18188438. TRUSTED ROOT RECOVERY simplified abstract (Microsoft Technology Licensing, LLC)
Contents
TRUSTED ROOT RECOVERY
Organization Name
Microsoft Technology Licensing, LLC
Inventor(s)
Cristian Iuliu Pop of Redmond WA (US)
Michiel Van Schaik of Amsterdam (NL)
Mahesh Sham Rohera of Sammamish WA (US)
Benjamin Livesley Thomas of Seattle WA (US)
David John Roth of Redmond WA (US)
TRUSTED ROOT RECOVERY - A simplified explanation of the abstract
This abstract first appeared for US patent application 18188438 titled 'TRUSTED ROOT RECOVERY
Simplified Explanation
Abstract
A device can communicate with a cloud service provider even if it has an invalid root certificate authority (CA) certificate. The cloud service provider establishes a temporary non-secure connection with the device and sends a signed updated root CA certificate. This allows the device to establish a secure connection with the cloud service provider.
Patent/Innovation Explanation
- Device can communicate with a cloud service provider despite an invalid root CA certificate.
- Temporary non-secure connection is established between the device recovery service and the device.
- Device recovery service sends a signed updated root CA certificate to the device.
- Secure connection is established between the device and operational functions at the cloud service provider based on the updated root CA certificate.
Potential Applications
- IoT devices that need to connect to cloud service providers.
- Devices that have outdated or invalid root CA certificates.
- Devices that require a secure connection to the cloud service provider.
Problems Solved
- Overcoming the issue of invalid root CA certificates preventing secure connections.
- Allowing devices to establish secure connections with cloud service providers despite certificate issues.
Benefits
- Enables devices to continue communicating with cloud service providers even with invalid certificates.
- Provides a solution for devices that cannot establish secure connections due to certificate problems.
- Simplifies the process of updating root CA certificates on devices.
Original Abstract Submitted
A device is provisioned to communicate with a cloud service provider when the device is unable to establish a secure connection due to an invalid root certificate authority (CA) certificate installed at the device. The cloud service provider establishes a temporary non-secure connection between a device recovery service and the device. The device recovery service sends a signed updated root CA certificate to the device. Based on the signed updated root CA certificate, a secure connection is established between the device and operational functions at the cloud service provider.