Managing database for reliably identifying information of device generating digital signatures
First Claim
1. A method of managing a database for reliably identifying a Security Profile of a device that generates digital signatures, comprising the steps of,(a) maintaining the database in a secure environment, the secure environment existing outside of the device and having a security rating, (b) recording in the database for each one of a plurality of devices manufactured in a secure manufacturing environment, (i) a public key of a public-private key pair of the manufactured device, the private key being stored within the device, and (ii) a Security Profile of the manufactured device in association with the public key, wherein the Security Profile includes security features and manufacturing history of the manufactured device and wherein the Security Profile defines a security level of the manufactured device relative to other manufactured devices,
- the public key and Security Profile thereby being securely linked together and wherein the security rating of the secure environment is at least comparable to the security level of the manufactured device, and (c) thereafter, when a public key linked in said step (b) successfully authenticates a digitally signed message, identifying the Security Profile associated with said linked public key as pertaining to the manufactured device to which belongs the private key utilized in digitally signing the message.
8 Assignments
0 Petitions
Accused Products
Abstract
A database for reliably identifying a Security Profile of a device that generates digital signatures is managed by (a) maintaining the database in a secure environment, (b) recording in the database for each one of a plurality of devices manufactured in the secure environment, (i) a public key of a public-private key pair of the manufactured device, and in association therewith, (ii) a Security Profile of the manufactured device, the public key and Security Profile thereby being securely linked together, and (c) thereafter, when a linked public key successfully authenticates a digitally signed message, identifying the Security Profile associated with the linked public key as pertaining to the manufactured device to which belongs the private key utilized in digitally signing the message. Furthermore, a reference is communicated in a secure manner, the reference including the public key and Security Profile linked therewith for at least one of the manufactured devices.
-
Citations
26 Claims
-
1. A method of managing a database for reliably identifying a Security Profile of a device that generates digital signatures, comprising the steps of,
(a) maintaining the database in a secure environment, the secure environment existing outside of the device and having a security rating, (b) recording in the database for each one of a plurality of devices manufactured in a secure manufacturing environment, (i) a public key of a public-private key pair of the manufactured device, the private key being stored within the device, and (ii) a Security Profile of the manufactured device in association with the public key, wherein the Security Profile includes security features and manufacturing history of the manufactured device and wherein the Security Profile defines a security level of the manufactured device relative to other manufactured devices, - the public key and Security Profile thereby being securely linked together and wherein the security rating of the secure environment is at least comparable to the security level of the manufactured device, and
(c) thereafter, when a public key linked in said step (b) successfully authenticates a digitally signed message, identifying the Security Profile associated with said linked public key as pertaining to the manufactured device to which belongs the private key utilized in digitally signing the message. - View Dependent Claims (2, 3, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16, 17, 18, 19, 20, 21, 22, 23, 24, 25, 26)
- the public key and Security Profile thereby being securely linked together and wherein the security rating of the secure environment is at least comparable to the security level of the manufactured device, and
-
4. A method of managing a database for reliably identifying a Security Profile of a device that generates digital signatures, comprising the steps of,
(a) maintaining the database in a secure environment, the secure environment existing outside of the device and having a security rating, (b) recording in the database for each one of a plurality of devices manufactured in a secure manufacturing environment, (i) a public key of a public-private key pair of the manufactured device, the private key being stored within the device, and (ii) a Security Profile of the manufactured device in association with the public key, wherein the Security Profile includes security features and manufacturing history of the manufactured device and wherein the Security Profile defines a security level of the manufactured device relative to other manufactured devices, - the public key and Security Profile thereby being securely linked together and wherein the security rating of the secure environment is at least comparable to the security level of the manufactured device, and
(c) communicating a reference in a secure manner, the reference including the public key and Security Profile linked therewith in said step (b) for at least one of the manufactured devices. - View Dependent Claims (5, 6)
- the public key and Security Profile thereby being securely linked together and wherein the security rating of the secure environment is at least comparable to the security level of the manufactured device, and
Specification