Method and system for using with confidence certificates issued from certificate authorities
First Claim
1. A method for filtering certificates issued from one or more certificate authorities (CA), the method comprising the steps of:
- receiving a certificate and storing the certificate;
preventing use of the certificate until validation;
identifying a certificate authority that has issued the certificate;
identifying a certificate authority filter by referring to a table, that comprises identification of at least one certifcate authority filter;
sending a request to the identified certificate authority filter;
receiving from the certificate authority filter a response to the request, the response comprising information related to the certificate authority that has issued the certificate and a public key of the certificate authority that has issued the certificate;
determining according to the response whether the certificate authority is a trusted certificate authority; and
validating the certificate if the certificate authority that has issued the certificate is a trusted certificate authority.
1 Assignment
0 Petitions
Accused Products
Abstract
A system and method in a workstation connected to a network for verifying the trustworthiness of a certificate issued by a certificate authority. A certificate from a certificate authority is received and held in storage pending verification. The purported identity of the certificate authority is determined, and sent to a certificate authority filter. The filter returns information regarding the purported certificate authority and the public key of the certificate authority. The trustworthiness of the certificate authority is determined by reference to the information returned by the filter and by verifying the signature of the certificate using the public key.
70 Citations
9 Claims
-
1. A method for filtering certificates issued from one or more certificate authorities (CA), the method comprising the steps of:
-
receiving a certificate and storing the certificate;
preventing use of the certificate until validation;
identifying a certificate authority that has issued the certificate;
identifying a certificate authority filter by referring to a table, that comprises identification of at least one certifcate authority filter;
sending a request to the identified certificate authority filter;
receiving from the certificate authority filter a response to the request, the response comprising information related to the certificate authority that has issued the certificate and a public key of the certificate authority that has issued the certificate;
determining according to the response whether the certificate authority is a trusted certificate authority; and
validating the certificate if the certificate authority that has issued the certificate is a trusted certificate authority. - View Dependent Claims (2, 3, 4, 5, 6)
-
-
7. A method, in a certificate authority filter connected to a network, for filtering certificates issued from one or more certificate authorities, the method comprising the steps of:
-
receiving a request comprising an identification of a certificate authority;
identifying the certificate authority in said request;
finding in a table the certificate authority, the table comprising;
identification of at least one certificate authority and a level of trust and a public key associated with each of said at least one certificate authority;
determining a level of trust of the identified certificate authority referring to said table;
retrieving a public key associated with the identified certificate authority referring to said table; and
sending a response to an originator of the request, said response comprising the level of trust of the identified certificate authority and the public key associated with the identified certificate authority. - View Dependent Claims (8, 9)
-
Specification