US 12,256,024 B2
Device provisioning
Alessandro Contenti, Clyde Hill, WA (US); Stefan Thom, Snohomish, WA (US); and Torsten Stein, Snohomish, WA (US)
Assigned to Microsoft Technology Licensing, LLC, Redmond, WA (US)
Filed by Microsoft Technology Licensing, LLC, Redmond, WA (US)
Filed on Jun. 21, 2017, as Appl. No. 15/629,064.
Prior Publication US 2018/0375665 A1, Dec. 27, 2018
Int. Cl. H04L 9/32 (2006.01); G01G 19/44 (2006.01); H04L 9/14 (2006.01); H04L 9/30 (2006.01); H04L 9/40 (2022.01); H04W 12/03 (2021.01); H04W 12/04 (2021.01); H04W 12/30 (2021.01); H04W 12/50 (2021.01); H04W 4/70 (2018.01); H04W 84/12 (2009.01)
CPC H04L 9/3263 (2013.01) [G01G 19/44 (2013.01); H04L 9/14 (2013.01); H04L 9/30 (2013.01); H04L 9/3226 (2013.01); H04L 9/3247 (2013.01); H04L 63/0442 (2013.01); H04W 12/03 (2021.01); H04W 12/04 (2013.01); H04W 12/35 (2021.01); H04W 12/50 (2021.01); H04L 63/0823 (2013.01); H04L 63/18 (2013.01); H04W 4/70 (2018.02); H04W 84/12 (2013.01)] 20 Claims
OG exemplary drawing
 
1. A device comprising:
a processor;
memory coupled to the processor and comprising computer executable instructions that, when executed by the processor, performs operations to:
communicate a public device ID of the device to a remote provisioning service via a first communication channel of a first network accessible by a routing device co-located with the device, the public device ID being cryptographically associated with a private key securely stored in the device, a user being identified as owner of the device based on the public device ID and an ownership record storing device configuration parameters specific to the user and the device;
receive, via the first communication channel, a configuration payload encrypted using the public device ID and containing the device configuration parameters;
decrypt the configuration payload using the private key;
configure the device according to the device configuration parameters, wherein configuring the device enables the device to communicate via a second communication channel of a second network accessible by the routing device, the first communication channel and the second communication channel being provided by the routing device, wherein the first communication channel:
is constrained to be connected to the remote provisioning service;
is constrained, compared to the second communication channel, in at least one of bandwidth or data transmission speed when connected to the remote provisioning service via the routing device; and
is accessible by devices that are preconfigured with information for accessing the first communication channel; and
communicate, using the second communication channel via the routing device, an information request to the provisioning service.