METHOD AND SYSTEM FOR GENERATING DIGITAL CERTIFICATES AND CERTIFICATE SIGNING REQUESTS

US 20100138907A1
Filed: 12/01/2008
Published: 06/03/2010
Est. Priority Date: 12/01/2008
Status: Abandoned Application

First Claim

Patent Images

1. A method for issuing a digital certificate using a certificate server having a web service server and a certificate authority component, the method comprising:

establishing a secure data transfer link between the certificate server and a network resource using the web service server;

receiving a certificate request on the web service server;

authenticating the certificate request using the web service server, the web service server being in communication with the certificate authority component;

transferring the certificate request from the web service server to the certificate authority component;

comparing the certificate request with an established system parameter to determine if the certificate request meets the established system parameter;

signing the certificate request by the certificate authority component; and

transmitting the signed certificate request to a client resource via the secure data transfer link.

View all claims

2 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A certificate server is provided for issuing digital certificates to be used by a network resource and/or a client resource. The certificate server is configured to communicate with the network resource or the client resource to receive a certificate request. Upon receiving the certificate request, the certificate server may automate the process for authenticating the certificate request, validating the terms of the certificate request and digitally signing the certificate request. An authentication appliance may communicate with or be integrated within the certificate server. The certificate server includes a web service server, a certificate authority component, and a database that enable communication with either the network resource, client resource, or the authentication appliance to automate the administration process typically involved in receiving and signing a certificate request. The certificate authority component may sign the certificate request with a trusted root chain associated with the network resource.

60 Citations

View as Search Results

19 Claims

1. A method for issuing a digital certificate using a certificate server having a web service server and a certificate authority component, the method comprising:
- establishing a secure data transfer link between the certificate server and a network resource using the web service server;
  
  receiving a certificate request on the web service server;
  
  authenticating the certificate request using the web service server, the web service server being in communication with the certificate authority component;
  
  transferring the certificate request from the web service server to the certificate authority component;
  
  comparing the certificate request with an established system parameter to determine if the certificate request meets the established system parameter;
  
  signing the certificate request by the certificate authority component; and
  
  transmitting the signed certificate request to a client resource via the secure data transfer link.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11)
- - 2. The method of claim 1, wherein the secure data transfer link is established between the certificate server and a client resource.
  - 3. The method of claim 2, wherein the established system parameter is configured by the client resource.
  - 4. The method of claim 1, wherein the established system parameter is configured by the network resource.
  - 5. The method of claim 1, wherein the certificate authority component rejects the certificate request when the established system parameter is not met.
  - 6. The method of claim 1, wherein the certificate authority component modifies the certificate request to fulfill the established system parameter.
  - 7. The method of claim 3, wherein the certificate authority component digitally signs the certificate request with a trusted root chain corresponding to the network resource.
  - 8. The method of claim 1, further comprising a database stored on the certificate server, the database configured to store information for processing the certificate request by the certificate authority component.
  - 9. The method of claim 8, wherein the database stores certificate revocation information corresponding to each certificate request signed by the certificate authority component.
  - 10. The method of claim 1, further comprising a web service client component stored on the certificate server, the web service client component configured to communicate with a licensing server to track the digital certificates issued by the certificate server.
  - 11. The method of claim 1, further comprising a web administration console configured to allow remote access to the certificate server.

12. A method for issuing a digital certificate using a certificate server having a web service server and a certificate authority component, the certificate server being in communication with an authentication appliance, the method comprising:
- establishing a secure data transfer link between the certificate server and the authentication appliance;
  
  receiving a certificate request on the web service server from the authentication appliance via the secure data transfer link;
  
  authenticating the certificate request using the web service server, the web service server being in communication with the certificate authority component;
  
  transferring the certificate request from the web service server to the certificate authority component;
  
  comparing the certificate request with an established system parameter to determine if the certificate request meets the established system parameter;
  
  signing the certificate request by the certificate authority component; and
  
  transmitting the signed certificate request to the authentication appliance via the secure data transfer link.
- View Dependent Claims (13)
- - 13. The method of claim 12, wherein the authentication appliance is stored on the certificate server.

14. A system for issuing digital certificates, comprising:
- a certificate server including;
  
  a web service server for receiving a certificate request, the web service server configured to authenticate the certificate request; and
  
  a certificate authority component in communication with the web service server, the certificate authority component receiving the certificate request from the web service server, the certificate authority component configured to sign the certificate request, the signed certificate request being transmitted to a client resource.
- View Dependent Claims (15, 16, 17, 18, 19)
- - 15. The system of claim 14, wherein the certificate authority component is configured to compare the certificate request with an established system parameter to determine if the certificate request meets the established system parameter.
  - 16. The system of claim 14, wherein the certificate server is in communication with an authentication appliance for receiving the certificate request.
  - 17. The system of claim 14, further comprising an authentication appliance for authenticating the client resource prior to the signing of the certificate request by the certificate authority component.
  - 18. The system of claim 14, further comprising a database for storing information to process the certificate request by the certificate authority component.
  - 19. The system of claim 14, further comprising a web administration console for providing remote access to the certificate server by a system administrator.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
SecureAuth Incorporated
Original Assignee
SecureAuth Incorporated
Inventors
Moore, Stephen, Grajek, Garret, Lambiase, Mark

Application Number

US12/326,002
Publication Number

US 20100138907A1
Time in Patent Office

Days
Field of Search
US Class Current

726/10
CPC Class Codes

H04L 63/0823 using certificates cryptogr...

H04L 9/3263 involving certificates, e.g...

METHOD AND SYSTEM FOR GENERATING DIGITAL CERTIFICATES AND CERTIFICATE SIGNING REQUESTS

First Claim

2 Assignments

0 Petitions

Accused Products

Abstract

60 Citations

19 Claims

Specification

Solutions

Use Cases

Quick Links

METHOD AND SYSTEM FOR GENERATING DIGITAL CERTIFICATES AND CERTIFICATE SIGNING REQUESTS

First Claim

2 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

60 Citations

19 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links