US 12,362,914 B1
Network authentication with cryptographic corpocessors
Wael Ibrahim, San Diego, CA (US); Manik Biswas, Burgess Hill (GB); and Manish K. Deliwala, Chandler, AZ (US)
Assigned to American Express Travel Related Services Company, Inc., New York, NY (US)
Filed by American Express Travel Related Services Company, Inc., New York, NY (US)
Filed on Oct. 11, 2019, as Appl. No. 16/600,213.
Int. Cl. H04L 9/08 (2006.01); H04L 9/32 (2006.01)
CPC H04L 9/0825 (2013.01) [H04L 9/0861 (2013.01); H04L 9/0894 (2013.01); H04L 9/3213 (2013.01); H04L 9/3234 (2013.01)] 20 Claims
OG exemplary drawing
 
1. A system comprising:
a computing device in data communication over a network with a browser on a client device, the computing device comprising a processor and a memory;
machine-readable instructions stored in the memory that, when executed by the processor, cause the computing device to at least:
verify that a cryptographic coprocessor is installed on the client device by evaluating a response from the browser on the client device;
send a request to the browser on the client device to provision an asymmetric encryption key-pair using the cryptographic coprocessor, wherein the browser on the client device relays the request to the cryptographic coprocessor, the request comprises a key-authorization credential for the asymmetric encryption key-pair, and the asymmetric encryption key-pair comprises a public key and a private key;
receive, from the browser on the client device, the public key of the asymmetric encryption key-pair and an identity public key for the cryptographic coprocessor; and
store the public key, key-authorization credential, and the identity public key in association with each other.