42 - Scientific, technological and industrial services, research and design
Goods & Services
Software as a service (SaaS) services featuring software for electronic communications network connection management; Software as a service (SaaS) services featuring software that allows electronic devices to share electronic communications network connections; Software as a service (SaaS) services featuring software for optimizing electronic communications network connections; Software as a service (SaaS) services featuring software for electronic data transmission and management; Software as a services (SaaS) services featuring software for internet of things (IoT) electronic device management; computer network configuration services
2.
SYSTEM AND METHOD FOR ENHANCED IOT DEVICE SECURITY AND RELIABILITY USING MULTIPLE COMMUNICATION INTERFACE TYPES
Apparatus and method for controlling IoT devices. For example, one embodiment of a method comprises: generating control data responsive to user input or sensor input; generating a random nonce; encrypting a combination of the random nonce and the control data using a key to produce encrypted data; generating, using the key, a first signature based on the encrypted data and a second signature based on the control data; generating a corresponding counter value; transmitting by a first interface a first packet comprising the control data, the second signature, and the counter value; and transmitting by a second interface a second packet comprising the encrypted data, the first signature, and the counter value; wherein at least one of the first packet and the second packet are to cause each IoT device of the plurality of IoT devices to perform a corresponding function indicated by the control data.
Apparatus and method for controlling IoT devices. For example, one embodiment of a method comprises: generating control data responsive to user input or sensor input; generating a random nonce; encrypting a combination of the random nonce and the control data using a key to produce encrypted data; generating, using the key, a first signature based on the encrypted data and a second signature based on the control data; generating a corresponding counter value; transmitting by a first interface a first packet comprising the control data, the second signature, and the counter value; and transmitting by a second interface a second packet comprising the encrypted data, the first signature, and the counter value; wherein at least one of the first packet and the second packet are to cause each IoT device of the plurality of IoT devices to perform a corresponding function indicated by the control data.
H04W 12/00 - Security arrangementsAuthenticationProtecting privacy or anonymity
H04W 28/02 - Traffic management, e.g. flow control or congestion control
H04W 80/00 - Wireless network protocols or protocol adaptations to wireless operation
H04L 9/06 - Arrangements for secret or secure communicationsNetwork security protocols the encryption apparatus using shift registers or memories for blockwise coding, e.g. D.E.S. systems
System and method for securely managing video captured by the IoT cameras. For example, one embodiment of a method comprises: generating a key pair comprising a private key and a public key; storing at least the private key on a data processing device of a user and storing only the public key on an internet of things (IoT) camera associated with an account of the user; in response to an event, the IoT camera to perform the operations of: generating a temporary data encryption key (DEK); encrypting video captured by the camera using the DEK to generated encrypted video blocks; encrypting the DEK using the public key to generate an encrypted DEK; and transmitting the encrypted video blocks and the encrypted DEK to a video storage service.
H04N 21/2347 - Processing of video elementary streams, e.g. splicing of video streams or manipulating encoded video stream scene graphs involving video stream encryption
H04N 21/4405 - Processing of video elementary streams, e.g. splicing a video clip retrieved from local storage with an incoming video stream or rendering scenes according to encoded video stream scene graphs involving video stream decryption
5.
Apparatus and method for verification of product package contents and activation of corresponding devices
A system, method, and machine-readable medium are described for verification of devices in a product package. An optical code on a product package is scanned at a point-of-sale (POS) system and a digital code generated; an RF burst is generated to activate devices in the product package which transmit identification information. A device manifest is used indicating devices intended to be included in the product package. The identification information is compared with the set of devices indicated by the device manifest; and allowing a purchase of the product package to proceed if the identification information matches the set of devices; wherein if the identification information does not match the performing one or more secondary operations and/or providing instructions at the POS system to attempt to verify that the devices in the product package match the set of devices indicated by the device manifest.
G06K 7/10 - Methods or arrangements for sensing record carriers by electromagnetic radiation, e.g. optical sensingMethods or arrangements for sensing record carriers by corpuscular radiation
A system, method, and machine-readable medium are described for verifying a transaction related to a device with an on-device rewriteable memory. For example, one embodiment of a method comprises: during a purchase transaction to purchase a device at a point of sale (POS) system, reading a certificate stored on a rewriteable tag integral to the device; generating a signature over the certificate and, if the purchase transaction results in a successful purchase of the device, storing the signature in the rewriteable tag; during a post-purchase transaction, attempting to read the signature from the rewriteable tag and validate the signature; denying the post-purchase transaction if the signature cannot be read and/or is not validated; if the signature can be read and validated, then: permitting the post-process transaction; generating a new public/private key pair and corresponding new certificate; and storing the new certificate on the rewriteable tag.
G06Q 20/40 - Authorisation, e.g. identification of payer or payee, verification of customer or shop credentialsReview and approval of payers, e.g. check of credit lines or negative lists
H04L 9/32 - Arrangements for secret or secure communicationsNetwork security protocols including means for verifying the identity or authority of a user of the system
7.
SYSTEM AND METHOD FOR MACHINE LEARNING-BASED PRODUCT IDENTIFICATION AND INTERNET OF THINGS (IOT) DEVICE RECOMMENDATIONS
A system and method are described for identifying IoT device options for a user. For example, one embodiment of a system comprises: an Internet of Things (IoT) service to provide back-end data processing for a plurality of IoT devices, the IoT service comprising: an interface to securely couple the IoT service to an IoT app executed on a mobile device of a user; a machine-learning (ML)-based device recognition engine coupled to the interface, the ML-based device recognition engine to identify a device and/or specifications of the device captured in an image by the mobile device; and IoT product identification logic to identify one or more IoT devices based on the device and/or specifications of the device identified by the ML-based device recognition engine; wherein the IoT service is to transmit an indication of the one or more compatible IoT devices to the IoT app via the interface.
H04L 41/22 - Arrangements for maintenance, administration or management of data switching networks, e.g. of packet switching networks comprising specially adapted graphical user interfaces [GUI]
G06K 7/10 - Methods or arrangements for sensing record carriers by electromagnetic radiation, e.g. optical sensingMethods or arrangements for sensing record carriers by corpuscular radiation
A system and method are described for identifying IoT device options for a user. For example, one embodiment of a system comprises: an Internet of Things (IoT) service to provide back-end data processing for a plurality of IoT devices, the IoT service comprising: an interface to securely couple the IoT service to an IoT app executed on a mobile device of a user; a machine-learning (ML)-based device recognition engine coupled to the interface, the ML-based device recognition engine to identify a device and/or specifications of the device captured in an image by the mobile device; and IoT product identification logic to identify one or more IoT devices based on the device and/or specifications of the device identified by the ML-based device recognition engine; wherein the IoT service is to transmit an indication of the one or more compatible IoT devices to the IoT app via the interface.
Apparatus and method for IoT device thermal dissipation. In particular, one embodiment of an apparatus comprises: a support structure; an internet-of-things (IoT) video camera coupled to the support structure, the IoT video camera comprising circuitry to capture video images; one or more light sources coupled to the support structure, the one or more light sources to selectively provide illumination during capturing of the video images, wherein a thermal spacing is provided between each light source and the IoT video camera, the thermal spacing to dissipate heat generated by the one or more light sources; and one or more heatsinks, each heatsink coupled to a corresponding light source of the one or more light sources and configured to dissipate heat generated by the corresponding light source.
H04N 23/52 - Elements optimising image sensor operation, e.g. for electromagnetic interference [EMI] protection or temperature control by heat transfer or cooling elements
10.
INTERNET OF THINGS (IOT) APPARATUS AND METHOD FOR FAULT TOLERANT IMAGE RECOGNITION
System and method for fault tolerant image recognition. For example, one embodiment of an apparatus comprises: a internet-of-things (IoT) video camera comprising: video capture circuitry to generate a video stream based on an orientation of the video camera; a computer vision subsystem comprising a set of computer vision (CV) engines, each CV engine trained to analyze the video stream in accordance with a corresponding machine-learning model to detect specified objects in the video stream and to generate detection results indicating if one of the specified objects is detected; and combinatorial or sequential logic to apply a logic function to the detection results provided by each of the CV engines to produce a final detection result.
H04N 23/11 - Cameras or camera modules comprising electronic image sensorsControl thereof for generating image signals from different wavelengths for generating image signals from visible and infrared light wavelengths
11.
APPARATUS AND METHOD FOR REDUCED LATENCY IOT DEVICE CONTROL
System and method for reduced latency control of IoT devices. For example, one embodiment of a method comprises: associating a control device with one or more internet of things (IoT) devices, the control device including a wireless interface supporting broadcast messages over advertising channels and the one or more IoT devices including wireless interfaces supporting listening for the broadcast messages over the advertising channels; generating an advertising packet including an indication of an operation to be performed by the one or more IoT devices and generating a signature with a control device key; receiving the advertising packet at an IoT device of the one or more IoT devices; validating the signature using an IoT device key corresponding to the control device key; and performing the operation by the IoT device.
System and method for reduced latency control of IoT devices. For example, one embodiment of a method comprises: associating a control device with one or more internet of things (IoT) devices, the control device including a wireless interface supporting broadcast messages over advertising channels and the one or more IoT devices including wireless interfaces supporting listening for the broadcast messages over the advertising channels; generating an advertising packet including an indication of an operation to be performed by the one or more IoT devices and generating a signature with a control device key; receiving the advertising packet at an IoT device of the one or more IoT devices; validating the signature using an IoT device key corresponding to the control device key; and performing the operation by the IoT device.
H04W 4/80 - Services using short range communication, e.g. near-field communication [NFC], radio-frequency identification [RFID] or low energy communication
H04W 12/04 - Key management, e.g. using generic bootstrapping architecture [GBA]
System and method for activation and deactivation of devices to prevent unauthorized acquisition and use. For example, one embodiment of a system comprises: an internet of things (IoT) service to receive a first message from a point of sale (POS) system, the first message including a device identifier (ID) to uniquely identify a device purchased by a user via the POS system; device management logic of the IoT service to identify an entry in a device database using the device ID, the entry including a field to indicate whether the corresponding device has been purchased; the device management logic to update the field responsive to the first message to indicate that the device has been purchased; and the IoT service to transmit a second message to the POS system or to a mobile device of the user in response to a request from the POS system or the mobile device, respectively, the second message authorizing unlocking of the device if the field indicates that the device has been purchased, wherein a short-range wireless connection is established between the mobile device or the POS system and the device the short-range wireless connection to be used to transmit an unlock command from the mobile device or the POS system, wherein a lock module of the device is to transition from a locked state to an unlocked state responsive to receipt of the unlock command.
Activation and deactivation of devices to prevent unauthorized acquisition. An example system comprises: IoT service to receive a first message from a POS system with a device ID to identify a device; device management logic to query a device database to determine whether the device has been purchased; wherein a database field is updated when the device has been purchased; the IoT service to transmit a second message to the POS system, the second message authorizing unlocking of the device if the field indicates that the device has been purchased. A short-range wireless connection is established between the POS system and the device, the short-range wireless connection to be used to transmit an unlock command from the mobile device or the POS system, wherein a lock module of the device is to transition from a locked state to an unlocked state responsive to receipt of the unlock command.
H04W 4/80 - Services using short range communication, e.g. near-field communication [NFC], radio-frequency identification [RFID] or low energy communication
G06K 7/10 - Methods or arrangements for sensing record carriers by electromagnetic radiation, e.g. optical sensingMethods or arrangements for sensing record carriers by corpuscular radiation
G06K 7/01 - Methods or arrangements for sensing record carriers Details
15.
Apparatus and method for efficient and secure pairing and communication
System and method for efficient and secure pairing and communication. For example, one embodiment comprises a machine-readable medium having program code stored thereon which, when executed by a data processing device, causes the data processing device to perform the operations of: reading a code from an optical label of a peripheral device and providing the code to a service for validation; providing a communication channel between the peripheral and the service, the peripheral to transmit a first key of a first key pair to the service over the communication channel; transmitting a second key of a second key pair to the service; upon receiving an indication that the service has validated the first key and the second key, using the first key and the second key to establish a session key; and pairing with the peripheral using the session key.
G06K 7/14 - Methods or arrangements for sensing record carriers by electromagnetic radiation, e.g. optical sensingMethods or arrangements for sensing record carriers by corpuscular radiation using light without selection of wavelength, e.g. sensing reflected white light
System and method for efficient and secure pairing of a IO device with a multimedia system. For example, one embodiment comprises a system comprising: an app installed on a data processing device to cause an optical code to be read from a multimedia system and to provide a digital representation of at least a portion of the code to a service for validation; the data processing device to provide a communication channel between the IO device and the service and to transmit a first key of a first key pair associated with the IO device to the service; wherein the multimedia system is to transmit or has previously transmitted a second key of a second key pair to the service; if the service has validated the first key and the second key, the multimedia system and/or the IO device to use at least one of the first key and the second key to generate a session key; and wherein the IO device is paired with the multimedia system using the session key.
H04W 4/80 - Services using short range communication, e.g. near-field communication [NFC], radio-frequency identification [RFID] or low energy communication
System and method for encryption of video with temporary decryption. For example, one embodiment of a system comprises: a security subsystem to generate a temporary session key to be used to share video content; a nonce generator to generate a time-based nonce which is valid for a duration of time; encryption logic to encrypt the video content using the temporary session key and the time-based nonce to generate encrypted video content which can only be decrypted using the temporary session key and the time-based nonce within the duration of time; the encrypted video content to be transmitted to a data processing device or a service; and wherein, within the duration of time, the data processing device or service are to decrypt the encrypted video using a combination of the temporary session key and a copy of the time-based nonce
H04L 9/32 - Arrangements for secret or secure communicationsNetwork security protocols including means for verifying the identity or authority of a user of the system
G06V 40/16 - Human faces, e.g. facial parts, sketches or expressions
A system and method are described for identifying an IoT device using object recognition techniques. For example, one embodiment of a system comprises: an Internet of Things (IoT) service to provide back-end data processing for a plurality of IoT devices, the IoT service comprising: interface logic to couple the IoT service to an IoT app executed on a mobile device of a user, an IoT device recognition engine coupled to the interface logic, the IoT device recognition engine to identify a model of a new IoT device captured in an image by the IoT app, the IoT device recognition engine to transmit an indication of the IoT device model to the interface logic, wherein the IoT app is to use the indication of the IoT device model during setup of the new IoT device.
A system and method are described for identifying an IoT device model from a key broadcast in an advertising channel. For example, one embodiment of a system comprises: a target Internet of Things (IoT) device to transmit a key over a Bluetooth (BT) advertising channel, the key associated with a model of the target IoT device; mobile application program code which, when installed on a mobile device, is to cause the mobile device to listen to the BT advertising channel to extract the key; and a key dictionary to be installed on the mobile device, the key dictionary mapping each of a plurality of keys with an IoT device model and associated data, the mobile application program code to perform a lookup using the key extracted from the BT advertising channel to identify the target IoT device model and/or associated data, and to use the target IoT device model and/or associated data for onboarding the target IoT device.
H04W 4/80 - Services using short range communication, e.g. near-field communication [NFC], radio-frequency identification [RFID] or low energy communication
H04W 12/04 - Key management, e.g. using generic bootstrapping architecture [GBA]
A system and method for cryptographically securing a product. For example, one embodiment of a method comprises: generating a first signature over a key to add an authenticator device to a chain of trust; generating a universal unique identifier (UUID) code; generating a second signature over the UUID code and metadata associated with the authenticator device using the key; and encoding the UUID code, metadata, and signature in an optical label of a product.
G06K 7/10 - Methods or arrangements for sensing record carriers by electromagnetic radiation, e.g. optical sensingMethods or arrangements for sensing record carriers by corpuscular radiation
G09F 3/00 - Labels, tag tickets, or similar identification or indication meansSealsPostage or like stamps
G06K 19/10 - Record carriers for use with machines and with at least a part designed to carry digital markings characterised by the kind of the digital marking, e.g. shape, nature, code using markings of different kinds in the same record carrier, e.g. one marking being sensed by optical and the other by magnetic means at least one kind of marking being used for authentication, e.g. of credit or identity cards
A system and method for cryptographically securing a product. For example, one embodiment of a method comprises: generating a first signature over a key to add an authenticator device to a chain of trust; generating a universal unique identifier (UUID) code; generating a second signature over the UUID code and metadata associated with the authenticator device using the key; and encoding the UUID code, metadata, and signature in an optical label of a product.
H04L 9/32 - Arrangements for secret or secure communicationsNetwork security protocols including means for verifying the identity or authority of a user of the system
A system and method are described for identifying an IoT device using object recognition techniques. For example, one embodiment of a system comprises: an Internet of Things (IoT) service to provide back-end data processing for a plurality of IoT devices, the IoT service comprising: interface logic to couple the IoT service to an IoT app executed on a mobile device of a user, an IoT device recognition engine coupled to the interface logic, the IoT device recognition engine to identify a model of a new IoT device captured in an image by the IoT app, the IoT device recognition engine to transmit an indication of the IoT device model to the interface logic, wherein the IoT app is to use the indication of the IoT device model during setup of the new IoT device.
A system and method are described for identifying an IoT device model from a key broadcast in an advertising channel. For example, one embodiment of a system comprises: a target Internet of Things (IoT) device to transmit a key over a Bluetooth (BT) advertising channel, the key associated with a model of the target IoT device; mobile application program code which, when installed on a mobile device, is to cause the mobile device to listen to the BT advertising channel to extract the key; and a key dictionary to be installed on the mobile device, the key dictionary mapping each of a plurality of keys with an IoT device model and associated data, the mobile application program code to perform a lookup using the key extracted from the BT advertising channel to identify the target IoT device model and/or associated data, and to use the target IoT device model and/or associated data for onboarding the target IoT device.
An IoT-based system and method are described having an IoT hub including an accelerometer. For example, one embodiment of a system comprises: an Internet of Things (IoT) service, a plurality of IoT devices, each IoT device comprising a first secure communication module, and an IoT hub in communication with the plurality of IoT devices. The IoT hub comprising: a microcontroller unit to execute application-specific program code, a second secure communication module to establish a first secure communication channel with the IoT service and a plurality of second secure communication channels with the plurality of IoT devices, and a sensor to detect physical movements of the IoT hub and to change an operating mode of the IoT hub from a first operating mode to a second operating mode based on the physical movements.
A system, apparatus, and method for automatically provisioning a new IoT device. For example, one embodiment of a system comprises: an Internet of Things (IoT) service comprising: an IoT database to store user account data and IoT devices associated with each user account; an application programming interface (API) exposed to one or more online retail services to allow the online retail services to submit data related to IoT device purchases to the IoT service; a first IoT device purchased from the online retail service by a first user associated with a first user account on the IoT service, wherein in response to the first user purchasing the first IoT device, the online retail service is to transmit first identification data to identify the first IoT device and second identification data to identify the first user account; and device provisioning circuitry and/or logic to automatically add the first IoT device to the first user account on the IoT database in response to receipt of the first and second identification data.
H04L 67/12 - Protocols specially adapted for proprietary or special-purpose networking environments, e.g. medical networks, sensor networks, networks in vehicles or remote metering networks
A system and method are described for connecting an IoT device to a wireless router and/or access point. For example, one embodiment of a system comprises: an Internet of things (IoT) hub to collect network credentials required to connect with a wireless access point or router; the IoT hub to securely store the network credentials in a local or remote credentials database along with identification data identifying a user account and/or the wireless access point or router; a new IoT device to establish a connection with the IoT hub, another IoT device, and/or a user data processing device; the new IoT device to transmit a request for network credentials to establish a connection with the wireless access point or router; the IoT hub, IoT device and/or user data processing device to provide connectivity to the credentials database on behalf of the new IoT device, to receive the network credentials from the credentials database and to provide the network credentials to the new IoT device; and the new IoT device to automatically use the network credentials to establish a connection with the wireless access point or router.
H04L 41/08 - Configuration management of networks or network elements
H04W 4/80 - Services using short range communication, e.g. near-field communication [NFC], radio-frequency identification [RFID] or low energy communication
A system and method are described for securing a vehicle. For example, one embodiment of a method comprises: generating a secret related to a radio frequency (RF) signal characteristic to be transmitted by a key fob; securely sharing the secret between a vehicle and a wireless key fob; periodically transmitting a ping signal from the vehicle in a locked or inactive state; receiving a response ping signal to the ping signal, the response ping signal transmitted by the key fob; identifying at least a first RF signal characteristic associated with the response ping signal; determining whether the first RF signal characteristic is valid based on the secret; unlocking and/or activating the vehicle upon determining that the first RF signal characteristic is valid; and maintaining the locked or inactive state and/or requiring additional authentication if the first RF signal characteristic is invalid.
A system and method are described for ensuring that a product has been transported in acceptable environmental conditions. For example, one embodiment of the invention comprises: one or more sensors to measure environmental conditions during transport of the IoT device from an origin location to a destination location; a sensor interface coupled to the one or more sensors to communicate environmental values associated with the environmental conditions; a storage device to store monitor application program code; a processor coupled to the sensor interface and storage device, the processor to process the monitor application program code to perform operations based on the environmental values including storing the environmental values on the storage device; and a wireless communication interface to connect to an Internet of Things (IoT) service at one or more intermediate locations between the origin location and the destination location and/or at the destination location, the wireless communication interface to transmit the environmental values and/or event data associated with the environmental values to the IoT service; wherein the IoT service is to provide the environmental values and/or event data associated with the environmental values to one or more apps running on one or more client devices, the one or more apps associated with one or more accounts on the IoT service.
A method includes: receiving, in a first tag, a first security certificate for a second tag and a session token corresponding to an arrangement involving the first and second tags; determining, by the first tag, that the second tag satisfies a proximity criterion with regard to the first tag; receiving, in the first tag and from the second tag, the first security certificate and the session token; and generating, by the first tag and in response to the determination and the receipt of the first security certificate and the session token, a first output corresponding to verification of a custodian of the second tag as a participant in the arrangement.
A system and method are described for anonymous IoT device accounts. For example, one embodiment of a system comprises an IoT app to be executed on a mobile device of a user, the IoT app comprising a graphical user interface (GUI) to allow the user to capture one or more identification (ID) codes from one or more IoT devices, the mobile device to transmit the ID codes to an IoT service; a device management module on the IoT service to provision the IoT devices with the IoT service; an account management module on the IoT service to establish an anonymous user account and to associate the anonymous user account with the one or more IoT devices provisioned by the device management module; wherein upon the provisioned IoT devices being associated with the anonymous user account, the GUI of the IoT app is to provide the user with controllable access to the IoT devices prior to the user entering user identification information to the IoT service.
G06F 15/16 - Combinations of two or more digital computers each having at least an arithmetic unit, a program unit and a register, e.g. for a simultaneous processing of several programs
A system and method are described for managing attributes in an IoT system. For example, one embodiment of a machine-readable medium comprises program code stored thereon which, when executed by a machine, causes the machine to perform the operations of: specifying a plurality of attributes for a corresponding plurality of items of data managed in an Internet of Things (IoT) device and/or an IoT service; associating one or more ancillary attributes with one or more of the plurality of attributes, the ancillary attributes to specify attribute configurations and/or interdependencies between one or more of the plurality of attributes; evaluating the one or more ancillary attributes to ensure compliance with predefined constraints associated with the plurality of items of data; generating an indication of compliance if the one or more ancillary attributes are in compliance with the predefined constraints; and generating an indication of non-compliance if the one or more ancillary attributes are not in compliance with the predefined constraints.
H04L 9/32 - Arrangements for secret or secure communicationsNetwork security protocols including means for verifying the identity or authority of a user of the system
H04L 12/24 - Arrangements for maintenance or administration
H04L 12/28 - Data switching networks characterised by path configuration, e.g. LAN [Local Area Networks] or WAN [Wide Area Networks]
H04L 41/0893 - Assignment of logical groups to network elements
H04L 41/0813 - Configuration setting characterised by the conditions triggering a change of settings
H04L 41/22 - Arrangements for maintenance, administration or management of data switching networks, e.g. of packet switching networks comprising specially adapted graphical user interfaces [GUI]
H04L 67/00 - Network arrangements or protocols for supporting network services or applications
H04L 67/12 - Protocols specially adapted for proprietary or special-purpose networking environments, e.g. medical networks, sensor networks, networks in vehicles or remote metering networks
G06F 1/3206 - Monitoring of events, devices or parameters that trigger a change in power modality
H04W 48/16 - DiscoveringProcessing access restriction or access information
H04W 4/00 - Services specially adapted for wireless communication networksFacilities therefor
32.
System and method for internet of things (IoT) device validation
A system and method are described for validating an IoT device. For example, a method in accordance with one embodiment comprises: generating a first random value to be used as a first offset into a first block of program code of an Internet of Things (IoT) device; transmitting a challenge request message to the IoT device, the challenge request including the first offset or data based on the first offset; receiving a challenge response message transmitted by the IoT device, the challenge response message comprising first authentication data for the first block of IoT device program code; and using the first authentication data to attempt to validate the first block of program code.
H04W 12/00 - Security arrangementsAuthenticationProtecting privacy or anonymity
H04W 12/04 - Key management, e.g. using generic bootstrapping architecture [GBA]
H04L 9/32 - Arrangements for secret or secure communicationsNetwork security protocols including means for verifying the identity or authority of a user of the system
A system and method are described for managing attributes in an IoT system. For example, one embodiment of a machine-readable medium comprises program code stored thereon which, when executed by a machine, causes the machine to perform the operations of: specifying a plurality of attributes for a corresponding plurality of items of data managed in an Internet of Things (IoT) device and/or an IoT service; associating one or more ancillary attributes with one or more of the plurality of attributes, the ancillary attributes to specify attribute configurations and/or interdependencies between one or more of the plurality of attributes; evaluating the one or more ancillary attributes to ensure compliance with predefined constraints associated with the plurality of items of data; generating an indication of compliance if the one or more ancillary attributes are in compliance with the predefined constraints; and generating an indication of non-compliance if the one or more ancillary attributes are not in compliance with the predefined constraints.
A system and method are described for preventing security breaches in an IoT system. For example, one embodiment of a system comprises: an Internet of Things (IoT) device comprising a wireless communication module to establish communication with a plurality of IoT hubs over local wireless communication channels; advertising control logic to transmit first advertising beacons to the plurality of IoT hubs of a user indicating that the IoT device is connectable; the advertising control logic to begin transmitting a second advertising beacon to IoT hubs indicating that the IoT device is not connectable if the IoT device establishes a connection with a first IoT hub, the IoT hubs other than the first IoT hub to report the not connectable status of the IoT device to an IoT service; and a connection security module of the IoT service to determine whether the IoT device is connected to any known IoT hub upon receiving the not connectable status from one or more of the IoT hubs; wherein if the connection security module cannot identify a known IoT hub to which the IoT device is connected, then an alert condition is generated.
H04L 29/06 - Communication control; Communication processing characterised by a protocol
H04B 1/3816 - Mechanical arrangements for accommodating identification devices, e.g. cards or chipsTransceivers, i.e. devices in which transmitter and receiver form a structural unit and in which at least one part is used for functions of transmitting and receiving with connectors for programming identification devices
H04W 4/80 - Services using short range communication, e.g. near-field communication [NFC], radio-frequency identification [RFID] or low energy communication
An apparatus and method are described for sharing WiFi credentials. For example, one embodiment of a method comprises: generating a first secret on a first IoT device, the first IoT device having WiFi credentials stored thereon; sharing the first secret with a second IoT device; encrypting the WiFi credentials on the first IoT device using the first secret to generate encrypted WiFi credentials; receiving the encrypted WiFi credentials from the first IoT device at an IoT service; encrypting the encrypted WiFi credentials at the IoT service using a second secret to generate twice-encrypted WiFi credentials, the second secret known by the second IoT device; transmitting the twice-encrypted WiFi credentials from the IoT service to the second IoT device; decrypting, at the second IoT device, the twice-encrypted WiFi credentials using the second secret to generate the encrypted WiFi credentials and decrypting the encrypted WiFi credentials using the first secret to generate the WiFi credentials; and establishing a secure WiFi connection on the second IoT device using the WiFi credentials.
H04L 9/00 - Arrangements for secret or secure communicationsNetwork security protocols
H04W 12/04 - Key management, e.g. using generic bootstrapping architecture [GBA]
H04L 9/06 - Arrangements for secret or secure communicationsNetwork security protocols the encryption apparatus using shift registers or memories for blockwise coding, e.g. D.E.S. systems
A system, apparatus, and method for sharing network credentials. One embodiment of a method comprises: establishing a Bluetooth connection between a first Internet of Things (IoT) device and a mobile device of a first user having an IoT app installed, the mobile device to couple the first IoT device to an IoT service; receiving a request from a user from the mobile device to configure the first IoT device using network credentials from a second IoT device, the second IoT device registered with an account of the user on the IoT service and configured to connect to a secure network of the user with the network credentials; establishing a communication channel between the first IoT device and the second IoT device through the IoT service and the mobile device to obtain the network credentials; and using the network credentials at the first IoT device to securely connect to the secure network.
H04L 9/32 - Arrangements for secret or secure communicationsNetwork security protocols including means for verifying the identity or authority of a user of the system
H04L 9/14 - Arrangements for secret or secure communicationsNetwork security protocols using a plurality of keys or algorithms
H04W 12/04 - Key management, e.g. using generic bootstrapping architecture [GBA]
H04L 9/06 - Arrangements for secret or secure communicationsNetwork security protocols the encryption apparatus using shift registers or memories for blockwise coding, e.g. D.E.S. systems
37.
System and method for automatic wireless network authentication
A system and method are described for connecting an IoT device to a wireless router and/or access point. For example, one embodiment of a system comprises: an Internet of things (IoT) hub to collect network credentials required to connect with a wireless access point or router; the IoT hub to securely store the network credentials in a local or remote credentials database along with identification data identifying a user account and/or the wireless access point or router; a new IoT device to establish a connection with the IoT hub, another IoT device, and/or a user data processing device; the new IoT device to transmit a request for network credentials to establish a connection with the wireless access point or router; the IoT hub, IoT device and/or user data processing device to provide connectivity to the credentials database on behalf of the new IoT device, to receive the network credentials from the credentials database and to provide the network credentials to the new IoT device; and the new IoT device to automatically use the network credentials to establish a connection with the wireless access point or router.
H04L 12/24 - Arrangements for maintenance or administration
H04W 4/80 - Services using short range communication, e.g. near-field communication [NFC], radio-frequency identification [RFID] or low energy communication
A system, apparatus, and method for automatically provisioning a new IoT device. For example, one embodiment of a system comprises: an Internet of Things (IoT) service comprising: an IoT database to store user account data and IoT devices associated with each user account; an application programming interface (API) exposed to one or more online retail services to allow the online retail services to submit data related to IoT device purchases to the IoT service; a first IoT device purchased from the online retail service by a first user associated with a first user account on the IoT service, wherein in response to the first user purchasing the first IoT device, the online retail service is to transmit first identification data to identify the first IoT device and second identification data to identify the first user account; and device provisioning circuitry and/or logic to automatically add the first IoT device to the first user account on the IoT database in response to receipt of the first and second identification data.
A system, apparatus, and method for intelligent selection of a communication channel. One embodiment of an IoT device comprises: a first set of one or more communication interfaces having first power consumption characteristics; a second set of one or more communication interfaces having second power consumption characteristics, the second power consumption characteristics comprising lower power requirements than the first power consumption characteristics; a connection manager to determine whether to transmit a message over a communication interface from the first set of one or more communication interfaces when an interface from the second set of one or more communication interfaces is unavailable and in accordance with a priority associated with the message.
A system includes: first tags configured to organize activities regarding respective physical objects, each of the first tags including at least a first processor, a first memory, a sensor, an input device, an output device, a wireless communication component, and a first activity component operated using the first processor and the first memory to adapt a behavior of the respective first tag; and a processing device configured to receive first wireless signals from at least some of the first tags, the processing device including a second processor, a second memory, and a second activity component operated using the second processor and the second memory to determine at least presence, proximity, and movement of the first tags based on the first wireless signals.
A method includes: receiving, by a first tag and from a second tag, a first message including an identifier of the second tag, the first and second tags configured for coupling to respective first and second physical objects to organize activities; identifying, by the first tag and based on a proximity measure, the second tag for a pairing process to register the second tag as a child tag of the first tag; and providing, by the first tag, a second message with the identifier to a processing device configured to register the second tag as the child tag of the first tag.
G06K 7/10 - Methods or arrangements for sensing record carriers by electromagnetic radiation, e.g. optical sensingMethods or arrangements for sensing record carriers by corpuscular radiation
G06K 7/14 - Methods or arrangements for sensing record carriers by electromagnetic radiation, e.g. optical sensingMethods or arrangements for sensing record carriers by corpuscular radiation using light without selection of wavelength, e.g. sensing reflected white light
42.
PROVIDING INDICATION TO LOCATION OF PHYSICAL OBJECT USING WIRELESS TAG
A method includes: sending, by a first processing device, a first message including an instruction to a first tag to collect first data from at least one device, the first tag coupled to a first physical object for organizing the first physical object; receiving, by the first processing device, a second message from the first tag, the second message including the first data; obtaining, by the first processing device, a first descriptor as being associated with the first data; and presenting, by the first processing device, at least the first descriptor to a user as an indication to a location of the first physical object.
A tag includes: a housing configured for coupling the tag to a physical object to organize activities regarding the physical object; and coupled to the housing: a wireless communication component; circuitry electrically coupled to the wireless communication component, the circuitry having a reset port and a switch port; a power source electrically coupled to the wireless communication component and the circuitry; a first switch between the power source and the reset port; a second switch between the reset port and ground, the second switch controlled by the switch port; and a capacitor between the reset port and the ground.
A system and method are described for loaning IoT devices. For example, one embodiment of a method comprises receiving a command submitted by a first user to loan a plurality of Internet of Things (IoT) devices associated with a first user account to a second user, establishing a secure communication channel between an IoT service and an IoT app on an IoT device used by the second user, and receiving an identification code from the IoT app to provide the IoT app access to the plurality of IoT devices over the secure communication channel, wherein the IoT app is to capture the identification code from an optical code, the IoT service to use the identification code to identify the plurality of IoT devices, wherein the IoT service prevents access to the plurality of IoT devices by the first user while the second user has access to the IoT devices.
H04L 9/32 - Arrangements for secret or secure communicationsNetwork security protocols including means for verifying the identity or authority of a user of the system
H04L 29/06 - Communication control; Communication processing characterised by a protocol
H04W 4/70 - Services for machine-to-machine communication [M2M] or machine type communication [MTC]
A system and method are described for anonymous IoT device accounts. For example, one embodiment of a system comprises an IoT app to be executed on a mobile device of a user, the IoT app comprising a graphical user interface (GUI) to allow the user to capture one or more identification (ID) codes from one or more IoT devices, the mobile device to transmit the ID codes to an IoT service; a device management module on the IoT service to provision the IoT devices with the IoT service; an account management module on the IoT service to establish an anonymous user account and to associate the anonymous user account with the one or more IoT devices provisioned by the device management module; wherein upon the provisioned IoT devices being associated with the anonymous user account, the GUI of the IoT app is to provide the user with controllable access to the IoT devices prior to the user entering user identification information to the IoT service.
G06F 15/16 - Combinations of two or more digital computers each having at least an arithmetic unit, a program unit and a register, e.g. for a simultaneous processing of several programs
H04W 84/18 - Self-organising networks, e.g. ad hoc networks or sensor networks
H04L 29/08 - Transmission control procedure, e.g. data link level control procedure
G06F 3/0481 - Interaction techniques based on graphical user interfaces [GUI] based on specific properties of the displayed interaction object or a metaphor-based environment, e.g. interaction with desktop elements like windows or icons, or assisted by a cursor's changing behaviour or appearance
H04W 8/18 - Processing of user or subscriber data, e.g. subscribed services, user preferences or user profilesTransfer of user or subscriber data
H04W 4/70 - Services for machine-to-machine communication [M2M] or machine type communication [MTC]
46.
System and method for flow control in an internet of things (IoT) system
A system and method are described for performing flow control in an IoT system. For example, one embodiment of a system comprises: a plurality of IoT devices; an IoT hub to establish local wireless connections with the plurality of IoT devices to communicatively couple the plurality of IoT devices to an IoT service; the IoT hub to store flow control parameters for each of the plurality of IoT devices, the flow control parameters determined based on data communication requirements of each of the IoT devices and indicating one or more data communication thresholds for each of the IoT devices; the IoT hub to monitor data communication with each of the IoT devices to determine whether one of the IoT devices has reached a data communication threshold specified by the flow control parameters, wherein in response to a first IoT device reaching its data communication threshold, the IoT hub temporarily preventing communication between the first IoT device and the IoT service.
An apparatus and method are described for securely providing a User ID and/or password to an IoT device. For example, one embodiment of a method comprises: receiving at an Internet of Things (IoT) service a request from a mobile device over a first communication channel to transmit credentials for a particular online service to an IoT device, responsively encrypting the credentials to generate encrypted credentials and transmitting the encrypted credentials to the IoT device over a second communication channel, decrypting the encrypted credentials at the IoT device, and providing the credentials by the IoT device to a computer over a third communication channel, the computer causing the credentials to be provided to the online service to authenticate the user.
H04W 4/80 - Services using short range communication, e.g. near-field communication [NFC], radio-frequency identification [RFID] or low energy communication
A system and method are described for loaning IoT devices. For example, one embodiment of a system comprises an Internet of Things (IoT) service on which a plurality of IoT devices are to be provisioned, wherein upon being provisioned, the IoT service securely communicates with each of the IoT devices; an account management module to associate the plurality of IoT devices with a first user account of a first user, the first user accessing the IoT devices through the IoT service from a first IoT app on a first mobile device; the IoT service receiving a command submitted by the first user to loan the plurality of IoT devices to a second user; the account management module to associate the plurality of IoT devices with an anonymous user account on the IoT service accessible by the second IoT app; the IoT service to establish a secure communication channel with a second IoT app on a second IoT device used by the second user; and the second IoT app to transmit an identification code to the IoT service to provide the second IoT app access to the IoT devices over the secure communication channel, the IoT service to use the identification code to identify the plurality of IoT devices, wherein the IoT service prevents access to the IoT devices by the first user while the second user has access to the IoT devices.
H04L 9/32 - Arrangements for secret or secure communicationsNetwork security protocols including means for verifying the identity or authority of a user of the system
H04L 29/06 - Communication control; Communication processing characterised by a protocol
H04W 4/70 - Services for machine-to-machine communication [M2M] or machine type communication [MTC]
A system, apparatus, and method for sharing network credentials. One embodiment of a method comprises: establishing a Bluetooth connection between a first Internet of Things (IoT) device and a mobile device of a first user having an IoT app installed, the mobile device to couple the first IoT device to an IoT service; receiving a request from a user from the mobile device to configure the first IoT device using network credentials from a second IoT device, the second IoT device registered with an account of the user on the IoT service and configured to connect to a secure network of the user with the network credentials; establishing a communication channel between the first IoT device and the second IoT device through the IoT service and the mobile device to obtain the network credentials; and using the network credentials at the first IoT device to securely connect to the secure network.
H04L 9/32 - Arrangements for secret or secure communicationsNetwork security protocols including means for verifying the identity or authority of a user of the system
H04L 9/14 - Arrangements for secret or secure communicationsNetwork security protocols using a plurality of keys or algorithms
H04W 12/04 - Key management, e.g. using generic bootstrapping architecture [GBA]
H04L 9/06 - Arrangements for secret or secure communicationsNetwork security protocols the encryption apparatus using shift registers or memories for blockwise coding, e.g. D.E.S. systems
50.
SYSTEM AND METHOD FOR SECURELY CONFIGURING A NEW DEVICE WITH NETWORK CREDENTIALS
A method for establishing a connection between a first internet of Things (ioT) device and a mobile device having an loT app installed, the mobile device to couple the first IoT device to an IoT service; receiving a request from from the mobile device to configure the first IoT device using network credentials from a second IoT device, the second ioT device registered with an account of the user on the IoT service and configured to connect to a secure network with network credentials; establishing a communication channel between the first and second ioT devices through the IoT service and the mobile device; implementing a sequence of security transactions between the first and second IoT devices to determine a shared secret; encrypting the network credentials at the second ioT device to generate encrypted network credentials; transmitting the encrypted network credentials to the first IoT device; decrypting the network credentials at the first IoT device using the shared secret; and using the network credentials at the first IoT device to securely connect to the secure network.
An apparatus and method are described for integration of an RF antenna in an appliance. For example, one embodiment of an apparatus includes: a dielectric having a specified length and width defining an area; a ground plane made of conductive material directly adjacent to the dielectric, the ground plane formed from one or more components of a handle or a door of a heating device; an antenna element made of conductive material forming a plane adjacent to the dielectric and parallel to the ground plane, the antenna having a first dimension defining a first end and a second end, the first end electrically coupled to the ground plane; and an antenna feed electrically coupled to the antenna element at specified distance from the first end, the distance from the first end selected in accordance with a wavelength of a radio frequency (RF) signal to be transmitted and/or received by the antenna.
A system and method are described for performing service-initiated updates to IoT devices. For example, one embodiment of a system comprises: a plurality of IoT devices, each IoT device comprising: a storage device to store attributes and/or program code; a processor to execute the program code using the attributes to perform one or more specified functions of the IoT device, and attribute/code management circuitry and/or logic to manage a current state of the attributes and/or program code; an Internet of Things (IoT) cloud service to be communicatively coupled to IoT devices over the Internet, the IoT cloud service including an update service to initiate updates of the attributes and/or program code stored on the plurality of IoT devices, an IoT device to transmit a notification to the update service upon reaching a particular initialization state, the notification including an indication of a current attribute and/or program code state; the update service to responsively determine whether an update to the current attribute and/or program code state is available and, if so, to use a first key to generate a signature over a binary which includes the update to the attribute and/or program code state to generate a signed binary; the update service to further store the signed binary in a designated network location and to generate or retrieve a Uniform Resource Locator (URL) identifying the network location, the update service to transmit an update command to the IoT device containing the URL; the attribute/code management circuitry and/or logic of the IoT device to interpret the URL to retrieve the signed binary, to use a second key to verify the signature, and to responsively update the attribute and/or program code in accordance with the binary.
A system and method are described for performing service-initiated updates to IoT devices. For example, one embodiment of a system comprises: a plurality of IoT devices, each IoT device comprising: a storage device to store attributes and/or program code; a processor to execute the program code using the attributes to perform one or more specified functions of the IoT device, and attribute/code management circuitry and/or logic to manage a current state of the attributes and/or program code; an Internet of Things (IoT) cloud service to be communicatively coupled to IoT devices over the Internet, the IoT cloud service including an update service to initiate updates of the attributes and/or program code stored on the plurality of IoT devices, an IoT device to transmit a notification to the update service upon reaching a particular initialization state, the notification including an indication of a current attribute and/or program code state; the update service to responsively determine whether an update to the current attribute and/or program code state is available and, if so, to use a first key to generate a signature over a binary which includes the update to the attribute and/or program code state to generate a signed binary; the update service to further store the signed binary in a designated network location and to generate or retrieve a Uniform Resource Locator (URL) identifying the network location, the update service to transmit an update command to the IoT device containing the URL; the attribute/code management circuitry and/or logic of the IoT device to interpret the URL to retrieve the signed binary, to use a second key to verify the signature, and to responsively update the attribute and/or program code in accordance with the binary.
An IoT-based system and method are described having an IoT hub including an accelerometer. For example, one embodiment of a system comprises: an Internet of Things (IoT) service, a plurality of IoT devices, each IoT device comprising a first secure communication module, and an IoT hub in communication with the plurality of IoT devices. The IoT hub comprising: a microcontroller unit to execute application-specific program code, a second secure communication module to establish a first secure communication channel with the IoT service and a plurality of second secure communication channels with the plurality of IoT devices, and a sensor to detect physical movements of the IoT hub and to change an operating mode of the IoT hub from a first operating mode to a second operating mode based on the physical movements.
A method and system for connecting an Internet of Things (IoT) hub to a wireless network. One embodiment of the method includes establishing a secure communication channel between an IoT hub and an IoT service through a client device using a first secret; generating a second secret on the client device and transmitting it to the IoT hub; encrypting a wireless key using the second secret to generate a first-encrypted key and transmitting it to the IoT service; encrypting the first-encrypted key using the first secret to generate a twice-encrypted key and transmitting it to the IoT hub over the secure communication channel; decrypting the twice-encrypted key at the IoT hub using the first secret to generate the first-encrypted key and decrypting it using the second secret to generate the wireless key usable to establish a secure wireless connection between the IoT hub and the local wireless network.
H04W 12/04 - Key management, e.g. using generic bootstrapping architecture [GBA]
H04L 29/06 - Communication control; Communication processing characterised by a protocol
H04L 9/30 - Public key, i.e. encryption algorithm being computationally infeasible to invert and users' encryption keys not requiring secrecy
H04L 12/28 - Data switching networks characterised by path configuration, e.g. LAN [Local Area Networks] or WAN [Wide Area Networks]
H04L 9/06 - Arrangements for secret or secure communicationsNetwork security protocols the encryption apparatus using shift registers or memories for blockwise coding, e.g. D.E.S. systems
Embodiments are described for securing a vehicle or location. One embodiment of a method comprises: periodically transmitting a ping packet from a vehicle or location in a locked or inactive state; resetting a timer or recording a time at which the ping packet was transmitted; receiving a response packet to the ping packet; determining a time between transmitting the ping packet and receiving the response packet based on a current value in the timer when the response packet is received or based on a difference between the time at which the ping packet was transmitted and the time at which the response packet was received; determining whether the time is above a specified threshold; unlocking and/or activating the vehicle or location if the time is below the specified threshold; and maintaining the locked or inactive state if the time is above the specified threshold.
A system, apparatus, and method are described for a secure IoT wireless network configuration. For example, one embodiment of an Internet of Things (IoT) hub comprises: a local wireless communication interface to establish local wireless connections with one or more IoT devices and/or IoT extender hubs; a network router to establish network connections over the Internet on behalf of the IoT devices and/or IoT extender hubs; an authentication module pre-configured with a passphrase and a hidden service set identifier (SSID), the authentication module to receive a connection requests from the IoT devices and/or an IoT extender hubs and to grant the connection requests when the IoT devices and/or IoT extender hubs use the pre-configured passphrase and hidden SSID; and a firewall of the IoT hub to block all outgoing and incoming connection requests other than those directed to designated servers of an IoT service with known host names.
A system and method are described for accurately detecting a location of a wireless device. For example, one embodiment of a method comprises: collecting signal strength data indicating signal strength between a wireless device and a plurality of IoT devices and/or IoT hubs in a user's home; associating the signal strength data with locations in the user's home and storing the association in a location database; and determining a current location of the wireless device by comparing the signal strength data in the database with current signal strength data indicating current signal strength between the wireless device and the plurality of IoT devices and/or IoT hubs.
H04W 4/80 - Services using short range communication, e.g. near-field communication [NFC], radio-frequency identification [RFID] or low energy communication
H04L 29/08 - Transmission control procedure, e.g. data link level control procedure
59.
Embedded internet of things (IoT) hub for integration with an appliance and associated systems and methods
An embedded Internet of Things (IoT) hub for integration with an appliance and associated systems and methods. For example, one embodiment of an apparatus comprises: an embedded Internet of Things (IoT) hub comprising a wide area network (WAN) interface to couple the embedded IoT hub to an IoT service over a network, and a local wireless communication interface to communicatively couple the IoT hub to one or more IoT devices; an IoT hub slot interface coupled to the embedded IoT hub and comprising a first plurality of pins or pads to interface with corresponding pins or pads within an IoT hub slot of an appliance when the embedded IoT hub is inserted into the IoT hub slot; and a modular antenna interface coupled to the embedded IoT hub and comprising a second plurality of pins or pads to interface with corresponding pins or pads on a modular antenna to be coupled to the embedded IoT hub.
H04L 29/08 - Transmission control procedure, e.g. data link level control procedure
H04W 4/80 - Services using short range communication, e.g. near-field communication [NFC], radio-frequency identification [RFID] or low energy communication
60.
Securely providing a password using an internet of things (IOT) system
An apparatus and method are described for securely providing a User ID and/or password to an IoT device. For example, one embodiment of a method comprises: establishing a first communication channel between a user's mobile device and an Internet of Things (IoT) service; establishing a second communication channel between the IoT service and an IoT device, the IoT device having been previously registered with the IoT service; establishing a third communication channel between the IoT device and a computer on which the user is connecting to the online service; receiving at the IoT service a request from the mobile device to transmit a User ID and/or password for a particular online service to the IoT device; responsively encrypting the User ID and/or password to generate an encrypted User ID and/or password and transmitting the encrypted User ID and/or password to the IoT device; decrypting the encrypted User ID and/or password at the IoT device; and providing the User ID and/or password by the IoT device to the computer over the third communication channel, the computer causing the User ID and/or password to be provided to the online service to authenticate the user.
H04W 88/04 - Terminal devices adapted for relaying to or from another terminal or user
H04W 4/80 - Services using short range communication, e.g. near-field communication [NFC], radio-frequency identification [RFID] or low energy communication
61.
SECURELY PROVIDING A PASSWORD USING AN INTERNET OF THINGS (IOT) SYSTEM
An apparatus for securely providing a User ID and/or password to an loT device. For example, one embodiment of a method comprises: establishing a first communication channel between a user's mobile device and an Internet of Things (loT) service: establishing a second communication channel between the loT service and an loT device, the loT device having been previously registered with the loT service; establishing a third communication channel between the loT device and a computer on which the user is connecting to the online service; receiving at the loT service a request from the mobile device to transmit a User ID and/or password for a particular online service to the loT device; and providing the User ID and/or password by the loT device to the computer over the third communication channel, the computer causing the User ID and/or password to be provided to the online service to authenticate the user.
H04L 9/32 - Arrangements for secret or secure communicationsNetwork security protocols including means for verifying the identity or authority of a user of the system
62.
Secure two-way beacon in an internet of things (IoT) system
An apparatus and method are described for implementing a 2-way beacon. For example, one embodiment of an apparatus comprises: a beacon to transmit a first advertisement packet associated with 1-way functions available from the beacon and to further transmit a second advertisement packet associated with 2-way functions available from the beacon; the first advertisement packet to cause an app and/or hub to be initialized on a mobile device; and the second advertisement packet to cause the beacon to establish a first secure communication channel to a cloud service through the app and/or hub.
H04L 29/06 - Communication control; Communication processing characterised by a protocol
H04L 29/08 - Transmission control procedure, e.g. data link level control procedure
H04W 76/11 - Allocation or use of connection identifiers
H04W 4/80 - Services using short range communication, e.g. near-field communication [NFC], radio-frequency identification [RFID] or low energy communication
H04W 4/20 - Services signallingAuxiliary data signalling, i.e. transmitting data via a non-traffic channel
H04W 4/06 - Selective distribution of broadcast services, e.g. multimedia broadcast multicast service [MBMS]Services to user groupsOne-way selective calling services
H04W 4/21 - Services signallingAuxiliary data signalling, i.e. transmitting data via a non-traffic channel for social networking applications
G06Q 30/02 - MarketingPrice estimation or determinationFundraising
H04W 4/02 - Services making use of location information
G06Q 30/06 - Buying, selling or leasing transactions
63.
SECURE TWO-WAY BEACON IN AN INTERNET OF THINGS (IOT) SYSTEM
An apparatus and method are described for implementing a 2-way beacon. For example, one embodiment of an apparatus comprises: a beacon to transmit a first advertisement packet associated with 1-way functions available from the beacon and to further transmit a second advertisement packet associated with 2-way functions available from the beacon; the first advertisement packet to cause an app and/or hub to be initialized on a mobile device; and the second advertisement packet to cause the beacon to establish a first secure communication channel to a cloud service through the app and/or hub.
H04W 4/06 - Selective distribution of broadcast services, e.g. multimedia broadcast multicast service [MBMS]Services to user groupsOne-way selective calling services
64.
System and method for virtual internet of things (IoT) devices and hubs
A system and method are described for virtualizing Internet of Things (IoT) devices and hubs. For example, one embodiment of a system comprises: a primary Internet of Things (IoT) cloud service to register IoT devices owned by users who have subscribed with the primary IoT cloud service; IoT device management logic on the primary IoT cloud service to provide access to data generated by the primary IoT devices and to control the IoT devices responsive to user input; the IoT device management logic to establish a communication channel with an external IoT cloud service responsive to a user registering one or more external IoT devices controlled by the external IoT cloud service; and wherein upon the external IoT cloud service providing the IoT device management logic with access to the one or more external IoT devices, the IoT device management logic to generate virtual representations of the one or more external IoT devices to allow user access to information generated by the external IoT devices and to allow the user to control the external IoT devices through the virtual representations.
A Internet of Things (IoT) system and method for a beverage distribution system. For example, one embodiment of a system comprises: a set of Internet of Things (IoT) devices configured at different locations within a beverage distribution system, each IoT device having a sensor to detect a current condition at its respective location within the beverage distribution system, each of the IoT devices having a wireless network interface and configured to transmit data associated with the current conditions over a network; and an IoT cloud service to receive the data transmitted by the set of IoT devices and to implement a set of rules specified for maintenance, problems and failure conditions associated with the beverage distribution system, the IoT cloud service to determine, based on the rules, whether the data indicates a compliance violation, problem, or failure condition and, if so, to generate a notification and/or recommendation for an action to be taken with respect to the compliance violation, problem, or failure condition.
B67D 1/08 - Apparatus or devices for dispensing beverages on draught Details
G06K 7/14 - Methods or arrangements for sensing record carriers by electromagnetic radiation, e.g. optical sensingMethods or arrangements for sensing record carriers by corpuscular radiation using light without selection of wavelength, e.g. sensing reflected white light
H04L 29/08 - Transmission control procedure, e.g. data link level control procedure
H04W 84/18 - Self-organising networks, e.g. ad hoc networks or sensor networks
66.
Integrated development tool with preview functionality for an internet of things (IoT) system
A system and method are described for generating an interactive preview for an IoT device. For example, one embodiment of a system comprises: an Internet of Things (IoT) development application comprising a graphical user interface (GUI) through which a user is to specify a configuration for a new IoT device, the development application including a preview GUI component to allow a user to render a mobile UI preview on a mobile client; an IoT service including virtual device generation logic to generate a virtual device responsive to the configuration specified for the new IoT device, the virtual device comprising a virtualized representation of the new IoT device; and the virtual device to establish a communication channel with a mobile app executed on a client, the virtual device to dynamically communicate updates to the mobile app as the user makes changes to IoT device attributes and/or presentation definitions from the preview GUI.
H04L 29/08 - Transmission control procedure, e.g. data link level control procedure
G06F 3/0484 - Interaction techniques based on graphical user interfaces [GUI] for the control of specific functions or operations, e.g. selecting or manipulating an object, an image or a displayed text element, setting a parameter value or selecting a range
H04L 29/06 - Communication control; Communication processing characterised by a protocol
67.
System and method for automatic wireless network authentication
A system and method are described for connecting an IoT device to a wireless router and/or access point. For example, one embodiment of a system comprises: an Internet of things (IoT) hub to collect network credentials required to connect with a wireless access point or router; the IoT hub to securely store the network credentials in a local or remote credentials database along with identification data identifying a user account and/or the wireless access point or router; a new IoT device to establish a connection with the IoT hub, another IoT device, and/or a user data processing device; the new IoT device to transmit a request for network credentials to establish a connection with the wireless access point or router; the IoT hub, IoT device and/or user data processing device to provide connectivity to the credentials database on behalf of the new IoT device, to receive the network credentials from the credentials database and to provide the network credentials to the new IoT device; and the new IoT device to automatically use the network credentials to establish a connection with the wireless access point or router.
H04W 4/80 - Services using short range communication, e.g. near-field communication [NFC], radio-frequency identification [RFID] or low energy communication
An apparatus and method are described for sharing WiFi credentials. For example, one embodiment of a method comprises: generating a first secret on a first IoT device, the first IoT device having WiFi credentials stored thereon; sharing the first secret with a second IoT device; encrypting the WiFi credentials on the first IoT device using the first secret to generate encrypted WiFi credentials; receiving the encrypted WiFi credentials from the first IoT device at an IoT service; encrypting the encrypted WiFi credentials at the IoT service using a second secret to generate twice-encrypted WiFi credentials, the second secret known by the second IoT device; transmitting the twice-encrypted WiFi credentials from the IoT service to the second IoT device; decrypting, at the second IoT device, the twice-encrypted WiFi credentials using the second secret to generate the encrypted WiFi credentials and decrypting the encrypted WiFi credentials using the first secret to generate the WiFi credentials; and establishing a secure WiFi connection on the second IoT device using the WiFi credentials.
H04L 9/14 - Arrangements for secret or secure communicationsNetwork security protocols using a plurality of keys or algorithms
H04L 9/32 - Arrangements for secret or secure communicationsNetwork security protocols including means for verifying the identity or authority of a user of the system
A platform, apparatus and method for Internet of Things Implementations. For example, one embodiment of a system comprises: an Internet of Things (IoT) hub comprising a network interface to couple the IoT hub to an IoT service over a wide area network (WAN), and programming logic to program an identification device with one or more encryption keys usable to establish encrypted communication with an IoT device; and at least one IoT device interfacing with the identification device following programming of the identification device by the IoT hub; wherein once the identification device is programmed and interfaced with the IoT device, the IoT device uses the one or more keys to establish a secure communication channel with the IoT hub and/or the IoT service.
An apparatus and method are described for sharing WiFi credentials. For example, one embodiment of a method comprises: generating a first secret on a first IoT device, the first IoT device having WiFi credentials stored thereon; sharing the first secret with a second IoT device; encrypting the WiFi credentials on the first IoT device using the first secret to generate encrypted WiFi credentials; receiving the encrypted WiFi credentials from the first IoT device at an IoT service; encrypting the encrypted WiFi credentials at the IoT service using a second secret to generate twice-encrypted WiFi credentials, the second secret known by the second IoT device; transmitting the twice-encrypted WiFi credentials from the IoT service to the second IoT device; decrypting, at the second IoT device, the twice-encrypted WiFi credentials using the second secret to generate the encrypted WiFi credentials and decrypting the encrypted WiFi credentials using the first secret to generate the WiFi credentials; and establishing a secure WiFi connection on the second IoT device using the WiFi credentials.
A system and method are described for generating an interactive preview for an IoT device. For example, one embodiment of a method comprises: in response to initiating a preview of a new IoT device, determining whether a corresponding IoT device exists and, if not, then generating a virtual IoT device; associating the virtual or real IoT device with a set of device attributes and presentation definitions; establishing a communication channel with a mobile app; in response to detecting changes to the attributes and/or presentation definitions, transmitting updates to the mobile app, the mobile app dynamically updating the attributes and presentation definitions in real time.
G06F 3/0484 - Interaction techniques based on graphical user interfaces [GUI] for the control of specific functions or operations, e.g. selecting or manipulating an object, an image or a displayed text element, setting a parameter value or selecting a range
H04L 29/06 - Communication control; Communication processing characterised by a protocol
H04L 29/08 - Transmission control procedure, e.g. data link level control procedure
72.
Internet of things (IoT) system and method for selecting a secondary communication channel
An IoT system and method for selecting a secondary communication channel. For example, one embodiment of an apparatus comprises: one or more primary communication interfaces to establish a connection between an Internet of Things (IoT) device and an IoT service over one or more primary communication channels; one or more secondary communication interfaces to establish a connection between the IoT device and the IoT service over one or more secondary communication channels; a communication interface selection module to determine whether a primary threshold related to connection attempts over the one or more primary communication channels has been reached; in response to detecting that the primary threshold has been reached, the communication interface selection module to attempt to establish a connection between the IoT device and the IoT service over one of the secondary communication channels; the secondary communication interface to exchange data between the IoT device and the IoT service over the secondary communication channel.
An loT system and method for selecting a secondary communication channel. For example, one embodiment of an apparatus comprises: one or more primary communication interfaces to establish a connection between an Internet of Things (loT) device and an loT service over one or more primary communication channels; one or more secondary communication interfaces to establish a connection between the loT device and the loT service over one or more secondary communication channels; a communication interface selection module to determine whether a primary threshold related to connection attempts over the one or more primary communication channels has been reached; in response to detecting that the primary threshold has been reached, the communication interface selection module to attempt to establish a connection between the loT device and the loT service over one of the secondary communication channels; the secondary communication interface to exchange data between the loT device and the loT service over the secondary communication channel.
An embedded Internet of Things (IoT) hub for integration with modular antennae and associated systems and methods. For example, one embodiment of an apparatus includes: an embedded IoT hub comprising a wide area network (WAN) interface to couple the embedded IoT hub to an IoT service over a network and a local wireless communication interface to communicatively couple the IoT hub to one or more IoT devices; an IoT hub slot interface coupled to the embedded IoT hub and comprising a first plurality of pins or pads to interface with corresponding pins or pads within an IoT hub slot of an appliance when the embedded IoT hub is inserted into the IoT hub slot; and a modular antenna interface coupled to the embedded IoT hub and comprising a second plurality of pins or pads to interface with corresponding pins or pads on the interface component of the modular antenna.
An apparatus for connecting an Internet of Things (IoT) hub to a wireless network, the apparatus including: 1) a security module to generate a first secret and a second secret, and to encrypt a wireless key using the second secret to generate a first-encrypted key; and 2) a connection logic to establish a secure communication channel between an IoT hub and an IoT service using the first secret, transmit the second secret to the IoT hub and the first-encrypted key to the IoT service, receive from the IoT service a twice-encrypted key generated by encrypting the first-encrypted key using the first secret, and transmit the twice-encrypted key to the IoT hub, which decrypts it using the first secret to generate the first-encrypted key, which is further decrypted using the second secret to generate the wireless key. The IoT hub using the wireless key to connect to the wireless network.
An apparatus and method are described for an IoT security system. For example, one embodiment of the IoT security system comprises: one or more attachable security devices, each comprising an IoT device to establish local wireless connections with one or more IoT hubs within a location, each attachable security device to be attached to a child registered with the security system and comprising a switch to trigger upon detachment of the attachable security device from the child; a plurality of kiosks, each kiosk comprising: a monitor to provide instructions to parents for registering and de-registering children with the security system; an input device to receive input from the parents during a registration process and a de-registration process to register and de-register the children, respectively; a camera to capture a photo of a child to be registered with the security system; an IoT hub to establish a first set of local wireless communication channels with the IoT devices of the security bracelets, the IoT hub to further provide connectivity among each of the kiosks through a second set of one or more communication channels; the IoT hub to associate the photo of the child with an IoT device of a security bracelet provided to the child, the association being stored in one or more of the kiosks or in a network service; an IoT device of an attachable security device to transmit a first alarm to a first kiosk responsive to the switch triggering upon detachment of the attachable security device; the first kiosk to communicate the first alarm with other kiosks and the plurality of kiosks to display the photo.
A system and method are described for generating an interactive preview for an IoT device. For example, one embodiment of a system comprises: an Internet of Things (IoT) development application comprising a graphical user interface (GUI) through which a user is to specify a configuration for a new IoT device, the development application including a preview GUI component to allow a user to render a mobile UI preview on a mobile client; an IoT service including virtual device generation logic to generate a virtual device responsive to the configuration specified for the new IoT device, the virtual device comprising a virtualized representation of the new IoT device; and the virtual device to establish a communication channel with a mobile app executed on a client, the virtual device to dynamically communicate updates to the mobile app as the user makes changes to IoT device attributes and/or presentation definitions from the preview GUI.
H04L 29/08 - Transmission control procedure, e.g. data link level control procedure
G06F 3/0484 - Interaction techniques based on graphical user interfaces [GUI] for the control of specific functions or operations, e.g. selecting or manipulating an object, an image or a displayed text element, setting a parameter value or selecting a range
78.
INTEGRATED DEVELOPMENT TOOL WITH PREVIEW FUNCTIONALITY FOR AN INTERNET OF THINGS (IOT) SYSTEM
A system and method are described for generating an interactive preview for an IoT device. For example, one embodiment of a system comprises: an Internet of Things (IoT) development application comprising a graphical user interface (GUI) through which a user is to specify a configuration for a new IoT device, the development application including a preview GUI component to allow a user to render a mobile UI preview on a mobile client; an IoT service including virtual device generation logic to generate a virtual device responsive to the configuration specified for the new IoT device, the virtual device comprising a virtualized representation of the new IoT device; and the virtual device to establish a communication channel with a mobile app executed on a client, the virtual device to dynamically communicate updates to the mobile app as the user makes changes to IoT device attributes and/or presentation definitions from the preview GUI.
A system and method are described for generating an interactive preview for an IoT device. For example, one embodiment of a method comprises: in response to initiating a preview of a new IoT device, determining whether a corresponding IoT device exists and, if not, then generating a virtual IoT device; associating the virtual or real IoT device with a set of device attributes and presentation definitions; establishing a communication channel with a mobile app; in response to detecting changes to the attributes and/or presentation definitions, transmitting updates to the mobile app, the mobile app dynamically updating the attributes and presentation definitions in real time.
H04L 29/08 - Transmission control procedure, e.g. data link level control procedure
G06F 3/0484 - Interaction techniques based on graphical user interfaces [GUI] for the control of specific functions or operations, e.g. selecting or manipulating an object, an image or a displayed text element, setting a parameter value or selecting a range
80.
Internet of things (IoT) credit card tracking system
A system, apparatus and method are described embedding an IoT device within a credit card of a user. For example, one embodiment of an Internet of Things (IoT) credit card system comprises: a plurality of IoT hubs located within stores; an IoT device embedded within a credit card, the IoT device comprising a battery and a secure communication module to communicate with the IoT hubs; an IoT service to receive location data related to the IoT hubs to which the IoT device has connected, the location data usable to determine the stores and/or locations within stores visited by the user; and a database within the IoT service to store an indication of the stores visited by the user and/or the locations within stores visited by the user.
G06K 5/00 - Methods or arrangements for verifying the correctness of markings on a record carrierColumn-detection devices
G06K 7/08 - Methods or arrangements for sensing record carriers by means detecting the change of an electrostatic or magnetic field, e.g. by detecting change of capacitance between electrodes
G06K 19/06 - Record carriers for use with machines and with at least a part designed to carry digital markings characterised by the kind of the digital marking, e.g. shape, nature, code
G06Q 20/32 - Payment architectures, schemes or protocols characterised by the use of specific devices using wireless devices
H04W 4/70 - Services for machine-to-machine communication [M2M] or machine type communication [MTC]
G06F 16/9537 - Spatial or temporal dependent retrieval, e.g. spatiotemporal queries
G06Q 20/40 - Authorisation, e.g. identification of payer or payee, verification of customer or shop credentialsReview and approval of payers, e.g. check of credit lines or negative lists
H04W 4/029 - Location-based management or tracking services
81.
System and method for establishing secure communication channels with internet of things (IoT) devices
A system and method are described for establishing secure communication channels. For example, one embodiment of a system includes an IoT device comprising secret/counter processing logic/circuitry to generate a master secret, the master secret to be transmitted to an IoT service. The system may include one or more IoT hubs to receive the master secret from the IoT service over a first secure communication channel. At least one of the IoT hubs can use the master secret to establish a second secure communication channel with the IoT device.
H04L 29/06 - Communication control; Communication processing characterised by a protocol
H04L 9/32 - Arrangements for secret or secure communicationsNetwork security protocols including means for verifying the identity or authority of a user of the system
H04W 12/04 - Key management, e.g. using generic bootstrapping architecture [GBA]
H04L 9/12 - Transmitting and receiving encryption devices synchronised or initially set up in a particular manner
H04L 29/08 - Transmission control procedure, e.g. data link level control procedure
H04W 4/70 - Services for machine-to-machine communication [M2M] or machine type communication [MTC]
H04W 4/80 - Services using short range communication, e.g. near-field communication [NFC], radio-frequency identification [RFID] or low energy communication
82.
System and method for preventing security breaches in an internet of things (IOT) system
A system and method are described for preventing security breaches in an IoT system. For example, one embodiment of a system comprises: an Internet of Things (IoT) device comprising a wireless communication module to establish communication with a plurality of IoT hubs over local wireless communication channels; advertising control logic to transmit first advertising beacons to the plurality of IoT hubs of a user indicating that the IoT device is connectable; the advertising control logic to begin transmitting a second advertising beacon to IoT hubs indicating that the IoT device is not connectable if the IoT device establishes a connection with a first IoT hub, the IoT hubs other than the first IoT hub to report the not connectable status of the IoT device to an IoT service; and a connection security module of the IoT service to determine whether the IoT device is connected to any known IoT hub upon receiving the not connectable status from one or more of the IoT hubs; wherein if the connection security module cannot identify a known IoT hub to which the IoT device is connected, then an alert condition is generated.
H04L 29/06 - Communication control; Communication processing characterised by a protocol
H04B 1/3816 - Mechanical arrangements for accommodating identification devices, e.g. cards or chipsTransceivers, i.e. devices in which transmitter and receiver form a structural unit and in which at least one part is used for functions of transmitting and receiving with connectors for programming identification devices
H04W 4/80 - Services using short range communication, e.g. near-field communication [NFC], radio-frequency identification [RFID] or low energy communication
A system and method are described for implementing latched attributes within an IoT system. For example, one embodiment of a method comprises: specifying an attribute for each of a plurality of items of data managed in an Internet of Things (IoT) device and/or an IoT service, at least some of the attributes comprising latched attributes having a current value and an indication of state changes to the latched attribute over a period of time; when an IoT device is unable to connect with the IoT service for a period of time maintaining an indication of any state changes occurring to the latched attribute over the period of time; upon establishing a successful connection between the IoT device and the IoT service after the period of time, transmitting the indication of state changes of the latched attribute from the IoT device to the IoT service; and analyzing the indication of state changes to determine whether to generate an alert condition on the IoT service.
A system and method are described for establishing secure communication channels. For example, one embodiment of a system comprises: an IoT device comprising secret/counter processing logic/circuitry to generate a master secret, the master secret to be transmitted to an IoT service; one or more IoT hubs to receive the master secret from the IoT service over a first secure communication channel, at least one of the IoT hubs to use the master secret to establish a second secure communication channel with the IoT device.
An apparatus and method are described for secure communication between IoT devices and an IoT service. For example, one embodiment of a system comprises: an Internet of Things (IoT) service to establish communication with an IoT device through an IoT hub or a mobile user device; a first encryption engine on the IoT service comprising key generation logic to generate a service public key and a service private key; a second encryption engine on the IoT device comprising key generation logic to generate a device public key and a device private key; the first encryption engine to transmit the service public key to the second encryption engine and the second encryption engine to transmit the device public key to the first encryption engine; the first encryption engine to use the device public key and the service private key to generate a secret; the second encryption engine to use the service public key and the device private key to generate the same secret; and wherein once the secret is generated, the first encryption engine and the second encryption engine encrypt and decrypt data packets transmitted between the first encryption engine and the second encryption engine using the secret or using a data structure derived from the secret.
An apparatus and method are described for selecting an appropriate advertising interval for an IoT device. For example, one embodiment of an apparatus comprises: Internet of Things (IoT) device data collection circuitry/logic to collect IoT device usage data and/or other IoT device data; advertising interval determination circuitry/logic to determine an appropriate advertising interval based on the IoT device usage data and/or other IoT device data; and advertising interval selection circuitry/logic to implement the appropriate advertising interval determined by the advertising interval determination circuitry/logic.
A platform, apparatus and method are described for pairing devices. For example, one embodiment of a system for pairing devices comprises: a first data processing device having a machine-readable optical label associated therewith and including a first wireless communication interface; a second data processing device having a second wireless communication interface and an optical reader for reading identification data from the optical label associated with the first data processing device, the second wireless communication interface including pairing logic to use the identification data to pair with the first data processing device by establishing a secure communication channel between the first and second wireless communication interfaces.
H04B 1/3816 - Mechanical arrangements for accommodating identification devices, e.g. cards or chipsTransceivers, i.e. devices in which transmitter and receiver form a structural unit and in which at least one part is used for functions of transmitting and receiving with connectors for programming identification devices
88.
SYSTEM AND METHOD FOR AUTOMATIC WIRELESS NETWORK AUTHENTICATION IN AN INTERNET OF THINGS (IOT) SYSTEM
A system, apparatus, and method are described for a secure IoT wireless network configuration. For example, one embodiment of an Internet of Things (IoT) hub comprises: a local wireless communication interface to establish local wireless connections with one or more IoT devices and/or IoT extender hubs; a network router to establish network connections over the Internet on behalf of the IoT devices and/or IoT extender hubs; an authentication module pre-configured with a passphrase and a hidden service set identifier (SSID), the authentication module to receive a connection requests from the IoT devices and/or an IoT extender hubs and to grant the connection requests when the IoT devices and/or IoT extender hubs use the pre-configured passphrase and hidden SSID; and a firewall of the IoT hub to block all outgoing and incoming connection requests other than those directed to designated servers of an IoT service with known host names.
A system, apparatus, and method are described for a secure IoT wireless network configuration. For example, one embodiment of an Internet of Things (IoT) hub comprises: a local wireless communication interface to establish local wireless connections with one or more IoT devices and/or IoT extender hubs; a network router to establish network connections over the Internet on behalf of the IoT devices and/or IoT extender hubs; an authentication module pre-configured with a passphrase and a hidden service set identifier (SSID), the authentication module to receive a connection requests from the IoT devices and/or an IoT extender hubs and to grant the connection requests when the IoT devices and/or IoT extender hubs use the pre-configured passphrase and hidden SSID; and a firewall of the IoT hub to block all outgoing and incoming connection requests other than those directed to designated servers of an IoT service with known host names.
A system and method are described for establishing a secondary communication channel between an IoT device and a client device. For example, one embodiment of a method comprises: establishing a primary secure communication channel between the IoT device and an IoT service using a primary set of keys; performing a secondary key exchange using the primary secure communication channel, the client device and the IoT device each being provided with a secondary set of keys following the secondary key exchange; detecting that the primary secure communication channel is inoperative; and responsively establishing a secondary secure wireless connection between the client device and the IoT device using the secondary set of keys, the client device being provided with access to data and functions made available by the IoT device over the secondary secure wireless connection.
A system and method are described for an IoT integrated development tool. For example, one embodiment of an apparatus comprises: an Internet of Things (IoT) development application comprising a GUI through which a developer is to specify a configuration for a new IoT device; a development database comprising configuration data related to different IoT device configurations, the IoT development application to utilize the data in the development database based on the configuration specified by the developer for the new IoT device; an IoT device engine to generate an IoT device profile responsive to the development application specifying input/output functions to be performed by the new IoT device; a client app engine to generate a user experience (UX) profile responsive to the development application specifying features of a client app or application related to operation of the new IoT device; and an IoT service engine to generate a cloud application programming interface (API) profile responsive to the development application specifying features of an IoT service related to operation of the new IoT device.
An Internet of Things (loT) device comprising a local wireless communication interface to establish a local wireless communication link with one or more loT hubs or client devices and a microcontroller unit (MCU) to execute program code; a secure communication module to establish a secure communication channel between the loT device and an loT service over the Internet using the local wireless communication link; a machine/coin acceptor interface comprising a first interface to communicatively couple the loT device to a coin acceptor device and a second interface to communicatively couple the loT device to a machine control unit to control operations of a coin operated machine, the device receive signals from the coin acceptor device over the first interface or accept a command transmitted from the loT service to the loT device through the secure communication channel.
A system and method are described for provisioning an IoT device using an association ID code. For example, one embodiment of a method comprises: generating an association between a new Internet of Things (IoT) device identification (ID) code and an association ID code; storing the association in an IoT device database of an IoT service; retrieving the association ID code from the new IoT device; transmitting the association ID code to the IoT service, the IoT service performing a lookup in the IoT device database using the association ID code to determine the device ID code; and provisioning the IoT device to communicate with the IoT service using the device ID code.
A system and method are described for an IoT integrated development tool. For example, one embodiment of an apparatus comprises: an Internet of Things (IoT) development application comprising a GUI through which a developer is to specify a configuration for a new IoT device; a development database comprising configuration data related to different IoT device configurations, the IoT development application to utilize the data in the development database based on the configuration specified by the developer for the new IoT device; an IoT device engine to generate an IoT device profile responsive to the development application specifying input/output functions to be performed by the new IoT device; a client app engine to generate a user experience (UX) profile responsive to the development application specifying features of a client app or application related to operation of the new IoT device; and an IoT service engine to generate a cloud application programming interface (API) profile responsive to the development application specifying features of an IoT service related to operation of the new IoT device.
An apparatus and method are described for an IoT security system. For example, one embodiment of the IoT security system comprises: one or more attachable security devices, each comprising an IoT device to establish local wireless connections with one or more IoT hubs within a location, each attachable security device to be attached to a child registered with the security system and comprising a switch to trigger upon detachment of the attachable security device from the child; a plurality of kiosks, each kiosk comprising: a monitor to provide instructions to parents for registering and de-registering children with the security system; an input device to receive input from the parents during a registration process and a de-registration process to register and de-register the children, respectively; a camera to capture a photo of a child to be registered with the security system; an IoT hub to establish a first set of local wireless communication channels with the IoT devices of the security bracelets, the IoT hub to further provide connectivity among each of the kiosks through a second set of one or more communication channels; the IoT hub to associate the photo of the child with an IoT device of a security bracelet provided to the child, the association being stored in one or more of the kiosks or in a network service; an IoT device of an attachable security device to transmit a first alarm to a first kiosk responsive to the switch triggering upon detachment of the attachable security device; the first kiosk to communicate the first alarm with other kiosks and the plurality of kiosks to display the photo.
A system and method are described for Internet of Things (IoT) shelf tags. For example, one embodiment of a system comprises: a shelf tag IoT device comprising a local wireless communication interface to establish a local wireless communication link with one or more IoT hubs or client devices, the shelf tag IoT device further comprising a secure communication module to establish a secure communication channel with an IoT service over the Internet using the local wireless communication link; a low power display coupled to the shelf tag IoT device to display product information related to retail products placed on shelves at a retail location; a products database maintained on the IoT service and/or an external retail service, the products database to store an association between each IoT device and each of a plurality of products sold by a retailer; shelf tag management logic executed on the IoT service and/or the external retail service and configured to push pricing updates for products to each respective shelf tag IoT device upon detecting a change in price for the products associated with the shelf tag IoT devices.
G06K 7/10 - Methods or arrangements for sensing record carriers by electromagnetic radiation, e.g. optical sensingMethods or arrangements for sensing record carriers by corpuscular radiation
G06Q 10/08 - Logistics, e.g. warehousing, loading or distributionInventory or stock management
H04W 4/00 - Services specially adapted for wireless communication networksFacilities therefor
G06K 7/08 - Methods or arrangements for sensing record carriers by means detecting the change of an electrostatic or magnetic field, e.g. by detecting change of capacitance between electrodes
H04L 29/08 - Transmission control procedure, e.g. data link level control procedure
G06K 19/06 - Record carriers for use with machines and with at least a part designed to carry digital markings characterised by the kind of the digital marking, e.g. shape, nature, code
H04W 12/04 - Key management, e.g. using generic bootstrapping architecture [GBA]
H04W 4/80 - Services using short range communication, e.g. near-field communication [NFC], radio-frequency identification [RFID] or low energy communication
H04W 84/04 - Large scale networksDeep hierarchical networks
97.
Internet of things (IoT) apparatus and method for coin operated devices
A system and method are described for an Internet of Things (IoT) coin operated machine. For example, one embodiment of a system comprises: an Internet of Things (IoT) device comprising a local wireless communication interface to establish a local wireless communication link with one or more IoT hubs or client devices and a microcontroller unit (MCU) to execute program code; a secure communication module to establish a secure communication channel between the IoT device and an IoT service over the Internet using the local wireless communication link; a machine/coin acceptor interface comprising a first interface to communicatively couple the IoT device to a coin acceptor device and a second interface to communicatively couple the IoT device to a machine control unit to control operations of a coin operated machine, the machine/coin acceptor interface to receive signals from the coin acceptor device over the first interface when coins are inserted into the coin acceptor device and to transmit a signal to the machine control unit over the second interface to cause the coin operated machine to perform operations when a specified number of coins have been inserted; and the machine/coin acceptor interface to further transmit a signal to the machine control unit over the second interface to cause the coin operated machine to perform operations in response to a command transmitted from the IoT service to the IoT device through the secure communication channel.
H04W 4/80 - Services using short range communication, e.g. near-field communication [NFC], radio-frequency identification [RFID] or low energy communication
H04W 12/02 - Protecting privacy or anonymity, e.g. protecting personally identifiable information [PII]
H04W 12/04 - Key management, e.g. using generic bootstrapping architecture [GBA]
G09C 5/00 - Ciphering or deciphering apparatus or methods not provided for in other groups of this subclass, e.g. involving the concealment or deformation of graphic data such as designs, written or printed messages
A system and method are described for performing flow control in an IoT system. For example, one embodiment of a system comprises: a plurality of IoT devices; an IoT hub to establish local wireless connections with the plurality of IoT devices to communicatively couple the plurality of IoT devices to an IoT service; the IoT hub to store flow control parameters for each of the plurality of IoT devices, the flow control parameters determined based on data communication requirements of each of the IoT devices and indicating one or more data communication thresholds for each of the IoT devices; the IoT hub to monitor data communication with each of the IoT devices to determine whether one of the IoT devices has reached a data communication threshold specified by the flow control parameters, wherein in response to a first IoT device reaching its data communication threshold, the IoT hub temporarily preventing communication between the first IoT device and the IoT service.
An apparatus and method are for providing security to a mass storage device using an Internet of Things (IoT) system. For example, one embodiment of a system comprises: a mass storage device to store data; an Internet of Things (IoT) device associated with the mass storage device; an IoT service comprising a database to store an association between the mass storage device and the IoT device; wherein to authenticate and unlock the mass storage device for use with a data processing device, the IoT device is to establish an encrypted communication channel with the IoT service and transmit a unique identification (ID) code to the IoT service uniquely identifying the IoT device to the IoT service; the IoT service to authenticate the IoT device using the unique ID code and to responsively transmit an unlock command over the encrypted communication channel to unlock the mass storage device; and the IoT device to responsively unlock the mass storage device upon receipt of the unlock code.
A system and method are described for capturing video in an IoT system. For example, one embodiment of a system comprises: a plurality of IoT devices to be positioned within a user's home or business, each of the IoT devices having a sensor to take measurements of local conditions and to transmit the measurements or related indications to an IoT service and/or a client device of the user; an app or application to be installed on the client device, the user to use the app or application to capture a security code from an Internet of Things (IoT) video camera, the app or application to securely transmit the security code to the IoT service; the IoT service to perform a lookup in a database to identify the security code and to responsively associate the IoT video camera with the user using the security code; and video capture control logic to receive the measurements or related indications from the plurality of IoT devices and to responsively determine whether to turn on video capture of the IoT video camera based on the measurements or related indications in accordance with video capture rules specified by the user.
H04L 29/08 - Transmission control procedure, e.g. data link level control procedure
H04L 29/06 - Communication control; Communication processing characterised by a protocol
G06K 7/10 - Methods or arrangements for sensing record carriers by electromagnetic radiation, e.g. optical sensingMethods or arrangements for sensing record carriers by corpuscular radiation
H04N 5/232 - Devices for controlling television cameras, e.g. remote control
