Method and system for revocation of certificates used to certify public key users
First Claim
1. A method for revoking certificates, the method comprising the steps of:
- a) selecting a class of certificates for review, each of said certificates including identifying information and a phone number for its owner;
b) choosing a next certificate from said class for review;
c) accessing a reverse telephone book database to determine if said next certificate'"'"'s identifying information is still correct; and
if not d) adding said next certificate to a list of revoked certificates; and
e) if more certificates in said group remain to be reviewed, returning to step b.
1 Assignment
0 Petitions
Accused Products
Abstract
A method and system for creating, reviewing and revoking, if necessary, a certificate for a client of a service provider of a communications network, wherein the client has a client private key and a client public key. The method includes the steps of establishing a communications link with the service provider through a dedicated communication channel; requesting a client certificate from the service provider; obtaining a caller-ID, including a telephone number from an operator of the dedicated communication channel; and creating the requested client certificate including the caller-ID. Preferably, the method also includes the step of verifying that the caller-ID obtained from the operator of the dedicated communication channel is the same as client identifying information provided by the client when requesting the client certificate. The certificate can be stored at a caller ID server or a client'"'"'s storage. The method includes the steps of periodically reviewing issued certificates against a reverse telephone book to determine if the included telephone number is still associated with the client and revoking the certificate if it is not.
-
Citations
23 Claims
-
1. A method for revoking certificates, the method comprising the steps of:
-
a) selecting a class of certificates for review, each of said certificates including identifying information and a phone number for its owner;
b) choosing a next certificate from said class for review;
c) accessing a reverse telephone book database to determine if said next certificate'"'"'s identifying information is still correct; and
if notd) adding said next certificate to a list of revoked certificates; and
e) if more certificates in said group remain to be reviewed, returning to step b. - View Dependent Claims (2, 3, 4, 5, 6, 7)
-
-
8. A method for creating and revoking certificates, said method comprising the steps of:
-
a) receiving a request for a certificate on a dedicated communications channel;
b) requesting caller identifying information for said request from an operator of said dedicated channel;
c) creating said requested certificate using said caller identifying information, said certificate including at least an owner'"'"'s phone number determined from said identifying information; and
thereafterd) selecting a group of certificates previously created in steps a through c for review;
e) choosing a next certificate from said group for review;
f) accessing a reverse telephone book database to determine if said next certificate'"'"'s identifying information and phone number are still correct; and
if notg) adding said next certificate to a list of revoked certificates; and
k) if more certificates in said group remain to be reviewed, returning to step e. - View Dependent Claims (9, 10, 11, 12, 13, 14, 16, 17, 18, 19, 20, 21, 22)
-
-
15. A programmable server for reviewing and revoking certificates, said server being programmed to:
-
b1) select a class of certificates for review, each of said certificates including identifying information and a phone number for its owner;
b2) access a certificate database to choose a next certificate from said class for review;
b3) access a reverse telephone database to determine if said next certificate'"'"'s identifying information is still correct; and
if notb4) add said next certificate to a list of revoked certificates; and
d5) if more certificates in said group remain to be reviewed, return to step b.
-
-
23. A method for creating and revoking certificates, said method comprising the steps of:
-
a) receiving a request for a certificate on a dedicated communications channel;
b) requesting caller identifying information for said request from an operator of said dedicated channel;
c) creating said requested certificate using said caller identifying information, said certificate including at least an owner'"'"'s phone number determined from said identifying information;
d) determining if a corresponding certificate exists; and
if soe) adding said corresponding certificate to a list of revoked certificates.
-
Specification