Program product for maintaining certificate on client network devices1
First Claim
1. A set of computer readable media containing computer instructions for operating a certificate management system for automatically managing placement of digital certificates to client devices, the certificate management system including network facilities for communication over an electronic communication network, the set of computer readable media comprising at least one medium upon which is stored the computer instructions executable by a computing system to achieve the functions of:
- receiving requests for connections from clients, attempting to retrieve a digital certificate from the client device by way of the network facilities and a client executable component, if in said attempting a digital certificate is retrieved, checking for expiration of the retrieved digital certificate, if in said attempting a digital certificate is retrieved, querying a revocation server by way of the network facilities for revocation of the retrieved digital certificate, if the retrieved digital certificate is expired or revoked, retrieving a newly issued certificate from a network certificate server, if in said attempting a digital certificate is not retrieved, accessing a certificate store to retrieve an authentication certificate, following said accessing a network certificate server to retrieve an authentication certificate, placing the retreived authentication certificate in a certificate store of said client device, and authenticating the client device for data transfer.
5 Assignments
0 Petitions
Accused Products
Abstract
Disclosed herein are several digital certificate discovery and management systems. Detailed information on various example embodiments of the inventions are provided in the Detailed Description below, and the inventions are defined by the appended claims.
-
Citations
23 Claims
-
1. A set of computer readable media containing computer instructions for operating a certificate management system for automatically managing placement of digital certificates to client devices, the certificate management system including network facilities for communication over an electronic communication network, the set of computer readable media comprising at least one medium upon which is stored the computer instructions executable by a computing system to achieve the functions of:
-
receiving requests for connections from clients, attempting to retrieve a digital certificate from the client device by way of the network facilities and a client executable component, if in said attempting a digital certificate is retrieved, checking for expiration of the retrieved digital certificate, if in said attempting a digital certificate is retrieved, querying a revocation server by way of the network facilities for revocation of the retrieved digital certificate, if the retrieved digital certificate is expired or revoked, retrieving a newly issued certificate from a network certificate server, if in said attempting a digital certificate is not retrieved, accessing a certificate store to retrieve an authentication certificate, following said accessing a network certificate server to retrieve an authentication certificate, placing the retreived authentication certificate in a certificate store of said client device, and authenticating the client device for data transfer. - View Dependent Claims (2, 3, 4, 5, 6, 7)
-
-
8. A set of computer readable media containing computer instructions for operating a certificate management system for automatically managing placement of digital certificates to client devices, the certificate management system including network facilities for communication over an electronic communication network, the set of computer readable media comprising at least one medium upon which is stored the computer instructions executable by a computing system to achieve the functions of:
-
receiving requests for connections from clients, attempting to retrieve a digital certificate from the client device by way of the network facilities and a client executable component, if in said attempting a digital certificate is retrieved, checking for expiration of the retrieved digital certificate, if in said attempting a digital certificate is retrieved, querying a revocation server by way of the network facilities for revocation of the retrieved digital certificate, if the retrieved digital certificate is expired or revoked, retrieving a newly issued certificate from a network certificate server, if in said attempting a digital certificate is not retrieved, accessing a certificate store to retrieve an authentication certificate, following said accessing a network certificate server to retrieve an authentication certificate, placing the retreived authentication certificate in a certificate store of said client device, and authenticating the client device for data transfer. - View Dependent Claims (9, 10, 11, 12, 13, 14, 15)
-
-
16. A set of computer readable media containing computer instructions for operating a certificate management system for automatically managing placement of digital certificates to client devices, the certificate management system including network facilities for communication over an electronic communication network, the set of computer readable media comprising at least one medium upon which is stored the computer instructions executable by a computing system to achieve the functions of:
-
receiving requests for connections from clients, attempting to retrieve a digital certificate from the client device by way of the network facilities and a client executable component, if in said attempting a digital certificate is retrieved, checking for expiration of the retrieved digital certificate, if in said attempting a digital certificate is retrieved, querying a revocation server by way of the network facilities for revocation of the retrieved digital certificate, if the retrieved digital certificate is expired or revoked, retrieving a newly issued certificate from a network certificate server, if in said attempting a digital certificate is not retrieved, accessing a certificate store to retrieve an authentication certificate, following said accessing a network certificate server to retrieve an authentication certificate, placing the retreived authentication certificate in a certificate store of said client device, authenticating the client device for data transfer, said authenticating identifying the client device to the certificate management system, said authenticating further identifying a user to the certificate management system;
providing access to services conditioned on the enablement of the services for the identified client device and user. - View Dependent Claims (17, 18, 19, 20, 21, 22, 23)
-
Specification