same, then the user has confirmed that the message has been received from the correct device. One problem with this approach is that it may not be particularly convenient for the user. For instance, the user may have difficulty finding the device ID that is printed or otherwise located on the device. One way to overcome this problem would be to include in the certificate a device descriptor that the user can quickly and easily determine from an examination of the device. Such a device descriptor may be a model name or number, the device color, a style name or number, and so on.
Unfortunately, it may not be convenient for the manufacturer to include such a device descriptor in the certificate itself Manufacturers typically buy certificates in bulk and often will not know at the time of purchase the precise device in which they will be installed. Rather, it will often be more practical for the manufacturer to install the device descriptor in the device itself during the manufacturing process. Thus, instead of including a device descriptor in the certificate, the device descriptor can be included directly in the messages that are exchanged between devices during the device registration process in which the new device is authorized to connect to the existing device. Upon receiving the device descriptor, the receiving device can present it to the user so that the user can determine if it is communicating with the correct device. If it is the correct device, the user can continue with the registration process, otherwise the user can terminate the process.
One example of a registration process will be presented below in the context of a WHDI network illustrating the use of a device descriptor of the type described above. In this example, which will be described in connection with the WHDI network shown in
It should be noted that while in this example it is the new device that sends its device descriptor to the existing device, the techniques described herein are applicable to the opposite situation. That is, the existing device may send its device descriptor to the new device. In this case the new device may generate the PIN and the user will be required to manually enter the PIN into the existing device instead of the new device. In the context of a WHDI network, the sink device is generally the device that initiates the registration process and which receives the device descriptor from the source device.
The source devices 140, 150, and 160 may deliver any type of content, such as video content, audio content, or other data content from the Internet. Each of the source devices 140, 150, and 160 may deliver independent and possibly different content. In addition, each of the source devices 140, 150, and 160 may have a different connectivity with each of the sink devices 110, 120, and 130. Any one of the source devices 140, 150, and 160 may be connected to one or more of the sink devices 110, 120, and 130 simultaneously (e.g., for multicasting) or separately (e.g., unicasting).
When the source device 140 attempts to wirelessly connect to the sink device 110 within the WHDI network 100 for the first time, the sink device 110 needs to determine whether the source device 140 is a WHDI compliant device and authorized to access the sink device. Likewise, the source device 140 also needs to determine whether the sink device 110 is a WHDI compliant device and authorized to access the source device. A device is a WHDI compliant device if it is certified by a WHDI organization as a WHDI standard compliant device, in which case it is issued a WHDI device certificate. Whether a device is a WHDI standard compliant device can be verified by the existence of a valid WHDI PKI (Public Key Infrastructure) device certificate, which is issued by the WHDI certificate authority and stored in the device. Even with a valid certificate, however, a device must still be “authorized” in order to be able to access the other device. For example, if the source device 140 is a media player belonging to your neighbor who wants to stream data of an adult content or an unsolicited advertisement to your HDTV while you are watching a Children's programming channel with your kids, the source device 140 would not be authorized to connect to the sink device 110.
In
The WHDI network 100 also provides the ability to stream the persistently-stored content from the initial source device to another sink device, or from the initial source device to another source device that has been authenticated as part of the WHDI network. Of course, it is noted that while a home network is described, extensions to a business, education, public entertainment or other such local wireless network are analogous. It will be apparent that the WHDI network 100 may include additional elements not shown and that some of the elements described herein may be removed, substituted and/or modified without departing from the scope of the WHDI network system 100. It should also be apparent that one or more of the elements described in the embodiment of
One example of a registration method 200 in which a device joins the WHDI network 100 will now be described with respect to the flow diagram depicted in
At step 201, the first device sends a registration request message to the second device. The message includes the first device's WHDI certificate and its device ID. At step 211, the second device receives the request.
After receiving the registration request and the WHDI PKI certificate, the second device selects or otherwise determines one or more input choices at step 212. The input choices may also be pre-defined during the device manufacturing process. An input choice defines an action that is used to manually enter information into the second device. For instance, an input choice may identify a button or other input on the second device that the user may subsequently use to manually enter the PIN that is constructed by the second device. The input choices will generally depend on the particular type of device that is involved. For instance, if the second device is a DVD player, examples of input choices may be function keys such as “PLAY”, “STOP” and “PAUSE.” In another example, a notebook PC may use the keys on its keyboard as input choices. Likewise, another example of an input choice may be a predetermined number of clicks of a button. For instance, 3 clicks on a PLAY button may be one input choice and 2 clicks on a PAUSE may be another input choice.
Next, at step 213, the second device selects or otherwise determines values that are to be associated with each input choice. Each value may be a number that may be randomly selected. In one example in which buttons are employed, the input choices and their corresponding values define a button list. The button list includes the button names and their respective values. One example of a button list is {(PLAY, 10), (PAUSE, 13), (STOP, 24)}.
At step 214, the second device transmits the input choices and their corresponding values to the first device with a random number Nsrc, which will be used to derive the device registration key shared between the two devices, and the second device's WHDI device certificate. Although not shown in
At step 202, the first device receives the random number Nsrc, the input choices and corresponding values from the second device. If included in the same message, the device descriptor is also received. If the information is encrypted, the first device decrypts it using, for example, its private key. If the device descriptor is encrypted and/or authenticated using the symmetric key, the first device decrypts the secret data encrypted by the device's public key first and then derives the symmetric key from the decrypted secret data and further decrypts and/or authenticates the device descriptor using the symmetric key. If the device descriptor is authenticated using the encrypted hash or MAC, the hash or MAC of the device descriptor will be verified after being decrypted using the symmetric key. If the device descriptor is also received at this point, the first device presents it to the user in step 203. For example, the device descriptor may be displayed on a screen or presented in another other appropriate manner, which in part will depend on the capabilities of the first device. If the user confirms that the device descriptor matches the correct second device, the user may continue with the registration process. If, on the other hand, the user finds that the first device is communicating with the wrong device, the user may stop the registration process and restart a new registration process with the correct device. It should be noted that the device descriptor may be received and presented to the user by the first device at any point during the registration process before the user is instructed to manually enter the input choices into the second device in step 215, which will be described below. For example, the device descriptor can also be included with the device discovery message, which the first device broadcasts to find all the reachable WHDI devices.
At step 204, the first device randomly generates a sequence of the input choices from the received list of input choices. Alternatively, the sequence may be selected in any other manner. For example, if the input choices and their corresponding values are the button list {(PLAY, 10), (PAUSE, 13), (STOP, 24)}, the first device may select a random sequence of the buttons, such as {(STOP, 24), (PLAY, 10), (PAUSE, 13)}. The number of input choices that are used in the sequence can also be randomly determined by the first device. That is, not all the input choices need to be used in the sequence that is selected. Similarly, an input choice can be repeated multiple times in the sequence.
At step 205, the first device generates a first concatenated value from the values in the selected sequence. There are various ways to concatenate such values. For example, if the sequence of input choices is STOP, PLAY, PAUSE and the corresponding values are 24, 10, and 13, respectively, the first concatenated value may be 241013. Alternatively, the values can be concatenated in binary form or the values can be concatenated after undergoing a transformation (e.g. adding a number, e.g., 5, to each value).
At step 206, the first device presents instructions to the user specifying a sequence of user input actions to perform on the second device. In particular, the instructions specify the selected sequence in which the input choices should be entered into the second device. The values corresponding to those input choices are generally not presented. Depending on the nature of the first device, the sequence may be presented in an audible and/or visual manner. For example, if the first device is a TV, the TV may display the sequence STOP, PLAY, PAUSE.
At step 207, the first device generates another random number Nsnk, which will be used to derive the device registration key, encrypts the random numbers Nsnk and Nsrc using the second device's public key available from the received certificate and sends the encrypted random numbers Nsnk and Nsrc to the second device.
At step 215, the second device receives the encrypted Nsrc and Nsnk and decrypts them using its private key.
At step 216, the user manually enters the input choices into the second device in the selected sequence. For example, if the sequence is STOP, PLAY, PAUSE, the user pushes the STOP, PLAY, PAUSE buttons, in that order, on the second device.
At step 217, the second device retrieves or otherwise obtains the value corresponding to each input choice. For example, in the case of a button list, the button list is stored in the second device and is retrieved to determine the corresponding value for each input choice.
At step 218, the second device generates a second concatenated value from the individual values in the sequence of input choices entered by the user. For example, if the sequence of input choices is STOP, PLAY, PAUSE, the corresponding values are 24, 10, and 13, respectively. The second concatenated value may be 241013. Alternatively, the values may be concatenated in any other suitable manner, provided that the first and second concatenated values are determined in the same way by the first and second devices, respectively.
At step 219, the second device uses the Nsrc, Nsnk and the second concatenated value (as a PIN) to derive the device registration key, and uses the derived key to sign a message and send back to the first device.
At step 208, the first device uses the first concatenated value (as a PIN) to derive the device registration key with the Nsrc and Nsnk. Then the first device uses the device registration key to verify the signature received from the second device. If the signature is verified, it proves that the second device can decrypt the random number Nsnk using its private key, which implies that the second device is an authentic WHDI device, and also generated the same PIN (implying that the user input actions received by the second device correctly reflect the instructions provided to the user by the first device). The newly added device (the first device in this example) is then allowed to register with the other device (the second device in this example). If the domain registration mode is selected, the second device may also use the device registration key to encrypt the domain key that is sent to the first device in step 218, which decrypts the domain key using the device registration key. Thus, the newly added device also becomes a member of the domain to which the other device belongs. In this way, the two PINs are compared indirectly.
As described above, a button list includes one or more input choices and their corresponding values. In another embodiment, the button list does not include the values, but only the input choices, which may be a set of buttons available on the second device. The first device can select a sequence of these input choices and present them to the user. The first device can also derive a PIN from the input choices. The user can then enter the input choices into the second device in the correct sequence. The second device can use the same procedure as the first device to generate a PIN from the input choices it receives from the user. The PINs derived in this manner can be compared indirectly in the manner described above in order to establish a connection.
Note that the method 200 provides security because a user of an unauthorized first device would not be able to access the second device and enter the input choices to generate the same PIN on the second device using the method 200. On the other hand, if the second device is an unauthorized device, the owner of the second device may not be able to see the input instructions given by the first device and consequently will not be able to type in the correct PIN to complete the registration.
Some or all of the operations set forth in the method 200 may be contained one or more computer programs stored in any desired computer readable storage medium and executed by a processor on a computer system. Exemplary computer readable media that may be used to store software operable to implement the present invention include but are not limited to conventional computer system Random Access Memory (RAM), Read Only Memory (ROM), Electrically Programmable Read Only Memory (EPROM), Electrically Erasable Programmable Read Only Memory (EEPROM), hard disks, or other data storage devices.
In one embodiment, the components of the WHDI network 100 in
The computer system 300 includes a processor 320, providing an execution platform for executing software. Commands and data from the processor 320 are communicated over a communication bus 330. The computer system 300 also includes a main memory 340, such as a Random Access Memory (RAM), where software may reside during runtime, and a secondary memory 350. The secondary memory 350 may include, for example, a nonvolatile memory where a copy of software is stored. In one example, the secondary memory 350 also includes ROM (read only memory), EPROM (erasable, programmable ROM), EEPROM (electrically erasable, programmable ROM), and other data storage devices, include hard disks.
The computer system 300 includes I/O devices 360. The I/O devices 360 may include a display and/or user interfaces comprising one or more I/O devices, such as a keyboard, a mouse, a stylus, speaker, and the like. A communication interface 380 is provided for communicating with other components. The communication interface 380 may be a wired or a wireless interface. The communication interface 380 may be a network interface.
The processor 320 may be configured to select a sequence of user input choices from the user input choices that are received from a remote device and generate a PIN from the selected sequence. The processor 320 may also be configured to present to the user, via at least one of the I/O devices 360, the device description received from the remote device and the selected sequence of user input choices. Alternatively, or in addition thereto, the processor 320 may be configured to generate the user input choices and send them, along with its device descriptor, to a remote device.
Although described specifically throughout the entirety of the instant disclosure, representative embodiments of the present invention have utility over a wide range of applications, and the above discussion is not intended and should not be construed to be limiting, but is offered as an illustrative discussion of aspects of the invention.
What has been described and illustrated herein are embodiments of the invention along with some of their variations. The terms, descriptions and figures used herein are set forth by way of illustration only and are not meant as limitations. Those skilled in the art will recognize that many variations are possible within the spirit and scope of the invention, wherein the invention is intended to be defined by the following claims—and their equivalents—in which all terms are mean in their broadest reasonable sense unless otherwise indicated.
This application claims the benefit of U.S. Provisional Patent Application Ser. Nos. 61/187,916, filed Jun. 17, 2009, and 61/223,271, filed Jul. 6, 2009, which are incorporated herein by reference in their entireties. The present invention also is related to U.S. patent application Ser. No. 12/345,010, entitled “Personal Identification Number (PIN) Generation Between Two Devices in a Network”, by Paul Moroney and Jiang Zhang; U.S. patent application Ser. No. 12/344,994, entitled “Method of Targeted Discovery of Devices in a Network”, by Jiang Zhang and Petr Peterka; U.S. patent application Ser. No. 12/344,997, entitled “Secure and Efficient Domain Key Distribution for Device Registration”, by Jiang Zhang and Sasha Medvinsky; and U.S. patent application Ser. No. 12/345,002), entitled “Multi-Mode Device Registration”, by Jiang Zhang and Petr Peterka, all of which are incorporated herein by reference in their entireties.
Number | Name | Date | Kind |
---|---|---|---|
5909183 | Borgstahl et al. | Jun 1999 | A |
6084512 | Elberty et al. | Jul 2000 | A |
6199136 | Shteyn | Mar 2001 | B1 |
6591364 | Patel | Jul 2003 | B1 |
6826607 | Gelvin et al. | Nov 2004 | B1 |
6983370 | Eaton et al. | Jan 2006 | B2 |
6995655 | Ertin et al. | Feb 2006 | B2 |
7020121 | Hardacker et al. | Mar 2006 | B2 |
7092670 | Tanaka et al. | Aug 2006 | B2 |
7430758 | Toutonghi | Sep 2008 | B2 |
7511762 | Elnathan et al. | Mar 2009 | B2 |
7613426 | Kuehnel et al. | Nov 2009 | B2 |
7741852 | Watanabe et al. | Jun 2010 | B2 |
7912076 | Kim et al. | Mar 2011 | B2 |
8001381 | Metke et al. | Aug 2011 | B2 |
8001584 | Lortz et al. | Aug 2011 | B2 |
8014355 | Koga | Sep 2011 | B2 |
8185049 | Zhang et al. | May 2012 | B2 |
8189627 | Xia et al. | May 2012 | B2 |
8239551 | Oda et al. | Aug 2012 | B2 |
8276209 | Knibbeler et al. | Sep 2012 | B2 |
20020037708 | McCann et al. | Mar 2002 | A1 |
20020061748 | Nakakita et al. | May 2002 | A1 |
20020077077 | Rezvani et al. | Jun 2002 | A1 |
20020157002 | Messerges et al. | Oct 2002 | A1 |
20030045280 | Simons | Mar 2003 | A1 |
20030095521 | Haller et al. | May 2003 | A1 |
20050014503 | Nakakita et al. | Jan 2005 | A1 |
20050210261 | Kamperman et al. | Sep 2005 | A1 |
20060105712 | Glass et al. | May 2006 | A1 |
20060116107 | Hulvey | Jun 2006 | A1 |
20060156340 | Choi | Jul 2006 | A1 |
20060177066 | Han et al. | Aug 2006 | A1 |
20060224893 | Sales et al. | Oct 2006 | A1 |
20060288209 | Vogler | Dec 2006 | A1 |
20070079362 | Lortz et al. | Apr 2007 | A1 |
20070106894 | Zhang et al. | May 2007 | A1 |
20070107020 | Tavares | May 2007 | A1 |
20070118879 | Yeun | May 2007 | A1 |
20070141986 | Kuehnel et al. | Jun 2007 | A1 |
20070150720 | Oh et al. | Jun 2007 | A1 |
20070152826 | August et al. | Jul 2007 | A1 |
20070178884 | Donovan et al. | Aug 2007 | A1 |
20070277224 | Osborn et al. | Nov 2007 | A1 |
20080066120 | Igoe | Mar 2008 | A1 |
20080079601 | Ishihara et al. | Apr 2008 | A1 |
20080123739 | Reznic et al. | May 2008 | A1 |
20080134309 | Qin et al. | Jun 2008 | A1 |
20080250147 | Knibbeler et al. | Oct 2008 | A1 |
20080301436 | Yao et al. | Dec 2008 | A1 |
20080313462 | Zhao et al. | Dec 2008 | A1 |
20090061835 | Schmidt et al. | Mar 2009 | A1 |
20090103471 | Candelore | Apr 2009 | A1 |
20090122201 | Freundlich et al. | May 2009 | A1 |
20090132941 | Pilskalns et al. | May 2009 | A1 |
20090157521 | Moren et al. | Jun 2009 | A1 |
20090177511 | Shaw et al. | Jul 2009 | A1 |
20090217043 | Metke et al. | Aug 2009 | A1 |
20090235304 | Hardacker et al. | Sep 2009 | A1 |
20090240941 | Lee et al. | Sep 2009 | A1 |
20090241040 | Mattila et al. | Sep 2009 | A1 |
20090247197 | Graff et al. | Oct 2009 | A1 |
20090307492 | Cao et al. | Dec 2009 | A1 |
20090322948 | Funabiki et al. | Dec 2009 | A1 |
20100030904 | Oda et al. | Feb 2010 | A1 |
20100071010 | Elnathan et al. | Mar 2010 | A1 |
20100135259 | Lee et al. | Jun 2010 | A1 |
20100164693 | Zhang et al. | Jul 2010 | A1 |
20100169399 | Moroney et al. | Jul 2010 | A1 |
20100169646 | Zhang et al. | Jul 2010 | A1 |
20110047583 | Howard et al. | Feb 2011 | A1 |
20110268274 | Qiu et al. | Nov 2011 | A1 |
Number | Date | Country |
---|---|---|
1221915 | Jul 1999 | CN |
101179380 | May 2008 | CN |
1710656 | Oct 2006 | EP |
1804428 | Jul 2007 | EP |
1881664 | Jan 2008 | EP |
2001054171 | Feb 2001 | JP |
200835517 | Feb 2008 | JP |
100703018 | Oct 2006 | KR |
1020060113926 | Nov 2006 | KR |
100778477 | Nov 2007 | KR |
9818234 | Apr 1998 | WO |
2007094347 | Aug 2007 | WO |
2008002081 | Jan 2008 | WO |
Entry |
---|
PCT Search Report & Written Opinion, RE: Application #PCT/US2010/038963; Sep. 22, 2010. |
Wireless Home Digital Interface, http://www.whdi.org/Technology/, downloaded Mar. 25, 2010. |
United States Patent and Trademark Office, “Non-Final Rejection” for U.S. Appl. No. 12/344,994 dated May 23, 2013, 10 pages. |
European Patent Office, “Extended European Search Report” for European Application No. 09836624.8 dated Jul. 19, 2013, 6 pages. |
European Patent Office, “Extended European Search Report” for European Application No. 09836653.7 dated Jul. 26, 2013, 7 pages. |
Barker, E, and Kelsey, J., “Recommendation for Random Number Generation Using Deterministic Random Bit Generators (Revised),” NISY Special Publication 800-90, p. 133 (2007). |
Menezes, et al., “Handbook of Applied Cryptography,” Chapter 12, CRC Press Inc., pp. 489-541 (1997). |
Soriente, et al, “BEDA: Button-Enabled Device Association,” First International Worshop on Security for Spontaneous Interaction, Sep. 2007. |
Final Office Action mailed Jan. 25, 2012, in U.S. Appl. No. 12/344,994, Jiang Zhang et al., filed on Dec. 29, 2008. |
Non Final Office Action mailed Jan. 4, 2013, in U.S. Appl. No. 12/345,010, Paul Moroney et al., filed on Dec. 29, 2008. |
Non Final Office Action mailed Mar. 2, 2012, in U.S. Appl. No. 12/344,997, Jiang Zhang et al., filed on Dec. 29, 2008. |
Non Final Office Action mailed Sep. 1, 2011, in U.S. Appl. No. 12/344,994, Jiang Zhang et al., filed on Dec. 29, 2008. |
Notice of Allowance mailed Aug. 11, 2011 in U.S. Appl. No. 12/345,002, Jiang Zhang et al., filed on Dec. 29, 2008. |
Notice of Allowance mailed Jan. 10, 2013 in U.S. Appl. No. 12/344,997, Jiang Zhang et al., filed on Dec. 29, 2008. |
Notice of Allowance mailed Jan. 18, 2012 in U.S. Appl. No. 12/345,002, Jiang Zhang et al., filed on Dec. 29, 2008. |
Notice of Allowance mailed Sep. 30, 2011 in U.S. Appl. No. 12/345,002, Jiang Zhang et al., filed on Dec. 29, 2008. |
Restriction Requirement mailed Jul. 18, 2012, in U.S. Appl. No. 12/345,010, Paul Moroney et al., filed on Dec. 29, 2008. |
International Search Report and Written Opinion for International Application No. PCT/US2009/065670, European Patent Office, The Hague, Netherlands, mailed on Jun. 29, 2010. |
International Search Report and Written Opinion for International Application No. PCT/US2009/066174, European Patent Office, the Hague, Netherlands, mailed on Jun. 23, 2010. |
International Search Report and Written Opinion for International Application No. PCT/US2009/066178, European Patent Office, the Hague, Netherlands, mailed on Jun. 22, 2010. |
International Search Report and Written Opinion for International Application No. PCT/US2009/066529, European Patent Office, the Hague, Netherlands, mailed on Jun. 28, 2010. |
The State Intellectual Property Office of the People'S Republic of China, “Notification of the Second Office Action” for Chinese Patent Application No. 200980153092.4 dated Feb. 11, 2014, 12 pages translated. |
European Patent Office, “Extended European Search Report” for European Application No. 09836638.8 dated Jul. 22, 2013, 8 pages. |
European Patent Office, “Extended European Search Report” for European Application No. 09836637.0 dated Nov. 21, 2013, 5 pages. |
Number | Date | Country | |
---|---|---|---|
20100325654 A1 | Dec 2010 | US |
Number | Date | Country | |
---|---|---|---|
61223271 | Jul 2009 | US | |
61187916 | Jun 2009 | US |