WIRELESS COMMUNICATION USING COMPACT CERTIFICATES
First Claim
1. A method for authenticating a digital certificate, comprising the steps of:
- storing on a wireless device a first plurality of certificate data items associated with an entity having a digital certificate containing the data items;
receiving at the wireless device a compact certificate that lacks the first plurality of data items, but that contains a second plurality of certificate data items and a digital signature formed using the first and second pluralities of data items; and
validating the compact certificate at the wireless device using the digital signature, the first plurality of data items stored on the device, and the second plurality of data items contained in the compact certificate.
14 Assignments
0 Petitions
Accused Products
Abstract
A method and communications system for generating and using compact digital certificates for secure wireless communication. Each compact certificate includes a digital signature and only a portion of the data used in generating the signature. The remaining certificate data is pre-stored on one or more wireless devices for which secure communication is desired. Upon receiving a compact certificate, the wireless device authenticates the certificate using its digital signature along with both the data contained in the certificate and the data pre-stored on the wireless device. This approach permits secure connections to be established between wireless devices using relatively small digital certificates.
86 Citations
20 Claims
-
1. A method for authenticating a digital certificate, comprising the steps of:
-
storing on a wireless device a first plurality of certificate data items associated with an entity having a digital certificate containing the data items; receiving at the wireless device a compact certificate that lacks the first plurality of data items, but that contains a second plurality of certificate data items and a digital signature formed using the first and second pluralities of data items; and validating the compact certificate at the wireless device using the digital signature, the first plurality of data items stored on the device, and the second plurality of data items contained in the compact certificate. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8)
-
-
9. A method of supplying authenticating information to a wireless device, comprising the steps of:
-
generating a digital signature using authentication information; forming a digital certificate that includes the digital signature and only some of the authentication information used in generating the digital signature; receiving a request to establish a secure connection from a wireless device having stored thereon the remainder of the authentication information used in generating the digital signature; and wirelessly transmitting the digital certificate to the wireless device. - View Dependent Claims (10, 11, 12, 13, 14, 15)
-
-
16. A method of configuring a vehicle and call center to permit secure communication between them, comprising the steps of:
-
generating a vehicle certificate signature using vehicle certificate data and an issuer private key; generating a call center certificate signature using call center certificate data and an issuer private key; storing an issuer public key and some of the vehicle certificate data at the call center; storing an issuer public key and some of the call center certificate data at the vehicle; programming the vehicle to supply the call center with a compact vehicle certificate containing the vehicle certificate signature and only a portion of the vehicle certificate data; and programming at least one server at the call center to supply vehicles with a compact call center certificate containing the call center certificate signature and only a portion of the call center certificate data. - View Dependent Claims (17, 18, 19, 20)
-
Specification