	US 11,750,591 B2
	Key attestation statement generation providing device anonymity
Saurav Sinha, Kirkland, WA (US); and Victor Warren Heller, Sammamish, WA (US)
Assigned to Microsoft Technology Licensing, LLC, Redmond, WA (US)
Filed by Microsoft Technology Licensing, LLC, Redmond, WA (US)
Filed on Aug. 27, 2020, as Appl. No. 17/4,929.
Application 17/004,929 is a continuation of application No. 15/649,085, filed on Jul. 13, 2017, granted, now 10,819,696.
Prior Publication US 2020/0396217 A1, Dec. 17, 2020
This patent is subject to a terminal disclaimer.
Int. Cl. H04L 9/40 (2022.01); G06F 21/73 (2013.01); H04L 9/32 (2006.01); G06F 21/72 (2013.01); H04L 9/08 (2006.01); H04L 9/00 (2022.01); G06F 21/57 (2013.01); G06F 21/33 (2013.01)

CPC H04L 63/0823 (2013.01) [G06F 21/33 (2013.01); G06F 21/57 (2013.01); G06F 21/72 (2013.01); G06F 21/73 (2013.01); H04L 9/006 (2013.01); H04L 9/0825 (2013.01); H04L 9/0897 (2013.01); H04L 9/321 (2013.01); H04L 9/3265 (2013.01); H04L 63/0407 (2013.01); H04L 63/0435 (2013.01); H04L 63/0442 (2013.01); H04L 63/061 (2013.01); H04L 63/062 (2013.01); H04L 2209/42 (2013.01)]

20 Claims

1. A system comprising:

a processor; and

a memory communicatively coupled to the processor and storing computer-executable instructions that, when executed, perform operations comprising:

sending, to an attestation service, an attestation certificate request that corresponds to a device, the attestation certificate request including information describing at least one of hardware or software of the device;

receiving, from the attestation service, a first public/private key pair and an attestation certificate that associates the first public/private key pair with a trusted secure component of the device;

storing a private key of the first public/private key pair in a secure store of the trusted secure component; and

generating a second public/private key pair and a second attestation certificate, the second attestation certificate chaining up to the attestation service.