PROVISIONING AND MANAGING CERTIFICATES FOR ACCESSING SECURE SERVICES IN NETWORK
First Claim
Patent Images
1. A method for provisioning and managing certificates in a network, the method comprising:
- generating a signing certificate by a network device based on a root certificate of the network device;
signing a client-device certificate for a client device based on the signing certificate of the network device; and
providing the signed client-device certificate to the client device, wherein the client-device certificate allows the client device to access a secure service provided by the network device.
2 Assignments
0 Petitions
Accused Products
Abstract
Systems and methods for provisioning and managing of certificates in a network are described. In one implementation, a signing certificate is generated by a network device based on a root certificate of the network device. Based on the signing certificate of the network device, a client-device certificate is signed for a client device. The signed client-device certificate is provided to the client device for allowing the client device to access a secure service provided by the network device.
11 Citations
15 Claims
-
1. A method for provisioning and managing certificates in a network, the method comprising:
-
generating a signing certificate by a network device based on a root certificate of the network device; signing a client-device certificate for a client device based on the signing certificate of the network device; and providing the signed client-device certificate to the client device, wherein the client-device certificate allows the client device to access a secure service provided by the network device. - View Dependent Claims (2, 3, 4, 5, 6)
-
-
7. A network device providing a secure service in a network, the network device comprising:
-
a processor; and a certificate authority coupled to the processor to; generate a signing certificate based on a root certificate of the network device; receive, from a client device, a certificate signing request comprising a client-device certificate to be signed by the network device; and sign the client-device certificate based on the signing certificate of the network device; and a communication module coupled to the processor to; provide the client-device certificate, signed by the certificate authority, to the client device, wherein the client-device certificate is provided to allow the client device to access the secure service. - View Dependent Claims (8, 9, 10, 11, 12, 13)
-
-
14. A non-transitory computer-readable medium comprising instructions executable by a processor to:
-
generate a signing certificate in a network device based on a root certificate of the network device; receive a certificate signing request in the network device from a client device over an encrypted SSL connection, the certificate signing request comprises a client-device certificate to be signed; sign the client-device certificate in the network device, the client-device certificate is signed based on the signing certificate of the network device; and provide the client-device certificate, signed in the network device, to the client device over the encrypted SSL connection, wherein the client-device certificate is provided for allowing the client device to access a secure service provided by the network device. - View Dependent Claims (15)
-
Specification