US Patent Application 18352373. REMOTE ATTESTATION TRANSPORT LAYER SECURITY AND SPLIT TRUST ENCRYPTION simplified abstract
Contents
REMOTE ATTESTATION TRANSPORT LAYER SECURITY AND SPLIT TRUST ENCRYPTION
Organization Name
Inventor(s)
Keith Moyer of Kirkland WA (US)
Benjamin Seth Moore of Redmond WA (US)
Ari Medvinksy of Mountain View CA (US)
Tiziano Santoro of London (GB)
Ariel Joseph Feldman of Forest Hills NY (US)
Marcel Catalin Rosu of Mount KIsco NY (US)
REMOTE ATTESTATION TRANSPORT LAYER SECURITY AND SPLIT TRUST ENCRYPTION - A simplified explanation of the abstract
This abstract first appeared for US patent application 18352373 titled 'REMOTE ATTESTATION TRANSPORT LAYER SECURITY AND SPLIT TRUST ENCRYPTION
Simplified Explanation
The abstract describes a method for remote attestation, which involves establishing a secure communication session between two computing devices using a cryptographic protocol.
- The method allows a first computing device to receive an attestation request from a second computing device via the secure communication session.
- The attestation request asks the first computing device to provide an attestation report.
- The first computing device generates the attestation report based on an ephemeral session key, which ensures the security of the report.
- The attestation report is then sent back to the second computing device using the same secure communication session.
Original Abstract Submitted
A method for remote attestation includes establishing, using a cryptographic protocol, a communication session between a first computing device and a second computing device. The communication session includes communications encrypted by an ephemeral session key. The method includes receiving, at the first communication device via the communication session, from the second computing device, an attestation request requesting the first computing device to provide an attestation report. The method includes generating, by the first computing device, the attestation report based on the ephemeral session key and sending, using the communication session, the attestation report to the second computing device.