	US 12,081,979 B2
	One-time wireless authentication of an Internet-of-Things device
Krishnaram Muthusamy, Austin, TX (US); and Robert Chifamba, Austin, TX (US)
Assigned to VISA INTERNATIONAL SERVICE ASSOCIATION, San Francisco, CA (US)
Filed by Visa International Service Association, San Francisco, CA (US)
Filed on Nov. 5, 2020, as Appl. No. 17/090,385.
Prior Publication US 2022/0141658 A1, May 5, 2022
Int. Cl. H04W 12/06 (2021.01); H04L 9/40 (2022.01); H04W 12/084 (2021.01); H04W 12/71 (2021.01)

CPC H04W 12/068 (2021.01) [H04L 63/0884 (2013.01); H04L 63/10 (2013.01); H04W 12/084 (2021.01); H04W 12/71 (2021.01)]

12 Claims

1. A computer-implemented method for enabling wireless connectivity through a router of a wireless network for an Internet-of-Things (IoT) device, comprising:

displaying to a user, by a proxy application executing on a mobile device, an option for the user to begin a one-time network authentication for the IoT device that lacks a user interface and is not yet configured to access the router;

responsive to the user accepting the option, initiating, by the proxy application, a registration process and receiving a device identifier associated with the IoT device entered into the proxy application by the user of the mobile device, wherein the device identifier comprises at least one of a serial number, a partial serial number, or a key, and wherein functionality of the proxy application is separated into an application pair including a first proxy application and a second proxy application, wherein the first proxy application or the second proxy application associates the device identifier with an application identifier used to identify the first proxy application or the second proxy application;

transmitting, by the proxy application, the device identifier to the router as part of the registration process, resulting in the router storing the device identifier in a credential management system and enabling a proxy authentication setting for the router;

subsequent to the registration process, receiving by the proxy application, the device identifier from the router in response to the router receiving an authorization request from the IoT device for a first-time access to the wireless network, the authorization request comprising the device identifier with no network password, and the router forwarding the device identifier to the proxy application after determining that the router has proxy authentication enabled based on the device identifier and the proxy authentication setting;

prompting, by the proxy application, the user of the mobile device to enter the network password, and transmitting the network password in a message to the router, such that in response the router validates the network password and grants the IoT device access to the wireless network; and

wherein responsive to the IoT device becoming disconnected from the first-time access to the wireless network, the IoT device resends the device identifier to the router for a second-time access to the wireless network, and wherein in response, the router looks up the device identifier in the credential management system, and if found reestablishes access to the wireless network for the IoT device without a need for another network authentication through the mobile device or the proxy application.