Device deregistration using forward-chaining encryption
IPC분류정보
국가/구분
United States(US) Patent
등록
국제특허분류(IPC7판)
H04L-029/06
G06Q-010/06
출원번호
US-0577831
(2014-12-19)
등록번호
US-10075435
(2018-09-11)
발명자
/ 주소
Byrd, Nicholas Ray
Roths, Andrew Jay
출원인 / 주소
Amazon Technologies, Inc.
대리인 / 주소
Lee & Hayes, PLLC
인용정보
피인용 횟수 :
0인용 특허 :
14
초록▼
A fulfillment service may securely register and deregister third party electronic devices within a fulfillment environment. The fulfillment service may receive a service request from an electronic device. The fulfillment service may determine that the service request includes a deregistration token.
A fulfillment service may securely register and deregister third party electronic devices within a fulfillment environment. The fulfillment service may receive a service request from an electronic device. The fulfillment service may determine that the service request includes a deregistration token. Further, the fulfillment service may identify the electronic device associated with deregistration token. In response, the fulfillment service may delete fulfillment service information associated with the electronic device in response to determining the electronic device has been deregistered. In addition, the fulfillment service may send a service response to the electronic device instructing the electronic device to delete the deregistration token. In some cases, the service request may include a registration attempt. As such, the service response may include a security token for the electronic device.
대표청구항▼
1. A system comprising: one or more servers that communicate with an electronic device, the electronic device having a device identifier and a first registration token associated with a first customer account, the one or more servers comprising:a device registry including an order template associati
1. A system comprising: one or more servers that communicate with an electronic device, the electronic device having a device identifier and a first registration token associated with a first customer account, the one or more servers comprising:a device registry including an order template associating the electronic device to a product;a deregistration token store that includes a plurality of deregistration tokens; andcustomer information that includes a first customer profile associated with the first customer account and a second customer profile associated with a second customer account; the one or more servers are programmed to: receive, from the electronic device, a first registration request to register the electronic device with the first customer account, wherein the first registration request includes the device identifier and the first registration token;register the electronic device with the first customer account by updating the first customer profile to include an association between the electronic device and the first customer account;send, to the electronic device, a first registration response that includes a security token that identifies the electronic device to the one or more servers;receive, from the electronic device, a second registration request to register the electronic device with the second customer account, wherein the second registration request includes the device identifier, a first deregistration token and a second registration token associated with the second customer account;determine that the electronic device is to be deregistered from the first customer account based at least in part on the first deregistration token matching a second deregistration token stored in the deregistration token store;delete, from the device registry, the order template associated with the electronic device;remove, from the first customer profile, the association between the electronic device and the first customer account;register the electronic device with the second customer account by updating the second customer profile to include an association between the electronic device and the second customer account; andsend, to the electronic device, a second registration response that includes a second security token that identifies the electronic device to the one or more servers. 2. The system as recited in claim 1, wherein the one or more servers are further programmed to generate the second deregistration token by performing a hash function on the security token to form a keyed-hash message authentication code. 3. The system as recited in claim 1, further comprising: a management device having a customer credential for authenticating a customer associated with the first customer account to the one or more servers and wireless network information for connecting to a wireless device, and wherein the management device is programmed to:send, to the one or more servers, a registration token request including the customer credential;receive the first registration token from the one or more servers in response to the one or more servers authenticating the customer credential; andsend the first registration token and the wireless network information to the electronic device. 4. A method comprising: sending, by an electronic device configured to order an item from a fulfillment service, a registration request to register the electronic device with a customer account associated with a customer of the electronic device;receiving, by the electronic device, a registration response that includes a security token that identifies the electronic device to the fulfillment service;sending, by the electronic device, a deregistration request to deregister the electronic device with respect to the customer account;generating, by the electronic device and based at least in part on the deregistration request, a deregistration token based at least in part on performing a cryptographic function on the security token;deleting, from the electronic device, customer data associated with the customer, wherein the customer data includes the security token and wireless connection information for establishing a wireless connection with a wireless device associated with the customer; andsending, to the fulfillment service, a deregistration request including the deregistration token, the deregistration request causing the electronic device to be deregistered with respect to the customer account. 5. The method of claim 4, further comprising: detecting activation of a control of the electronic device for a period of time greater than a predetermined threshold, wherein activation of the control includes at least one of pressing a button of the electronic device or a user touch associated with a touch sensitive display of the electronic device; andentering, by the electronic device, a setup mode for deregistering the electronic device with the fulfillment service. 6. The method of claim 4, further comprising: detecting that the electronic device has not been used for a period of time exceeding a predetermined threshold; andentering, by the electronic device, a setup mode for deregistering the electronic device with the fulfillment service. 7. The method of claim 4, further comprising: detecting a change in a location of the electronic device based at least in part on wireless information associated with the electronic device; andentering, by the electronic device, a setup mode for deregistering the electronic device with the fulfillment service. 8. The method of claim 4, wherein the security token represents a first security token, and further comprising: receiving a registration token from a companion application on a management device associated with the electronic device, wherein the registration request further includes the registration token;receiving, from the fulfillment service, a second security token; anddeleting the deregistration token from the electronic device. 9. The method of claim 4, further comprising: sending, to the fulfillment service, a registration token request including a customer credential associated with the customer account; andreceiving, from the fulfillment service, a registration token associated with the first customer account. 10. The method of claim 9, wherein the registration request includes the registration token. 11. The method of claim 4, further comprising: receiving, from the fulfillment service, an encrypted device identifier that identifies the electronic device to the fulfillment service; andwherein the registration request further includes the encrypted device identifier. 12. The method of claim 4, wherein the electronic device is included in a home appliance. 13. A fulfillment service device comprising: one or more processors;a device registry;a deregistration token store;a communication interface;one or more computer-readable media; andprocessor-executable instructions maintained on the one or more computer- readable media which, when executed by the one or more processors, program the one or more processors to: receive, via the communication interface, a registration request to register an electronic device with a customer account associated with a customer of the electronic device;send, via the communication interface, a registration response that includes a security token that identifies the electronic device to the fulfillment service device:register the electronic device with the customer account;receive, via the communication interface, a deregistration request from the electronic device, wherein the deregistration request includes a device identifier that identifies the electronic device and a deregistration token;determine that the electronic device is to be deregistered based at least in part on the deregistration token;delete, from the device registry, an order template associated with the electronic device and an association between the electronic device and the customer account, the association indicating that the customer is authorized to order items via the electronic device; andsend, via the communication interface, a deregistration response that instructs the electronic device to delete the deregistration token. 14. The fulfillment service device as recited in claim 13, further comprising: a customer profile associated with the customer account, wherein the customer profile includes information associating the electronic device with the customer account;and wherein the processor-executable instructions further program the one or more processors to remove, from the customer profile, the information associating the electronic device with the customer profile. 15. The fulfillment service device as recited in claim 13, wherein the deregistration token represents a first deregistration token, and determining that electronic device is to be deregistered further includes matching the first deregistration token with a second deregistration token included in the deregistration token store. 16. The fulfillment service device as recited in claim 13, wherein the processor-executable instructions further program the one or more processors to: receive, from a management device, a registration token request that includes a customer credential associated with the customer account;authenticate the customer based at least in part on the customer credential; andsend, to the electronic device, a registration token associated with the customer account. 17. The fulfillment service device as recited in claim 13, wherein the customer account represents a first customer account, and the registration request includes a registration request comprising a registration token associated with a second customer account. 18. The fulfillment service device as recited in claim 17, wherein the processor-executable instructions further program the one or more processors to: remove, from a first customer profile, the association between the electronic device and the first customer account; andregister the electronic device with the second customer account by updating a second customer profile associated with the second customer to include a second association between the electronic device and the second customer account. 19. The fulfillment service device as recited in claim 13, wherein the processor-executable instructions further program the one or more processors to: receive, from the electronic device, a registration request to register the electronic device with the customer account, wherein the registration request includes the registration token and the device identifier;generate a security token that identifies the electronic device to the fulfillment service device;generate the deregistration token based at least in part on performing a cryptographic hash function on the security token;store the deregistration token to the deregistration token store; andsend, to the electronic device, the registration response including the security token. 20. The fulfillment service device as recited in claim 19, wherein the processor-executable instructions further program the one or more processors to add, to a customer profile associated with the customer account, the association between the customer account and the electronic device.
연구과제 타임라인
LOADING...
LOADING...
LOADING...
LOADING...
LOADING...
이 특허에 인용된 특허 (14)
Chastain, Walter Cooper; Chin, Stephen Emille; King, Samuel; Suozzo, Michael; Vondrak, Nicholas; Wane, Ismaila, Apparatus and method for managing use of secure tokens.
Barrows, Maximilian Francis; Ferraro, Paul Francis Dean; Mchugh, Jason George; Passaglia, Abraham Martin; Roths, Andrew Jay; Shell, Eric Allan, Automatic token renewal for device authentication.
Haines, Robert E.; Harper, Mark A.; Hinrichs, Kenley; Baumunk, Mary B.; Goettemoeller, Jodi; Whaley, Sharon, Consumable order-assistance system for computer peripheral device within a single connection environment and method for replenishing consumables.
Yau, Arnold, Method and system of providing authentication of user access to a computer resource via a mobile device using multiple separate security factors.
※ AI-Helper는 부적절한 답변을 할 수 있습니다.