Automated provisioning of a network appliance
First Claim
1. A method of provisioning security services for a domain or set of domains, the method comprising:
- sending an electronic message to the domain or set of domains, the electronic message comprising a secret message, the secret message encrypted using a public key that a certificate server associates with the domain or set of domains;
receiving a response from the domain or set of domains, the response comprising data derived by decrypting the secret message using a private key of the domain or set of domains; and
determining whether the received data corresponds to the secret message sent in the electronic message, wherein;
in response to determining that the received data corresponds to the secret message sent in the electronic message, the method further comprises automatically initiating the provisioning of the security services for the domain or set of domains, wherein the provisioning of the security services comprises activating and/or issuing a certificate for the domain or set of domains to provide encryption services; and
in response to determining that the received data does not correspond to the secret message sent in the electronic message, the method further comprises notifying a domain or set of domains administrator and not initiating the provisioning of the security services.
3 Assignments
0 Petitions
Accused Products
Abstract
Certain embodiments disclose a method of provisioning security services for a domain or set of domains. The method comprises sending an electronic message to the domain or set of domains. The electronic message comprising a secret message. The secret message is encrypted using a public key that a certificate server associates with the domain or set of domains. The method further comprises receiving a response from the domain or set of domains. The response comprises data derived by decrypting the secret message using a private key of the domain or set of domains. In response to a determination that the received data corresponds to the secret message sent in the electronic message, the method initiates the provisioning of the security services for the domain or set of domains.
47 Citations
18 Claims
-
1. A method of provisioning security services for a domain or set of domains, the method comprising:
-
sending an electronic message to the domain or set of domains, the electronic message comprising a secret message, the secret message encrypted using a public key that a certificate server associates with the domain or set of domains; receiving a response from the domain or set of domains, the response comprising data derived by decrypting the secret message using a private key of the domain or set of domains; and determining whether the received data corresponds to the secret message sent in the electronic message, wherein; in response to determining that the received data corresponds to the secret message sent in the electronic message, the method further comprises automatically initiating the provisioning of the security services for the domain or set of domains, wherein the provisioning of the security services comprises activating and/or issuing a certificate for the domain or set of domains to provide encryption services; and in response to determining that the received data does not correspond to the secret message sent in the electronic message, the method further comprises notifying a domain or set of domains administrator and not initiating the provisioning of the security services. - View Dependent Claims (2, 3, 4, 5)
-
-
6. A system comprising one or more processors and one or more non-transitory computer-readable storage media having stored therein instructions that, when executed by the one or more processors, cause the system to:
-
send an electronic message from a certificate server, the electronic message sent to an appliance associated with a domain or set of domains, the electronic message comprising a secret message, the secret message encrypted using a public key that a certificate server associates with the domain or set of domains; receive a response at the certificate server, the response received from the appliance associated with the domain or set of domains, the response comprising data derived by decrypting the secret message using a private key of the domain or set of domains; and determine, by the certificate server, whether the received data corresponds to the secret message sent in the electronic message, wherein; in response to a determination that the received data corresponds to the secret message sent in the electronic message, the certificate server automatically initiates the provisioning of security services for the domain or set of domain, wherein the provisioning of the security services comprises activating and/or issuing a certificate for the domain or set of domains to provide encryption services; and in response to a determination that the received data does not correspond to the secret message sent in the electronic message, the certificate server notifies a domain or set of domains administrator and does not initiate the provisioning of the security services. - View Dependent Claims (7, 8, 9, 10, 11)
-
-
12. A method of provisioning security services for a domain or set of domains, the method comprising:
-
receiving an electronic message at the domain or set of domains, the electronic message comprising a secret message, the secret message encrypted using a public key that a certificate server associates with the domain or set of domains; determining that the electronic message includes a predetermined set of symbols, the predetermined set of symbols indicating the presence of the secret message; decrypting the secret message using a private key of the domain or set of domains; sending a response from the domain or set of domains, the response comprising data derived by decrypting the secret message using the private key of the domain or set of domains; determining whether the data derived by decrypting the secret message corresponds to the secret message received in the electronic message based on whether provisioning has been received, wherein; in response to receiving the provisioning, the method further comprises provisioning the security services for the domain or set of domains based on the received provisioning, wherein the provisioning comprises providing encryption services based on a certificate activated and/or issued for the domain or set of domains; and in response to not receiving the provisioning, the method further comprises notifying a domain or set of domains administrator and not initiating the provisioning of the security services. - View Dependent Claims (13, 14)
-
-
15. A system comprising one or more processors, the one or more processors associated with a domain or set of domains, and one or more non-transitory computer-readable storage media having stored therein instructions that, when executed by the one or more processors, cause the system to:
-
receive an electronic message at an appliance associated with the domain or set of domains, the electronic message received from a certificate server, the electronic message comprising a secret message, the secret message encrypted using a public key that the certificate server associates with the domain or set of domains; determine, by the appliance, that the electronic message includes a predetermined set of symbols, the predetermined set of symbols indicating the presence of the secret message; decrypt, by the appliance, the secret message using a private key of the domain or set of domains; send a response from the appliance associated with the domain or set of domains, the response sent to the certificate server, the response comprising data derived by decrypting the secret message using a private key of the domain or set of domains; determine, by the appliance, whether the data derived by decrypting the secret message corresponds to the secret message received in the electronic message, the determination based on whether the appliance has received provisioning from the certificate server, wherein; in response to receiving the provisioning from the certificate server, the appliance provisions the security services for the domain or set of domains based on the received provisioning, wherein the provisioning comprises providing encryption services based on a certificate activated and/or issued for the domain or set of domains; and in response to not receiving the provisioning from the certificate server, the appliance notifies a domain or set of domains administrator and does not initiate the provisioning of the security services. - View Dependent Claims (16, 17, 18)
-
Specification