VPN enrollment protocol gateway
First Claim
Patent Images
1. A registration authority comprising:
- means for receiving, from a device, a first message in accordance with a first protocol, wherein the first message comprises an enrollment message;
means for generating, based on the first message, a second message in accordance with a second protocol;
means for sending the second message to a certificate authority;
means for receiving, from the certificate authority, a third message in response to the second message and in accordance with the second protocol, wherein the third message comprises a certificate authority pending response;
means for generating, based on the third message, a fourth message in accordance with the first protocol;
means for sending the fourth message to the device as a response to the first message; and
means for generating, in response to the certificate authority pending response;
a hash value based on the enrollment message;
a hash table entry mapping a pending response ID, corresponding to the certificate authority pending response, to the hash value; and
a transaction ID table entry mapping the transaction ID, corresponding to the enrollment message, to a pending response ID corresponding to the certificate authority pending response.
1 Assignment
0 Petitions
Accused Products
Abstract
A virtual private network (VPN) enrollment protocol gateway is described herein. The protocol gateway is implemented as a registration authority that operates as an intermediary between routers and a certificate authority, allowing routers operating in accordance with one protocol to obtain and maintain certificates for a VPN from a certificate authority operating in accordance with another protocol. In accordance with one aspect, the gateway protocol supports various requests from the router, including router enrollment requests, get certificate revocation list request, get certificate requests, get certificate authority certificate requests, and password requests.
27 Citations
5 Claims
-
1. A registration authority comprising:
-
means for receiving, from a device, a first message in accordance with a first protocol, wherein the first message comprises an enrollment message; means for generating, based on the first message, a second message in accordance with a second protocol; means for sending the second message to a certificate authority; means for receiving, from the certificate authority, a third message in response to the second message and in accordance with the second protocol, wherein the third message comprises a certificate authority pending response; means for generating, based on the third message, a fourth message in accordance with the first protocol; means for sending the fourth message to the device as a response to the first message; and means for generating, in response to the certificate authority pending response; a hash value based on the enrollment message; a hash table entry mapping a pending response ID, corresponding to the certificate authority pending response, to the hash value; and a transaction ID table entry mapping the transaction ID, corresponding to the enrollment message, to a pending response ID corresponding to the certificate authority pending response. - View Dependent Claims (2, 3, 4, 5)
-
Specification
-
- Resources
Litigation Campaign Assessment
Thank you for your request. You will receive a custom alert email when the Litigation Campaign Assessment is available.
×
-
Current AssigneeMicrosoft Technology Licensing LLC (Microsoft Corporation)
-
Original AssigneeMicrosoft Corporation
-
InventorsBalaz, Rudolph, Su, Xiaohong, Vogel, Keith R., Heller, Victor W.
-
Primary Examiner(s)REVAK, CHRISTOPHER A
-
Application NumberUS10/946,280Publication NumberTime in Patent Office644 DaysField of SearchNoneUS Class Current713/175CPC Class CodesH04L 12/4641 Virtual LANs, VLANs, e.g. v...H04L 2209/56 Financial cryptography, e.g...H04L 63/0272 Virtual private networksH04L 63/0823 using certificates cryptogr...H04L 9/3265 using certificate chains, t...H04L 9/3268 using certificate validatio...
