System and method for verifying digital signatures on certificates
First Claim
1. A method of verifying a digital signature on a certificate on a computing device, the method comprising:
- a processor of the computing device performing a first signature verification operation on the digital signature using a first public key associated with an issuer of the certificate;
said processor successfully verifying the digital signature in the first signature verification operation;
said processor storing the first public key in a memory store after successfully verifying the digital signature in the first signature verification operation;
said processor receiving a request to perform a second signature verification operation on the digital signature using a second public key associated with an issuer of the certificate;
said processor comparing the second public key with the first public key stored in the memory store;
said processor determining that the first and second public keys match based on said comparing; and
said processor indicating, as a response to the request to perform the second signature verification operation, successful verification of the digital signature in lieu of performing the second signature verification operation.
7 Assignments
0 Petitions
Accused Products
Abstract
A system and method for verifying a digital signature on a certificate, which may be used in the processing of encoded messages. In one embodiment, when a digital signature is successfully verified in a signature verification operation, the public key used to verify that digital signature is cached. When a subsequent attempt to verify the digital signature is made, the public key to be used to verify the digital signature is compared to the cached key. If the keys match, the digital signature can be successfully verified without requiring that a signature verification operation in which some data is decoded using the public key be performed.
-
Citations
19 Claims
-
1. A method of verifying a digital signature on a certificate on a computing device, the method comprising:
-
a processor of the computing device performing a first signature verification operation on the digital signature using a first public key associated with an issuer of the certificate; said processor successfully verifying the digital signature in the first signature verification operation; said processor storing the first public key in a memory store after successfully verifying the digital signature in the first signature verification operation; said processor receiving a request to perform a second signature verification operation on the digital signature using a second public key associated with an issuer of the certificate; said processor comparing the second public key with the first public key stored in the memory store; said processor determining that the first and second public keys match based on said comparing; and said processor indicating, as a response to the request to perform the second signature verification operation, successful verification of the digital signature in lieu of performing the second signature verification operation. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8)
-
-
9. A computer-readable medium comprising a plurality of instructions, executable on a computing device, for performing acts comprising:
-
performing a first signature verification operation on a digital signature on a certificate on the computing device using a first public key associated with an issuer of the certificate; successfully verifying the digital signature in the first signature verification operation; storing the first public key in a memory store after successfully verifying the digital signature in the first signature verification operation; receiving a request to perform a second signature verification operation on the digital signature using a second public key associated with an issuer of the certificate; comparing the second public key with the first public key stored in the memory store; determining that the first and second public keys match based on said comparing; and indicating, as a response to the request to perform the second signature verification operation, successful verification of the digital signature in lieu of performing the second signature verification operation. - View Dependent Claims (10, 11, 12)
-
-
13. A system for verifying a digital signature on a certificate comprising at least one computing device, the at least one computing device comprising a processor and a memory, wherein the processor is configured to:
-
perform a first signature verification operation on the digital signature using a first public key associated with an issuer of the certificate; successfully verify the digital signature in the first signature verification operation; store the first public key in a memory store after successfully verifying the digital signature in the first signature verification operation; receive a request to perform a second signature verification operation on the digital signature using a second public key associated with an issuer of the certificate; compare the second public key with the first public key stored in the memory store; determine that the first and second public keys match based on a comparison of the second public key with the first public key stored in the memory store; and indicate, as a response to the request to perform the second signature verification operation, successful verification of the digital signature in lieu of performing the second signature verification operation. - View Dependent Claims (14, 15, 16, 17, 18, 19)
-
Specification