System and method for verifying digital signatures on certificates
First Claim
1. A method of verifying a digital signature on a certificate on a computing device, the method comprising the steps of:
- a) performing a first signature verification operation on the digital signature using a first public key associated with an issuer of the certificate;
b) determining if the digital signature is successfully verified in the first signature verification operation;
c) storing the first public key in a memory store;
d) receiving a request to perform a second signature verification operation on the digital signature using a second public key associated with an issuer of the certificate;
e) comparing the second public key with the first public key stored in the memory store to determine if the first and second public keys match; and
f) indicating successful verification of the digital signature in response to the request if the digital signature was successfully verified in the first signature verification operation and if a match is determined at the comparing step, whereby the second signature verification operation need not be performed.
7 Assignments
0 Petitions
Accused Products
Abstract
A system and method for verifying a digital signature on a certificate, which may be used in the processing of encoded messages. In one embodiment, when a digital signature is successfully verified in a signature verification operation, the public key used to verify that digital signature is cached. When a subsequent attempt to verify the digital signature is made, the public key to be used to verify the digital signature is compared to the cached key. If the keys match, the digital signature can be successfully verified without requiring that a signature verification operation in which some data is decoded using the public key be performed.
-
Citations
7 Claims
-
1. A method of verifying a digital signature on a certificate on a computing device, the method comprising the steps of:
-
a) performing a first signature verification operation on the digital signature using a first public key associated with an issuer of the certificate;
b) determining if the digital signature is successfully verified in the first signature verification operation;
c) storing the first public key in a memory store;
d) receiving a request to perform a second signature verification operation on the digital signature using a second public key associated with an issuer of the certificate;
e) comparing the second public key with the first public key stored in the memory store to determine if the first and second public keys match; and
f) indicating successful verification of the digital signature in response to the request if the digital signature was successfully verified in the first signature verification operation and if a match is determined at the comparing step, whereby the second signature verification operation need not be performed. - View Dependent Claims (2, 3, 4, 5, 6, 7)
-
Specification
-
- Resources
-
Current AssigneeMalikie Innovations Limited (Key Patent Innovations Limited)
-
Original AssigneeResearch In Motion Limited (Blackberry Limited)
-
InventorsBrown, Michael S., Brown, Michael K.
-
Granted Patent
-
Time in Patent OfficeDays
-
Field of Search
-
US Class Current705/67
-
CPC Class CodesG06Q 20/0855 involving a third partyG06Q 20/367 involving electronic purses...G06Q 20/3674 involving authenticationG06Q 20/3821 Electronic credentialsH04L 2209/80 WirelessH04L 63/0823 using certificates cryptogr...H04L 9/0894 Escrow, recovery or storing...H04L 9/3247 involving digital signaturesH04L 9/3263 involving certificates, e.g...H04L 9/50 using hash chains, e.g. blo...
