Remote management of client installed digital certificates
First Claim
Patent Images
1. A method for automatically managing placement of digital certificates to client devices from a certificate management system, the certificate management system including network facilities for communication over an electronic communication network, the method comprising the steps of:
- receiving requests for connections from clients, attempting to retrieve a digital certificate from the client device by way of the network facilities and a client executable component, if in said attempting a digital certificate is retrieved, checking for expiration of the retrieved digital certificate, if in said attempting a digital certificate is retrieved, querying a revocation server by way of said network facilities for revocation of the retrieved digital certificate, if the retrieved digital certificate is expired or revoked, retrieving a newly issued certificate from a network certificate server, if in said attempting a digital certificate is not retrieved, accessing a certificate store to retrieve an authentication certificate, following said accessing a network certificate server to retrieve an authentication certificate, placing the retrieved authentication certificate in the certificate store of said client device, and authenticating the client device for data transfer.
5 Assignments
0 Petitions
Accused Products
Abstract
Disclosed herein are several digital certificate discovery and management systems. Detailed information on various example embodiments of the inventions are provided in the Detailed Description below, and the inventions are defined by the appended claims.
174 Citations
23 Claims
-
1. A method for automatically managing placement of digital certificates to client devices from a certificate management system, the certificate management system including network facilities for communication over an electronic communication network, the method comprising the steps of:
-
receiving requests for connections from clients, attempting to retrieve a digital certificate from the client device by way of the network facilities and a client executable component, if in said attempting a digital certificate is retrieved, checking for expiration of the retrieved digital certificate, if in said attempting a digital certificate is retrieved, querying a revocation server by way of said network facilities for revocation of the retrieved digital certificate, if the retrieved digital certificate is expired or revoked, retrieving a newly issued certificate from a network certificate server, if in said attempting a digital certificate is not retrieved, accessing a certificate store to retrieve an authentication certificate, following said accessing a network certificate server to retrieve an authentication certificate, placing the retrieved authentication certificate in the certificate store of said client device, and authenticating the client device for data transfer. - View Dependent Claims (2, 3, 4, 5, 6, 7)
-
-
8. A method for automatically managing placement of digital certificates to client devices from a certificate management system, the certificate management system including network facilities for communication over an electronic communication network, the method comprising the steps of:
-
receiving requests for connections from clients, attempting to retrieve a digital certificate from the client device by way of the network facilities and said client executable component, if in said attempting a digital certificate is retrieved, checking for expiration of the retrieved digital certificate, if in said attempting a digital certificate is retrieved, querying a revocation server by way of said network facilities for revocation of the retrieved digital certificate, if the retrieved digital certificate is expired or revoked, retrieving a newly issued certificate from a network certificate server, if in said attempting a digital certificate is not retrieved, accessing a certificate store to retrieve an authentication certificate, following said accessing a network certificate server to retrieve an authentication certificate, placing the retrieved authentication certificate in the certificate store of said client device, and authenticating the client device for data transfer. - View Dependent Claims (9, 10, 11, 12, 13, 14, 15)
-
-
16. A method for automatically managing placement of digital certificates to client devices from a certificate management system, the certificate management system including network facilities for communication over an electronic communication network, the method comprising the steps of:
-
receiving requests for connections from clients, attempting to retrieve a digital certificate from the client device by way of the network facilities and said client executable component, if in said attempting a digital certificate is retrieved, checking for expiration of the retrieved digital certificate, if in said attempting a digital certificate is retrieved, querying a revocation server by way of said network facilities for revocation of the retrieved digital certificate, if the retrieved digital certificate is expired or revoked, retrieving a newly issued certificate from a network certificate server, if in said attempting a digital certificate is not retrieved, accessing a certificate store to retrieve an authentication certificate, following said accessing a network certificate server to retrieve an authentication certificate, placing the retrieved authentication certificate in the certificate store of said client device, authenticating the client device for data transfer, said authenticating identifying the client device to the certificate management system, said authenticating further identifying a user to the certificate management system;
providing access to services conditioned on the enablement of the services for the identified client device and user. - View Dependent Claims (17, 18, 19, 20, 21, 22, 23)
-
Specification