公开(公告)号：US20200259848A1

公开(公告)日：2020-08-13

申请号：US16791684

申请日：2020-02-14

Applicant: Afero, Inc.

Inventor： SHANNON HOLLAND ,  ROBEY POINTER ,  STEPHEN SEWERYNEK ,  NICKOLAS HECKMAN ,  CHRIS AUITO ,  LUCAS FINKELSTEIN ,  SCOTT ZIMMERMAN

IPC: H04L29/06 ,  H04W74/00 ,  H04W4/80 ,  G06F16/951 ,  H04W12/08 ,  H04B1/3816

Abstract: A system and method are described for preventing security breaches in an IoT system. For example, one embodiment of a system comprises: an Internet of Things (IoT) device comprising a wireless communication module to establish communication with a plurality of IoT hubs over local wireless communication channels; advertising control logic to transmit first advertising beacons to the plurality of IoT hubs of a user indicating that the IoT device is connectable; the advertising control logic to begin transmitting a second advertising beacon to IoT hubs indicating that the IoT device is not connectable if the IoT device establishes a connection with a first IoT hub, the IoT hubs other than the first IoT hub to report the not connectable status of the IoT device to an IoT service; and a connection security module of the IoT service to determine whether the IoT device is connected to any known IoT hub upon receiving the not connectable status from one or more of the IoT hubs; wherein if the connection security module cannot identify a known IoT hub to which the IoT device is connected, then an alert condition is generated.

公开(公告)号：US20180316658A1

公开(公告)日：2018-11-01

申请号：US15498913

申请日：2017-04-27

Applicant: AFERO, INC.

Inventor： SCOTT BARTLETT ,  SCOTT ZIMMERMAN ,  JOE BRITT

IPC: H04L29/06 ,  H04W12/06 ,  H04W12/04

CPC classification number: H04W12/06 ,  H04W4/38 ,  H04W4/70 ,  H04W4/80 ,  H04W12/001 ,  H04W12/0401 ,  H04W12/04071 ,  H04W84/12 ,  H04W88/04

Abstract: An apparatus and method are described for securely providing a User ID and/or password to an IoT device. For example, one embodiment of a method comprises: establishing a first communication channel between a user's mobile device and an Internet of Things (IoT) service; establishing a second communication channel between the IoT service and an IoT device, the IoT device having been previously registered with the IoT service; establishing a third communication channel between the IoT device and a computer on which the user is connecting to the online service; receiving at the IoT service a request from the mobile device to transmit a User ID and/or password for a particular online service to the IoT device; responsively encrypting the User ID and/or password to generate an encrypted User ID and/or password and transmitting the encrypted User ID and/or password to the IoT device; decrypting the encrypted User ID and/or password at the IoT device; and providing the User ID and/or password by the IoT device to the computer over the third communication channel, the computer causing the User ID and/or password to be provided to the online service to authenticate the user.

公开(公告)号：US20180146367A1

公开(公告)日：2018-05-24

申请号：US15360850

申请日：2016-11-23

Applicant: AFERO, INC.

Inventor： DANIEL ALTIN ,  SCOTT ZIMMERMAN ,  CLIF LIU ,  STEPHEN SEWERYNEK

IPC: H04W12/04 ,  H04L9/08 ,  H04L29/08

Abstract: An apparatus and method are described for sharing WiFi credentials. For example, one embodiment of a method comprises: generating a first secret on a first IoT device, the first IoT device having WiFi credentials stored thereon; sharing the first secret with a second IoT device; encrypting the WiFi credentials on the first IoT device using the first secret to generate encrypted WiFi credentials; receiving the encrypted WiFi credentials from the first IoT device at an IoT service; encrypting the encrypted WiFi credentials at the IoT service using a second secret to generate twice-encrypted WiFi credentials, the second secret known by the second IoT device; transmitting the twice-encrypted WiFi credentials from the IoT service to the second IoT device; decrypting, at the second IoT device, the twice-encrypted WiFi credentials using the second secret to generate the encrypted WiFi credentials and decrypting the encrypted WiFi credentials using the first secret to generate the WiFi credentials; and establishing a secure WiFi connection on the second IoT device using the WiFi credentials.

公开(公告)号：US20170171747A1

公开(公告)日：2017-06-15

申请号：US14967627

申请日：2015-12-14

Applicant: AFERO, INC.

Inventor： JOE BRITT ,  SCOTT ZIMMERMAN ,  SHANNON HOLLAND

IPC: H04W12/04 ,  H04L9/08 ,  H04L29/06 ,  H04W76/02 ,  H04W12/06

CPC classification number: H04L63/18 ,  H04L9/0844 ,  H04L9/0861 ,  H04L9/0877 ,  H04L9/3215 ,  H04L63/0428 ,  H04L63/061 ,  H04L2209/80 ,  H04W12/02 ,  H04W12/04 ,  H04W12/08 ,  H04W76/15

Abstract: A system and method are described for establishing a secondary communication channel between an IoT device and a client device. For example, one embodiment of a method comprises: establishing a primary secure communication channel between the IoT device and an IoT service using a primary set of keys; performing a secondary key exchange using the primary secure communication channel, the client device and the IoT device each being provided with a secondary set of keys following the secondary key exchange; detecting that the primary secure communication channel is inoperative; and responsively establishing a secondary secure wireless connection between the client device and the IoT device using the secondary set of keys, the client device being provided with access to data and functions made available by the IoT device over the secondary secure wireless connection.

公开(公告)号：US20170347264A1

公开(公告)日：2017-11-30

申请号：US15167799

申请日：2016-05-27

Applicant: AFERO, INC.

Inventor： SHANNON HOLLAND ,  ROBEY POINTER ,  STEPHEN SEWERYNEK ,  NICKOLAS HECKMAN ,  CHRIS AUITO ,  LUCAS FINKELSTEIN ,  SCOTT ZIMMERMAN

IPC: H04W12/06 ,  H04L9/30 ,  H04L9/00 ,  H04L9/32 ,  H04W12/04 ,  H04L29/06

CPC classification number: H04W12/06 ,  H04L9/0861 ,  H04L9/12 ,  H04L9/3242 ,  H04L63/0435 ,  H04L63/06 ,  H04L63/0823 ,  H04L63/0876 ,  H04L67/12 ,  H04L2209/80 ,  H04W4/70 ,  H04W4/80 ,  H04W12/04

Abstract: A system and method are described for establishing secure communication channels. For example, one embodiment of a system comprises: an IoT device comprising secret/counter processing logic/circuitry to generate a master secret, the master secret to be transmitted to an IoT service; one or more IoT hubs to receive the master secret from the IoT service over a first secure communication channel, at least one of the IoT hubs to use the master secret to establish a second secure communication channel with the IoT device.

公开(公告)号：US20170342741A1

公开(公告)日：2017-11-30

申请号：US15167848

申请日：2016-05-27

Applicant: AFERO, INC.

Inventor： SHANNON HOLLAND ,  ROBEY POINTER ,  STEPHEN SEWERYNEK ,  NICKOLAS HECKMAN ,  CHRIS AIUTO ,  LUCAS FINKELSTEIN ,  SCOTT ZIMMERMAN

IPC: E05B45/06 ,  H04L29/08

CPC classification number: H04L67/125 ,  E05B2045/064 ,  H04L63/0823 ,  H04W4/70 ,  H04W4/90 ,  H04W12/02 ,  H04W12/04 ,  H04W12/06

Abstract: A system and method are described for implementing latched attributes within an IoT system. For example, one embodiment of a method comprises: specifying an attribute for each of a plurality of items of data managed in an Internet of Things (IoT) device and/or an IoT service, at least some of the attributes comprising latched attributes having a current value and an indication of state changes to the latched attribute over a period of time; when an IoT device is unable to connect with the IoT service for a period of time maintaining an indication of any state changes occurring to the latched attribute over the period of time; upon establishing a successful connection between the IoT device and the IoT service after the period of time, transmitting the indication of state changes of the latched attribute from the IoT device to the IoT service; and analyzing the indication of state changes to determine whether to generate an alert condition on the IoT service.

公开(公告)号：US20170171241A1

公开(公告)日：2017-06-15

申请号：US14967680

申请日：2015-12-14

Applicant: AFERO, INC.

Inventor： JOE BRITT ,  SCOTT ZIMMERMAN ,  OMAR ZAKARIA

IPC: H04L29/06 ,  H04L29/08 ,  H04W4/00 ,  H04W76/02

Abstract: An apparatus and method are described for obscuring wireless communication patterns. For example, one embodiment of a system comprises: an Internet of Things (IoT) device comprising a wireless communication interface to establish communication with an IoT service; the IoT device including an application to execute commands received from the IoT service and to responsively generate a response; and messaging obfuscation logic to modify timing for transmitting the response to the IoT service.

公开(公告)号：US20200221295A1

公开(公告)日：2020-07-09

申请号：US16730736

申请日：2019-12-30

Applicant: Afero, Inc.

Inventor： DANIEL ALTIN ,  SCOTT ZIMMERMAN ,  CLIF LIU ,  STEPHEN SEWERYNEK

IPC: H04W12/04 ,  H04L9/06 ,  H04L9/08 ,  H04W4/70 ,  H04W12/02 ,  H04L9/00 ,  H04W12/00 ,  H04L29/08

Abstract: An apparatus and method are described for sharing WiFi credentials. For example, one embodiment of a method comprises: generating a first secret on a first IoT device, the first IoT device having WiFi credentials stored thereon; sharing the first secret with a second IoT device; encrypting the WiFi credentials on the first IoT device using the first secret to generate encrypted WiFi credentials; receiving the encrypted WiFi credentials from the first IoT device at an IoT service; encrypting the encrypted WiFi credentials at the IoT service using a second secret to generate twice-encrypted WiFi credentials, the second secret known by the second IoT device; transmitting the twice-encrypted WiFi credentials from the IoT service to the second IoT device; decrypting, at the second IoT device, the twice-encrypted WiFi credentials using the second secret to generate the encrypted WiFi credentials and decrypting the encrypted WiFi credentials using the first secret to generate the WiFi credentials; and establishing a secure WiFi connection on the second IoT device using the WiFi credentials.

公开(公告)号：US20180208448A1

公开(公告)日：2018-07-26

申请号：US15411648

申请日：2017-01-20

Applicant: AFERO, INC.

Inventor： SCOTT ZIMMERMAN ,  DANIEL ALTIN ,  JOE BRITT

IPC: B67D1/08 ,  G06K7/14

CPC classification number: B67D1/0888 ,  G06K7/1413 ,  G06K7/1417 ,  H04L67/10 ,  H04W84/18

Abstract: A Internet of Things (IoT) system and method for a beverage distribution system. For example, one embodiment of a system comprises: a set of Internet of Things (IoT) devices configured at different locations within a beverage distribution system, each IoT device having a sensor to detect a current condition at its respective location within the beverage distribution system, each of the IoT devices having a wireless network interface and configured to transmit data associated with the current conditions over a network; and an IoT cloud service to receive the data transmitted by the set of IoT devices and to implement a set of rules specified for maintenance, problems and failure conditions associated with the beverage distribution system, the IoT cloud service to determine, based on the rules, whether the data indicates a compliance violation, problem, or failure condition and, if so, to generate a notification and/or recommendation for an action to be taken with respect to the compliance violation, problem, or failure condition.

公开(公告)号：US20170171165A1

公开(公告)日：2017-06-15

申请号：US14968868

申请日：2015-12-14

Applicant: AFERO, INC.

Inventor： JOE BRITT ,  SCOTT ZIMMERMAN

IPC: H04L29/06 ,  H04L9/08 ,  G06F21/64

CPC classification number: G06F13/12 ,  G06F21/64 ,  H04L9/0841 ,  H04L9/0861 ,  H04L9/0877 ,  H04L63/0428 ,  H04L63/0442 ,  H04L63/06 ,  H04W4/38 ,  H04W4/70 ,  H04W4/80 ,  H04W12/12

Abstract: An apparatus and method are described for implementing efficient communication between a microcontroller and a communication module. For example, one embodiment of an apparatus comprises: a secure communication module to establish a secure communication channel with an IoT service; and a microcontroller unit (MCU) to execute application-specific program code to implement an application-specific function of an Internet of Things (IoT) device; a serial peripheral interface (SPI) bus to communicatively couple the secure communication module to the MCU; and a control line residing in a first state or being transitioned to a second state by either the MCU or the secure communication module, wherein when performing a transaction over the SPI bus, either the MCU or the secure communication module is configured to transition the control line to the second state, thereby informing the MCU or the secure communication module that a transaction is occurring, wherein upon completing the transaction, the MCU or the secure communication module is configured to release the control line, thereby allowing the control line to transition back to the first state.