Authentication method and information processor
First Claim
Patent Images
1. A method for managing communication in an information processor, the method comprising:
- storing, in a memory, revoked certificate information indicating a revoked digital certificate;
receiving a digital certificate of an other end of the communication therefrom;
determining, based on the revoked certificate information, whether the digital certificate thus received is revoked;
receiving information on a digital certificate that is newly revoked;
updating the revoked certificate information stored in the memory based on the received information on the digital certificate that is newly revoked; and
sending information on the digital certificate that is newly revoked to other information processor.
1 Assignment
0 Petitions
Accused Products
Abstract
In a network made up of a plurality of terminals, each of the terminals in the network includes a digital certificate revocation list. When the digital certificate revocation list of its own is updated, the terminal sends information including the updated details to other terminal so that a digital certificate revocation list included in the other terminal in the network is updated based on the updated contents.
-
Citations
15 Claims
-
1. A method for managing communication in an information processor, the method comprising:
-
storing, in a memory, revoked certificate information indicating a revoked digital certificate;
receiving a digital certificate of an other end of the communication therefrom;
determining, based on the revoked certificate information, whether the digital certificate thus received is revoked;
receiving information on a digital certificate that is newly revoked;
updating the revoked certificate information stored in the memory based on the received information on the digital certificate that is newly revoked; and
sending information on the digital certificate that is newly revoked to other information processor. - View Dependent Claims (2, 3)
-
-
4. A method for managing communication in an information processor, the method comprising:
-
storing, in a memory, revoked certificate information indicating a revoked digital certificate;
receiving a digital certificate and attributes data of an other end of the communication therefrom;
comparing the digital certificate with the attributes data of the other end of the communication to verify authenticity of the other end of the communication, and when the authenticity of the other end of the communication cannot be verified, determining that the digital certificate of the other end of the communication is revoked, updating the revoked certificate information, and sending, to other information processor, information indicating that the digital certificate of the other end of the communication is revoked. - View Dependent Claims (5)
-
-
6. A method for managing a digital certificate in a network made up of a plurality of nodes, the method comprising:
-
in each of the nodes, storing revoked certificate information indicating a revoked digital certificate;
when each of the nodes finds an other end of communication that cannot be authenticated, adding a digital certificate of the other end of the communication to the revoked certificate information of the node and notifying other node of presence of a digital certificate that is newly revoked; and
in the other node that has received the notification, updating the revoked certificate information stored in the node. - View Dependent Claims (7)
-
-
8. An information processor comprising:
-
a receiving portion that receives a digital certificate from an other end of communication;
an authentication portion that verifies authenticity of the other end of the communication based on the digital certificate received by the receiving portion;
a memory that stores revoked certificate information indicating a revoked digital certificate;
an updating portion that updates the revoked certificate information stored in the memory when a digital certificate that is newly revoked is found; and
a transmission portion that sends new revoked certificate information to other information processor when the digital certificate that is newly revoked is found, the new revoked certificate information indicating that the digital certificate is revoked. - View Dependent Claims (9, 10, 11)
-
-
12. An information processor comprising:
-
a memory that stores revoked certificate information indicating a revoked digital certificate;
a first updating portion that updates the revoked certificate information stored in the memory when a digital certificate that is newly revoked is found;
a transmission portion that sends new revoked certificate information to other information processor when the digital certificate that is newly revoked is found, the new revoked certificate information indicating that the digital certificate is revoked; and
a second updating portion that updates the revoked certificate information stored in the memory based on new revoked certificate information sent by other information processor. - View Dependent Claims (13, 14, 15)
-
Specification