PROXIMITY PAIRING AND SECURITY OF A CONTINUOUS ANALYTE SENSOR SYSTEM

Abstract

Techniques and protocols for facilitating wireless secure communications between a sensor system and one or more other devices are disclosed. In certain embodiments, the techniques and protocols include secure proximity pairing techniques with reduced power. A method for pairing an analyte sensor system and one or more display devices includes broadcasting, from the analyte sensor system, for an initial connection, a low power general advertisement including an indication indicating the low power general advertisement is for proximity pairing. The method includes receiving, from a first display device, a connection request message in response to the low power general advertisement; performing an authentication procedure with the first display device; and pairing and bonding with the first display device based on successful authentication with the first display device.

Description

Claims

1. A method for pairing an analyte sensor system and one or more display devices, the method comprising: broadcasting, from the analyte sensor system, for an initial connection, a low power general advertisement including an indication indicating the low power general advertisement is for proximity pairing;receiving, from a first display device of the one or more display devices, a connection request message in response to the low power general advertisement;performing an authentication procedure with the first display device; andpairing and bonding with the first display device based on successful authentication with the first display device.

2. The method of claim 1, wherein the low power general advertisement is broadcast at a power level of -40 dBm or lower.

3. The method of claim 1, wherein the indication indicating the low power general advertisement is for proximity pairing comprises a flag in the low power general advertisement.

4. The method of claim 1, further comprising: broadcasting, from the analyte sensor system a higher power general advertisement for connecting with a second display device, wherein the higher power general advertisement is broadcast at a higher power than the low power general advertisement, and wherein the higher power general advertisement includes an indication indicating the higher power general advertisement is not for proximity pairing.

5. The method of claim 4, wherein the higher power general advertisement is broadcast at a maximum power of a transmitter of the analyte sensor system.

6. The method of claim 1, further comprising: adding the first display device to a whitelist, wherein the whitelist identifies display devices that have previously bonded with the analyte sensor system;broadcasting, from the analyte sensor system, a higher power whitelist advertisement for a reconnection with the first display device, wherein the higher power whitelist advertisement is broadcast at a higher power than the low power general advertisement, and wherein the higher power whitelist advertisement includes a second indication indicating the higher power whitelist advertisement is not for proximity pairing;accepting a reconnection request from the first display device after broadcasting the higher power whitelist advertisement for the reconnection and in response to determining that the first display device is a whitelist device based on the whitelist; andrejecting one or more connection requests from one or more display devices in response to determining that the one or more display devices are not whitelist devices based on the whitelist.

7. The method of claim 6, wherein the low power general advertisement includes a secondary identifier associated with the analyte sensor system.

8. The method of claim 7, wherein the secondary identifier associated with the analyte sensor system comprises a Bluetooth low energy (BLE) address with one or more bits flipped.

9. The method of claim 6, wherein the higher power whitelist advertisement includes a primary identifier associated with the analyte sensor system.

10. The method of claim 9, wherein the primary identifier comprises a manufacturer assigned Bluetooth low energy (BLE) address.

11. The method of claim 1, further comprising: broadcasting, from the analyte sensor system, a second low power general advertisement for connecting with a second display device, the second low power general advertisement including a second indication indicating the second low power general advertisement is for proximity pairing.

12. The method of claim 11, wherein the second low power general advertisement includes a secondary identifier associated with the analyte sensor system.

13. The method of claim 12, wherein the secondary identifier associated with the analyte sensor system comprises a Bluetooth low energy (BLE) address with one or more bits flipped.

14. The method of claim 11, further comprising: accepting a connection request from the second display device after broadcasting the second low power general advertisement and in response to determining that the second display device is not a previously whitelisted device; andrejecting one or more connection requests from one or more display devices in response to determining that the one or more display devices are previously whitelisted devices.

15. The method of claim 14, further comprising: determining that the second display device is not a previously whitelisted device and that the one or more display device are previously whitelisted devices based on a whitelist maintained at the analyte sensor system.

16. The method of claim 14, further comprising: determining that the second display device is not a previously whitelisted device and that the one or more display device are previously whitelisted devices based on a whitelist indication in the connection request and the one or more connection requests.

17. The method of claim 1, wherein the connection request message from the first display device is received in response to the first display device determining the analyte sensor system is within a threshold proximity range of the first display device.

18. The method of claim 1, wherein the connection request message from the first display device is received in response to the first display device detecting the indication indicating the low power general advertisement is for proximity pairing.

19. The method of claim 1, wherein performing the authentication procedure with the first display device comprises: skipping performing a user-centric authentication protocol in response to the indication indicating the low power general advertisement is for proximity pairing.

20. The method of claim 19, wherein the user-centric authentication protocol comprises a password authenticated key agreement (PAKE) protocol.

21. The method of claim 20, wherein performing the authentication procedure with the first display device comprises: skipping the PAKE protocol; andperforming a public key infrastructure (PKI) protocol.

22. The method of claim 1, wherein performing the authentication procedure with the first display device comprises: exchanging authentication messages with the first display device, at the low power, during the authentication procedure.

23. The method of claim 1, further comprising: after pairing and bonding with the first display device, sending, to the first display device, analyte data indicative of blood glucose levels from the analyte sensor system.

24. An analyte sensor system and one or more display devices, the analyte sensor system comprising: a transceiver configured to: broadcast, for an initial connection, a low power general advertisement including an indication indicating the low power general advertisement is for proximity pairing; andreceive, from a first display device of the one or more display devices, a connection request message in response to the low power general advertisement; andat least one memory comprising executable instructions;at least one processor in data communication with the at least one memory and configured to execute the instructions to: perform an authentication procedure with the first display device; andpair and bond with the first display device based on successful authentication with the first display device.

25. The analyte sensor system of claim 24, wherein the transceiver is configured to broadcast the low power general advertisement at a power level of -40 dBm or lower.

26. The analyte sensor system of claim 24, wherein the indication indicating the low power general advertisement is for proximity pairing comprises a flag in the low power general advertisement.

27. The analyte sensor system of claim 24, wherein the transceiver is configured to: broadcast a higher power general advertisement for connecting with a second display device, wherein the higher power general advertisement is broadcast at a higher power than the low power general advertisement, and wherein the higher power general advertisement includes an indication indicating the higher power general advertisement is not for proximity pairing.

28. The analyte sensor system of claim 27, wherein the transceiver is configured to broadcast the higher power general advertisement at a maximum transmit power of the analyte sensor system.

29. The analyte sensor system of claim 24, wherein: the at least one processor is configured to add the first display device to a whitelist, wherein the whitelist identifies display devices that have previously bonded with the analyte sensor system;the transceiver is configured to broadcast a higher power whitelist advertisement for a reconnection with the first display device, wherein the higher power whitelist advertisement is broadcast at a higher power than the low power general advertisement, and wherein the higher power whitelist advertisement includes a second indication indicating the higher power whitelist advertisement is not for proximity pairing; andthe at least one processor is configured to: accept a reconnection request from the first display device after broadcasting the higher power whitelist advertisement for the reconnection and in response to determining that the first display device is a whitelist device based on the whitelist; andreject one or more connection requests from one or more display devices in response to determining that the one or more display devices are not whitelist devices based on the whitelist.

30. The analyte sensor system of claim 29, wherein the low power general advertisement includes a secondary identifier associated with the analyte sensor system.

31. The analyte sensor system of claim 30, wherein the secondary identifier associated with the analyte sensor system comprises a Bluetooth low energy (BLE) address with one or more bits flipped.

32. The analyte sensor system of claim 29, wherein the higher power whitelist advertisement includes a primary identifier associated with the analyte sensor system.

33. The analyte sensor system of claim 32, wherein the primary identifier comprises a manufacturer assigned Bluetooth low energy (BLE) address.

34. The analyte sensor system of claim 24, wherein the transceiver is configured to: broadcast a second low power general advertisement for connecting with a second display device, the second low power general advertisement including a second indication indicating the second low power general advertisement is for proximity pairing.

35. The analyte sensor system of claim 34, wherein the second low power general advertisement includes a secondary identifier associated with the analyte sensor system.

36. The analyte sensor system of claim 35, wherein the secondary identifier associated with the analyte sensor system comprises a Bluetooth low energy (BLE) address with one or more bits flipped.

37. The analyte sensor system of claim 34, wherein the at least one processor is configured to: accept a connection request from the second display device after broadcasting the second low power general advertisement and in response to determining that the second display device is not a whitelist device; andreject one or more connection requests from one or more display devices in response to determining that the one or more display devices are whitelist devices.

38. The analyte sensor system of claim 37, wherein the at least one processor is configured to: determine that the second display device is not a previously whitelisted device and that the one or more display device are previously whitelisted devices based on a whitelist maintained at the analyte sensor system.

39. The analyte sensor system of claim 37, wherein the at least one processor is configured to: determine that the second display device is not a previously whitelisted device and that the one or more display device are previously whitelisted devices based on a whitelist indication in the connection request and the one or more connection requests.

40. The analyte sensor system of claim 24, wherein the connection request message from the first display device is received in response to the first display device determining the analyte sensor system is within a threshold proximity range of the first display device.

41. The analyte sensor system of claim 24, wherein the connection request message from the first display device is received in response to the first display device detecting the indication indicating the low power general advertisement is for proximity pairing.

42. The analyte sensor system of claim 24, where the at least one processor being configured to perform the authentication procedure with the first display device comprises the at least one processor being configured to: skip performing a user-centric authentication protocol in response to the indication indicating the low power general advertisement is for proximity pairing.

43. The analyte sensor system of claim 42, wherein the user-centric authentication protocol comprises a password authenticated key agreement (PAKE) protocol.

44. The analyte sensor system of claim 43, wherein the at least one processor being configured to perform the authentication procedure with the first display device comprises the at least one processor being configured to: skip the PAKE protocol; andperform a public key infrastructure (PKI) protocol.

45. The analyte sensor system of claim 24, wherein the at least one processor being configured to perform the authentication procedure with the first display device comprises the at least one processor being configured to: exchange lower power messages with the first display device during the authentication procedure.

46. The analyte sensor system of claim 24, wherein the transceiver is configured to: after pairing and bonding with the first display device, send, to the first display device, analyte data indicative of blood glucose levels from the analyte sensor system.