Customizable public key infrastructure and development tool for same
First Claim
1. A public key infrastructure comprising a client side to request and utilize certificates in communication across a network and a server side to administer issuance and maintenance of said certificates, said server side having a portal to receive requests for a certificate from a client and having a first policy engine to process such requests in accordance with a set of predefined protocols and a certification authority to generate certificates upon receipt of a request from said portal and having a second policy engine to implement a set of predefined policies in the generation of a certificate, each of said policy engines including at least one policy configured as a software component to perform the discreet functions associated with said policy and generate notification in response to a change in state upon completion of said policy.
4 Assignments
0 Petitions
Accused Products
Abstract
A public key infrastructure comprises a client side to request and utilize certificates in communication across a network and a server side to administer issuance and maintenance of said certificates. The server side has a portal to receive requests for a certificate from a client. A first policy engine to processes such requests in accordance with a set of predefined protocols. A certification authority is also provided to generate certificates upon receipt of a request from the portal. The CA has a second policy engine to implement a set of predefined policies in the generation of a certificate. Each of the policy engines includes at least one policy configured as a software component e.g. a Java bean, to perform the discreet functions associated with the policy and generate notification in response to a change in state upon completion of the policy.
A public key infrastructure according to claim 1 wherein said one policy is responsive to notification of a change in state from another policy in said policy engine.
90 Citations
2 Claims
- 1. A public key infrastructure comprising a client side to request and utilize certificates in communication across a network and a server side to administer issuance and maintenance of said certificates, said server side having a portal to receive requests for a certificate from a client and having a first policy engine to process such requests in accordance with a set of predefined protocols and a certification authority to generate certificates upon receipt of a request from said portal and having a second policy engine to implement a set of predefined policies in the generation of a certificate, each of said policy engines including at least one policy configured as a software component to perform the discreet functions associated with said policy and generate notification in response to a change in state upon completion of said policy.
Specification