×

Method to establish and enforce a network cryptographic security policy in a public key cryptosystem

  • US 5,164,988 A
  • Filed: 10/31/1991
  • Issued: 11/17/1992
  • Est. Priority Date: 10/31/1991
  • Status: Expired due to Term
First Claim
Patent Images

1. In a data processing network which includes a first data processor coupled to a second data processor, said first data processor including a first cryptographic system and said second data processor including a second cryptographic system, a method for enforcing a network security policy, comprising steps of:

  • encoding a network security policy in a first configuration vector at said first data processor and transmitting said first configuration vector to said second data processor;

    decoding said first configuration vector in said second data processor and configuring said second data processor in response thereto to implement said network security policy;

    storing a public certification key and a private certification key of a certification key pair at said first data processor and transmitting said public certification key to said second data processor;

    storing a public utilization key and a private utilization key of a utilization key pair at said second data processor;

    transmitting a request from said second data processor to said first data processor to certify said public utilization key;

    transmitting a representation of said first configuration vector in an audit record from said second data processor to said first data processor;

    verifying said audit record in said first data processor and transmitting a certificate for said public utilization key to said second data processor, said certificate including a digital signature produced by said first data processor using said private certification key; and

    impairing use of said private utilization key in said second data processor in response to storing a new configuration vector in said second data processor.

View all claims
  • 1 Assignment
Timeline View
Assignment View
    ×
    ×