| CPC H04L 63/0823 (2013.01) [H04L 9/3268 (2013.01); H04L 63/0876 (2013.01); H04L 63/105 (2013.01); H04L 63/126 (2013.01); H04N 7/18 (2013.01)] | 13 Claims |
|
1. A device authentication method comprising:
connecting to a device through a network;
receiving, from the device, a certificate of the device comprising device binding information about the device, the device binding information comprising first device information associated with the device binding information;
transmitting, to the device, a request message for requesting second device information about the device when a management device does not store the second device information in a storage of the management device;
receiving, from the device, the second device information in response to the request message;
determining, by the management device, whether device binding information included in the certificate is generated based on the second device information; and
determining, by the management device, whether the certificate is valid by comparing first hash data related to pre-stored certificate information with second hash data related to the certificate; and
establishing a protected communication session with the device in response to the certificate being determined to be valid,
wherein based on at least a portion of the second device information being included in the device binding information, the device binding information is generated based on the second device information,
wherein based on the first hash data matching the second hash data, the certificate is determined as valid and
wherein the first device information is generated based on at least a part of a medium access control (MAC) address and at least a portion of a controller, a storage and an image sensor included in the device.
|