| CPC H04L 9/0825 (2013.01) [H04L 9/0869 (2013.01); H04L 9/3247 (2013.01); H04L 9/3263 (2013.01); H04L 9/3271 (2013.01)] | 20 Claims |
|
1. A device comprising:
a controller;
a memory in communication with the controller, the memory storing a device identifier, a registration service, and a limited access service; and
a secure element in communication with the controller, the secure element storing a device authentication key and a registry certificate;
wherein the controller includes circuitry configured to:
notify a user equipment of a registration service,
receive a registration request from the user equipment, the registration request for permission to access the limited access service, the registration request having a user identifier,
generate a challenge for a registry server based on the device authentication key,
transmit an authorization request to the user equipment, the authorization request including a request for authorization from the registry server, the device identifier, the user identifier, and the challenge,
receive an authorization response from the registry server via the user equipment, the authorization response including an authorization confirmation and a registry server signature,
verify the registry server signature using the registry certificate, and
notify the user equipment of a limited access service in response to receiving the authorization confirmation and successfully verifying the registry server signature.
|