System and method for verifying digital signatures on certificates
First Claim
1. A method of verifying a digital signature on a certificate on a computing device, the method comprising the steps of:
- a) performing a first signature verification operation on the digital signature using a first public key associated with an issuer of the certificate;
b) determining if the digital signature is successfully verified in the first signature verification operation;
c) storing the first public key in a memory store;
d) receiving a request to perform a second signature verification operation on the digital signature using a second public key associated with an issuer of the certificate;
e) comparing the second public key with the first public key stored in the memory store to determine if the first and second public keys match; and
f) indicating successful verification of the digital signature in response to the request if the digital signature was successfully verified in the first signature verification operation and if a match is determined at the comparing step, whereby the second signature verification operation need not be performed.
7 Assignments
0 Petitions
Accused Products
Abstract
A system and method for verifying a digital signature on a certificate, which may be used in the processing of encoded messages. In one embodiment, when a digital signature is successfully verified in a signature verification operation, the public key used to verify that digital signature is cached. When a subsequent attempt to verify the digital signature is made, the public key to be used to verify the digital signature is compared to the cached key. If the keys match, the digital signature can be successfully verified without requiring that a signature verification operation in which some data is decoded using the public key be performed.
-
Citations
7 Claims
-
1. A method of verifying a digital signature on a certificate on a computing device, the method comprising the steps of:
-
a) performing a first signature verification operation on the digital signature using a first public key associated with an issuer of the certificate;
b) determining if the digital signature is successfully verified in the first signature verification operation;
c) storing the first public key in a memory store;
d) receiving a request to perform a second signature verification operation on the digital signature using a second public key associated with an issuer of the certificate;
e) comparing the second public key with the first public key stored in the memory store to determine if the first and second public keys match; and
f) indicating successful verification of the digital signature in response to the request if the digital signature was successfully verified in the first signature verification operation and if a match is determined at the comparing step, whereby the second signature verification operation need not be performed. - View Dependent Claims (2, 3, 4, 5, 6, 7)
-
Specification