×

Secure certificate and system and method for issuing and using same

  • US 20020165912A1
  • Filed: 07/25/2001
  • Published: 11/07/2002
  • Est. Priority Date: 02/25/2001
  • Status: Abandoned Application
First Claim
Patent Images

1. A computer program product for use in conjunction with a computer system having a server and a client, the computer program product comprising a computer readable storage medium and a computer program mechanism embedded therein, the computer program mechanism, comprising:

  • a program module that directs the computer system and/or components thereof including at least one or the client or server, to function in a specified manner to provide message communications, the message communications occurring in a computer system hardware architecture neutral and operating system neutral and network transport protocol neutral manner for secure certificate issuing by an Issuer to a Client requesting the certificate, the program module including instructions for;

    A. extracting, by a certificate requesting client, a network address for the Issuer from a trusted source or storage means;

    B. extracting, by the client, a Resource Tag related to its own Subject Name from a message that was received from a Server;

    C. extracting, by the client, a public and private key and certificate chain from a trusted source;

    D. using the extracted information to create a secure session with the Issuer that authenticates the issuer using the same protocol;

    E. sending, by the client, as the client'"'"'s first Data message after any session setup messages, a data structure that has a common header with fields for Type, Version and Content-Length, and contents that include the Resource Tag, the Client'"'"'s Subject Name, and optionally one or more public keys that the Client has generated;

    F. verifying, by the certificate issuer, that a valid Server issued the Resource Tag and that the Resource Tag is valid for the given received Subject Name;

    G. creating, by the issuer, a Compact Certificate with one or more public keys and with the Client'"'"'s Subject Name;

    H. digitally signing, by the issuer, the certificate with the Issuer'"'"'s private key; and

    I. sending, by the certificate issuer, a message back to the Client over the secure channel, where the message includes the Compact Certificate and if the Issuer generated the public key(s), the message includes the matching private key(s).

View all claims
  • 1 Assignment
Timeline View
Assignment View
    ×
    ×