System and method for the secure enrollment of devices with a clearinghouse server for internet telephony and multimedia communications
First Claim
Patent Images
1. A method for a clearinghouse or routing policy server to securely enroll a client device for an Internet transaction system, comprising the steps:
- receiving a first message in a computer readable medium from a client Internet device that comprises an automated request to obtain an identity of one of an Internet transaction clearinghouse and Internet transaction policy server, the request further comprising an automated computer programming variable operation that is set equal to one of alphanumeric text and binary code, comprising ‘
getcacert’ and
that initiates a search for a certificate authority certificate;
responding to the request by transmitting a second message comprising the certificate authority certificate of one of an Internet transaction clearinghouse and Internet transaction policy;
receiving a third message comprising a certificate request from the client Internet transaction device;
responding to the client Internet device request by signing the certificate; and
transmitting a fourth message comprising the certificate signed by a certificate authority of one of the Internet transaction clearinghouse and the Internet transaction policy server, such that the client Internet device is enrolled in the Internet transaction system after transmission of the fourth message and wherein the clearinghouse or routing policy server is able to communicate securely with the client Internet device after transmission of the fourth message.
1 Assignment
0 Petitions
Accused Products
Abstract
Enrolling devices with a clearinghouse server for Internet telephony and multimedia communications. Enrollment can be the process of taking a network device (such as a router, gateway, gatekeeper, etc.) and exchanging encrypted information with the clearinghouse server, so that later communications with that device can be secured. The enrollment is done with levels of security and verification that ensures the devices and clearinghouse server is legitimate.
90 Citations
16 Claims
-
1. A method for a clearinghouse or routing policy server to securely enroll a client device for an Internet transaction system, comprising the steps:
-
receiving a first message in a computer readable medium from a client Internet device that comprises an automated request to obtain an identity of one of an Internet transaction clearinghouse and Internet transaction policy server, the request further comprising an automated computer programming variable operation that is set equal to one of alphanumeric text and binary code, comprising ‘
getcacert’ and
that initiates a search for a certificate authority certificate;responding to the request by transmitting a second message comprising the certificate authority certificate of one of an Internet transaction clearinghouse and Internet transaction policy; receiving a third message comprising a certificate request from the client Internet transaction device; responding to the client Internet device request by signing the certificate; and transmitting a fourth message comprising the certificate signed by a certificate authority of one of the Internet transaction clearinghouse and the Internet transaction policy server, such that the client Internet device is enrolled in the Internet transaction system after transmission of the fourth message and wherein the clearinghouse or routing policy server is able to communicate securely with the client Internet device after transmission of the fourth message. - View Dependent Claims (2, 3, 4)
-
-
5. A method for an Internet transaction clearinghouse or Internet transaction policy server to securely enroll a client Internet device for an Internet communication system, comprising the steps:
-
receiving a first message in a computer readable medium from a client Internet device that comprises an automated request to obtain an identity of one of an Internet transaction clearinghouse and Internet transaction policy server; responding to the automated request by transmitting a second message comprising a certificate authority certificate of one of an Internet transaction clearinghouse and Internet transaction policy server to the client Internet device; receiving a third message comprising a certificate request from the client Internet device, the certificate request comprising a nonce value, a user'"'"'s name, a user'"'"'s password, a Internet device identifier, a customer identifier, and a certificate request to be signed; responding to the client Internet device request by signing the certificate; and transmitting a fourth message comprising the certificate signed by the certificate authority of one of the Internet transaction clearinghouse and Internet transaction policy server, such that the client Internet device is enrolled in the Internet communication system after transmission of the fourth message and wherein the Internet transaction clearinghouse or Internet transaction policy server is able to communicate securely with the client Internet device after transmission of the fourth message. - View Dependent Claims (6, 7, 8, 9, 10)
-
-
11. A method for a Internet transaction clearinghouse or Internet transaction policy server to securely enroll a client Internet device for an Internet communications system, comprising the steps:
-
receiving a first message in a computer readable medium from a client Internet device that comprises an automated request to obtain an identity one of an Internet transaction clearinghouse and Internet transaction policy server; responding to the request by transmitting a second message comprising a certificate authority certificate of one of an Internet transaction clearinghouse and an Internet transaction policy server to the client Internet device, wherein the second message comprises a programming variable status that is set equal to one of alphanumeric text and binary code, comprising ‘
0&
certificate’
that indicates certificate authority information follows the alphanumeric text, or binary code;receiving a third message comprising a certificate request from the client Internet device comprising a certificate request to be signed; responding to the client Internet device request by signing the certificate; and transmitting a fourth message comprising the certificate signed by the certificate authority of one of the Internet transaction clearinghouse and Internet transaction policy server, such that the client Internet device is enrolled in the Internet communications system after transmission of the fourth message and wherein the Internet transaction clearinghouse or Internet transaction policy server is able to communicate securely with the client Internet device after transmission of the fourth message. - View Dependent Claims (12, 13, 14, 15, 16)
-
Specification