公开(公告)号：US20180270237A1

公开(公告)日：2018-09-20

申请号：US15461299

申请日：2017-03-16

Applicant: MOTOROLA SOLUTIONS, INC.

Inventor： Adam C. Lewis ,  Shanthi E. Thomas

IPC: H04L29/06

Abstract: System and method of providing administrative access to an endpoint server. In one example, the method includes receiving, at an admin server, a request for performing an admin operation on the endpoint server and a first portion of an admin key from a microservice server. The method also includes receiving, at the admin server, a second portion of the admin key. The method further includes generating, at the admin server, a copy of the admin key based at least in part on the first portion and the second portion of the admin key. The method also includes performing, via the admin server, the admin operation on the endpoint server using the copy of the admin key. The method further includes deleting the copy of the admin key on the admin server after performing the admin operation on the endpoint server.

公开(公告)号：US20170353451A1

公开(公告)日：2017-12-07

申请号：US15170683

申请日：2016-06-01

Applicant: MOTOROLA SOLUTIONS, INC.

Inventor： Anthony R. Metke ,  Adam C. Lewis ,  Shanthi E. Thomas

IPC: H04L29/06

CPC classification number: H04W4/90 ,  H04L63/0876 ,  H04L63/102 ,  H04W12/06

Abstract: A method and apparatus for issuing an incident-issued credential for an incident area network. One embodiment provides an identity server including an electronic processor configured to receive an agency-issued credential and retrieve a first set of attributes from the agency-issued credential. The electronic processor is also configured to map the first set of attributes to a scope of a service available through an incident area network. The electronic processor is further configured to generate the incident-issued credential for the incident area network including the scope and issue the incident-issued credential to a user device.

公开(公告)号：US20170124307A1

公开(公告)日：2017-05-04

申请号：US14932418

申请日：2015-11-04

Applicant: MOTOROLA SOLUTIONS, INC.

Inventor： Katrin Reitsma ,  Adam C. Lewis ,  Shanthi E. Thomas

IPC: G06F21/31 ,  G06F3/0481 ,  G06F3/0484 ,  G06F21/41

CPC classification number: G06F21/31 ,  G06F3/0481 ,  G06F3/0484 ,  G06F21/30 ,  G06F21/316 ,  G06F21/41 ,  H04L63/105 ,  H04W12/06 ,  H04W12/08 ,  H04W88/02

Abstract: A method of enabling a lock screen of an electronic device operating an electronic device that includes an electronic processor and a display screen. The method includes receiving, by the electronic processor, a request to unlock the electronic device. The method further includes determining, by the electronic processor, an authentication state for the electronic device. The method further includes, determining, by the electronic processor, a lock screen authentication mode based on the authentication state, and displaying, on the display screen, a lock screen including the lock screen authentication mode. The electronic device includes a display screen and an electronic processor. The electronic processor is configured to receive a request to unlock the electronic device. The electronic processor is further configured to determine an authentication state for the electronic device, determine a lock screen authentication mode based on the authentication state and display on the display screen, a lock screen including the lock screen authentication mode.

公开(公告)号：US09503269B2

公开(公告)日：2016-11-22

申请号：US14278991

申请日：2014-05-15

Applicant: MOTOROLA SOLUTIONS, INC

Inventor： Erwin Himawan ,  Anthony R. Metke ,  Shanthi E. Thomas

IPC: H04L9/32 ,  H04L29/06 ,  H04L9/00

CPC classification number: H04L9/3268 ,  H04L9/006 ,  H04L9/3265 ,  H04L63/0823

Abstract: A certificate issuer (210) can periodically request, receive, and store current server-based certificate validation protocol (SCVP) staples (225) for supported relying parties (205) from at least one server-based certificate validation protocol (SCVP) responder (215). The certificate issuer (210) can receive a contact initiation request (220) from one of the relying parties (205). Responsive to receiving the contact initiation request (220), the certificate issuer (210) can identify a current SCVP staple from the saved staples that is applicable to the relying party (205). The certificate issuer (210) can conveying a response to the contact initiation request (220) to the relying party (205). The response can comprise the identified SCVP staple and a public key infrastructure (PKI) certificate (230) of the certificate issuer. The SCVP staple can validate a certification path between the PKI certificate (230) and a different certificate trusted by the relying party (205).

Abstract translation: 证书颁发者（210）可以从至少一个基于服务器的证书验证协议（SCVP）应答器（SCVP）应答器（210）向所支持的依赖方（205）周期性地请求，接收和存储当前基于服务器的证书验证协议（SCVP）订书钉（225） 215）。 证书发行者（210）可以从依赖方（205）之一接收联系发起请求（220）。 响应于接收到联系发起请求（220），证书发行者（210）可以从适用于依赖方（205）的订购订书钉中识别当前的SCVP订书钉。 证书发行者（210）可以向联系方（205）传送对联系发起请求（220）的响应。 该响应可以包括所识别的SCVP订书钉和证书颁发者的公钥基础设施（PKI）证书（230）。 SCVP订书钉可以验证PKI证书（230）和依赖方（205）信任的不同证书之间的认证路径。

公开(公告)号：US10484379B2

公开(公告)日：2019-11-19

申请号：US15461299

申请日：2017-03-16

Applicant: MOTOROLA SOLUTIONS, INC.

Inventor： Adam C. Lewis ,  Shanthi E. Thomas

IPC: H04L29/06 ,  H04L9/08 ,  H04W12/04 ,  G06F15/16

Abstract: System and method of providing administrative access to an endpoint server. In one example, the method includes receiving, at an admin server, a request for performing an admin operation on the endpoint server and a first portion of an admin key from a microservice server. The method also includes receiving, at the admin server, a second portion of the admin key. The method further includes generating, at the admin server, a copy of the admin key based at least in part on the first portion and the second portion of the admin key. The method also includes performing, via the admin server, the admin operation on the endpoint server using the copy of the admin key. The method further includes deleting the copy of the admin key on the admin server after performing the admin operation on the endpoint server.

公开(公告)号：US10404680B2

公开(公告)日：2019-09-03

申请号：US15234180

申请日：2016-08-11

Applicant: MOTOROLA SOLUTIONS, INC

Inventor： Adam C. Lewis ,  Anthony R. Metke ,  Shanthi E. Thomas

IPC: H04L29/00 ,  H04L29/06 ,  G06F9/455 ,  G06F9/50 ,  G06F21/53 ,  H04L9/32 ,  G06F9/46

Abstract: A method and is provided for obtaining a vetted certificate for a microservice in an elastic cloud environment. The microservice receives a one-time authentication credential. The microservice utilizes the one-time authentication credential to obtain a client secret. The microservice obtains an access token and CSR (Certificate Signing Request) attributes using the client secret and constructs a CSR utilizing the CSR attributes. The microservice requests a vetted certificate from a Certificate Authority (CA) and includes the access token and the CSR in the request. If the access token and the CSR pass vetting at the CA, the CA sends a vetted certificate to the microservice.

公开(公告)号：US10104526B2

公开(公告)日：2018-10-16

申请号：US15170683

申请日：2016-06-01

Applicant: MOTOROLA SOLUTIONS, INC.

Inventor： Anthony R. Metke ,  Adam C. Lewis ,  Shanthi E. Thomas

IPC: H04W4/90 ,  H04L29/06

Abstract: A method and apparatus for issuing an incident-issued credential for an incident area network. One embodiment provides an identity server including an electronic processor configured to receive an agency-issued credential and retrieve a first set of attributes from the agency-issued credential. The electronic processor is also configured to map the first set of attributes to a scope of a service available through an incident area network. The electronic processor is further configured to generate the incident-issued credential for the incident area network including the scope and issue the incident-issued credential to a user device.

公开(公告)号：US09946859B2

公开(公告)日：2018-04-17

申请号：US14932418

申请日：2015-11-04

Applicant: MOTOROLA SOLUTIONS, INC.

Inventor： Katrin Reitsma ,  Adam C. Lewis ,  Shanthi E. Thomas

IPC: G06F21/00 ,  G06F21/31 ,  G06F21/30 ,  G06F3/0481 ,  G06F3/0484 ,  G06F21/41 ,  H04W12/06

CPC classification number: G06F21/31 ,  G06F3/0481 ,  G06F3/0484 ,  G06F21/30 ,  G06F21/316 ,  G06F21/41 ,  H04L63/105 ,  H04W12/06 ,  H04W12/08 ,  H04W88/02

Abstract: A method of enabling a lock screen of an electronic device operating an electronic device that includes an electronic processor and a display screen. The method includes receiving, by the electronic processor, a request to unlock the electronic device. The method further includes determining, by the electronic processor, an authentication state for the electronic device. The method further includes, determining, by the electronic processor, a lock screen authentication mode based on the authentication state, and displaying, on the display screen, a lock screen including the lock screen authentication mode. The electronic device includes a display screen and an electronic processor. The electronic processor is configured to receive a request to unlock the electronic device. The electronic processor is further configured to determine an authentication state for the electronic device, determine a lock screen authentication mode based on the authentication state and display on the display screen, a lock screen including the lock screen authentication mode.