System and method for obtaining a digital certificate for an endpoint
First Claim
1. A method of establishing a digital certificate on an endpoint, the method comprising:
- establishing a connection between a proxy function module and the endpoint, the proxy function module remotely located from the endpoint, and the proxy function module operable to communicate with the endpoint and a certificate authority;
generating authentication information at the endpoint;
transmitting at least a portion of the authentication information to the proxy function module, the proxy function module obtaining a digital certificate from a certificate authority based on the at least the portion of the authentication information; and
receiving the digital certificate at the endpoint from the proxy function module.
1 Assignment
0 Petitions
Accused Products
Abstract
According to one embodiment of the present invention, a method of establishing a digital certificate on an endpoint includes establishing a connection between a proxy function module and the endpoint. The proxy function module is remotely located from the endpoint and operable to communicate with the endpoint and a certificate authority. Authentication information is generated at the endpoint. A portion of the authentication information is transmitted to the proxy function module. The proxy function module obtains a digital certificate based on the portion of the authentication information. The digital certificate is received at the endpoint from the proxy function module.
110 Citations
27 Claims
-
1. A method of establishing a digital certificate on an endpoint, the method comprising:
-
establishing a connection between a proxy function module and the endpoint, the proxy function module remotely located from the endpoint, and the proxy function module operable to communicate with the endpoint and a certificate authority;
generating authentication information at the endpoint;
transmitting at least a portion of the authentication information to the proxy function module, the proxy function module obtaining a digital certificate from a certificate authority based on the at least the portion of the authentication information; and
receiving the digital certificate at the endpoint from the proxy function module. - View Dependent Claims (2, 3, 4, 5)
-
-
6. A method of establishing a digital certificate on an endpoint with a proxy function module, comprising:
-
establishing a connection between the endpoint and the proxy function module, the proxy function module remotely located from the endpoint, and the proxy function module operable to communicate with the endpoint and a certificate authority;
receiving at least a portion of authentication information at the proxy function module, the at least the portion of authentication information generated at the endpoint;
packaging the at least the portion of authentication information in a certificate request;
transmitting the certificate request to a certificate authority, the certificate authority reviewing the certificate request and issuing a digital certificate;
receiving the digital certificate at the proxy function module; and
transmitting the digital certificate to the endpoint. - View Dependent Claims (7, 8)
-
-
9. A system for establishing a digital certificate on an endpoint, the system comprising:
-
an endpoint; and
a proxy function module in communication with the endpoint, operable to;
generate authentication information; and
transmit at least a portion of the authentication information to the proxy function module, and the proxy function module comprises logic encoded in media operable to;
receive the at least the portion of the authentication information;
package the at least the portion of the authentication information in a certificate request;
transmit the certificate request to a certificate authority, the certificate authority reviewing the certificate request and issuing a digital certificate;
receive the digital certificate; and
transmit the digital certificate to the endpoint. - View Dependent Claims (10, 11, 12, 13, 14, 15)
-
-
16. An endpoint comprising:
logic encoded in media such that when executed is operable to;
establish a connection between a proxy function module and the endpoint, wherein the proxy function module is remotely located from the endpoint, and the proxy function module is operable to communicate with the endpoint and a certificate authority;
generate authentication information at the endpoint;
transmit at least a portion of the authentication information to the proxy function module, the proxy function module obtaining a digital certificate from a certificate authority based on the at least the portion of the authentication information; and
receive the digital certificate at the endpoint from the proxy function module. - View Dependent Claims (17, 18, 19)
-
20. A proxy function module for establishing a digital certificate on an endpoint, the proxy function module comprising:
-
an interface operable to establish a connection between the endpoint and the proxy function module, the proxy function module remotely located from the endpoint, and the proxy function module operable to communicate with the endpoint and a certificate authority;
a processor operable to;
receive at least a portion of authentication information at the proxy function module, the at least the portion of authentication information generated at the endpoint;
package the at least the portion of authentication information in a certificate request;
transmit the certificate request to a certificate authority, the certificate authority reviewing the certificate request and issuing a digital certificate;
receive the digital certificate at the proxy function module; and
transmit the digital certificate to the endpoint. - View Dependent Claims (21, 22)
-
-
23. Logic embodied in media such that when executed is operable to:
-
establish a connection between the endpoint and the proxy function module, wherein the proxy function module is remotely located from the endpoint; and
the proxy function module is operable to communicate with the endpoint and a certificate authority;
receive at least a portion of authentication information at the proxy function module, the at least the portion of authentication information generated at the endpoint;
package the at least the portion of authentication information in a certificate request;
transmit the certificate request to a certificate authority, the certificate authority reviewing the request and issuing a digital certificate;
receive the digital certificate at the proxy function module; and
transmit the digital certificate to the endpoint. - View Dependent Claims (24, 25)
-
-
26. A proxy function for establishing a digital certificate on an endpoint, the proxy function comprising:
-
means for establishing a connection between the endpoint and the proxy function, wherein the proxy function is remotely located from the endpoint; and
the proxy function is operable to communicate with the endpoint and a certificate authority;
means for receiving at least a portion of authentication information at the proxy function, the at least the portion of authentication information generated at the endpoint;
means for packaging the at least the portion of authentication information in a certificate request;
means for transmitting the certificate request to a certificate authority, the certificate authority reviewing the certificate request and issuing a digital certificate;
means for receiving the digital certificate at the proxy function; and
means for transmitting the digital certificate to the endpoint.
-
-
27. A method of establishing a digital certificate on an endpoint, the method comprising:
-
establishing a connection with a proxy function module, wherein the proxy function module is remotely located from the endpoint, and the proxy function module is operable to communicate with the endpoint and a certificate authority;
generating a private key at the endpoint;
generating a public key at the endpoint, the public key complementary to the private key;
receiving a hash at the endpoint from the proxy function module;
encrypting the hash with the public key;
transmitting the encrypted hash and the public key to the proxy function module, the proxy function module obtaining a digital certificate from a certificate authority based on the encrypted hash and the public key; and
receiving the digital certificate at the endpoint from the proxy function module. receiving a hash at the endpoint from the proxy function module.
-
Specification