AUTOMATED KEY MANAGEMENT SYSTEM AND METHOD
First Claim
Patent Images
1. A system for processing electronic messages, the system comprising:
- a base computer comprising a first memory for storing one or more certificates for use in at least one of decrypting secure electronic messages, encrypting secure electronic messages, or signing secure electronic messages;
a mobile communications device comprising a second memory for storing one or more certificates for use in at least one of decrypting secure electronic messages, encrypting secure electronic messages, or signing secure electronic messages; and
program logic operable to automatically identify one or more certificates corresponding to one or more new keys in said first memory for downloading to said second memory;
wherein the certificates are identified based on detection of new keys and certificates corresponding to the new keys;
wherein said program logic is configured to mark certificates corresponding to the new keys that match existing certificates stored in the first memory;
wherein said new keys are determined by comparing a list of previously available keys with a current list of keys in said first memory; and
wherein said program logic is configured to automatically download said identified certificates to said mobile communications device.
4 Assignments
0 Petitions
Accused Products
Abstract
A system and method for automatic key and certificate management is disclosed. In particular, a key store in a base computer contains both new and previously viewed cryptographic keys. In one embodiment, for each new key, if a corresponding certificate matches an existing certificate, the new certificate may be automatically downloaded to a mobile communications device without prompting a user.
-
Citations
20 Claims
-
1. A system for processing electronic messages, the system comprising:
-
a base computer comprising a first memory for storing one or more certificates for use in at least one of decrypting secure electronic messages, encrypting secure electronic messages, or signing secure electronic messages; a mobile communications device comprising a second memory for storing one or more certificates for use in at least one of decrypting secure electronic messages, encrypting secure electronic messages, or signing secure electronic messages; and program logic operable to automatically identify one or more certificates corresponding to one or more new keys in said first memory for downloading to said second memory; wherein the certificates are identified based on detection of new keys and certificates corresponding to the new keys; wherein said program logic is configured to mark certificates corresponding to the new keys that match existing certificates stored in the first memory; wherein said new keys are determined by comparing a list of previously available keys with a current list of keys in said first memory; and wherein said program logic is configured to automatically download said identified certificates to said mobile communications device. - View Dependent Claims (2, 3, 4, 5, 6, 7)
-
-
8. A method for updating a cryptographic certificate store of a mobile communications device, the method comprising:
-
establishing an interface between a base computer and the mobile communications device; detecting one or more new keys by comparing a list of previously available keys with one or more keys in a key store of the base computer; determining whether a certificate corresponding to a new key matches an existing certificate stored in the first memory; and downloading the certificate corresponding to the new key if a match between the corresponding certificate and an existing certificate is determined. - View Dependent Claims (9, 10, 11, 12, 13, 14)
-
-
15. A computing device for processing electronic messages, the computing device comprising:
-
a first memory for storing one or more certificates for use in at least one of decrypting secure electronic messages, encrypting secure electronic messages, or signing secure electronic messages; an interface provided for communication with a mobile communications device; and program logic operable to automatically identify one or more certificates corresponding to one or more new keys in said first memory for downloading to said second memory; wherein the certificates are identified based on detection of new keys and certificates corresponding to the new keys; wherein said program logic is configured to mark certificates corresponding to the new keys that match existing certificates stored in the first memory; wherein said new keys are determined by comparing a list of previously available keys with a current list of keys in said first memory; and wherein said program logic is configured to automatically download said identified certificates to said mobile communications device. - View Dependent Claims (16, 17, 18, 19, 20)
-
Specification