System and method for retrieving certificates associated with senders of digitally signed messages
First Claim
1. A method of retrieving certificates associated with senders of digitally signed electronic mail messages received at a user'"'"'s mobile computing device, wherein the method is performed by an application executing on the user'"'"'s computing device, the method comprising:
- detecting, by the user'"'"'s mobile computing device, when an electronic mail message comprising a digital signature of the sender of the electronic mail message has arrived at the user'"'"'s mobile computing device;
identifying, when the electronic mail message arrives at the user'"'"'s mobile computing device before the electronic mail message is user-selected for opening, a certificate associated with the sender that comprises a public key capable of verifying the digital signature, wherein the certificate is not included in the electronic mail message;
determining, when the electronic mail message arrives at the user'"'"'s mobile computing device before the electronic mail message is user-selected for opening and prior to verifying the digital signature, whether the certificate is stored in a certificate store on the user'"'"'s mobile computing device, this being performed by the application without user intervention;
retrieving the certificate from a certificate store remotely located from the user'"'"'s mobile computing device if the certificate is determined to be not stored on the user'"'"'s mobile computing device;
verifying, by the user'"'"'s mobile computing device, the digital signature of the electronic mail message using the certificate, this being performed by the application without user intervention, when the electronic mail message arrives at the user'"'"'s mobile computing device before the electronic mail message is user-selected for opening;
generating an indicator for display at the user'"'"'s mobile computing device that indicates whether the digital signature is successfully verified;
verifying at least one certificate property of the certificate, this being performed by the application after the certificate is retrieved, without user intervention; and
generating an indicator for display at the user'"'"'s mobile computing device that indicates, for each of the at least one certificate property, a result of the verification of the respective certificate property.
4 Assignments
0 Petitions
Accused Products
Abstract
A system and method for retrieving certificates and/or verifying the revocation status of certificates. In one embodiment, when a user opens a digitally signed message, a certificate that is required to verify the digital signature on the message may be automatically retrieved if it is not stored on the user'"'"'s computing device (e.g. a mobile device), eliminating the need for users to initiate the task manually. Verification of the digital signature may also be automatically performed by the application after the certificate is retrieved. Verification of the revocation status of a certificate may also be automatically performed if it is determined that the time that has elapsed since the status was last updated exceeds a pre-specified limit.
-
Citations
13 Claims
-
1. A method of retrieving certificates associated with senders of digitally signed electronic mail messages received at a user'"'"'s mobile computing device, wherein the method is performed by an application executing on the user'"'"'s computing device, the method comprising:
-
detecting, by the user'"'"'s mobile computing device, when an electronic mail message comprising a digital signature of the sender of the electronic mail message has arrived at the user'"'"'s mobile computing device; identifying, when the electronic mail message arrives at the user'"'"'s mobile computing device before the electronic mail message is user-selected for opening, a certificate associated with the sender that comprises a public key capable of verifying the digital signature, wherein the certificate is not included in the electronic mail message; determining, when the electronic mail message arrives at the user'"'"'s mobile computing device before the electronic mail message is user-selected for opening and prior to verifying the digital signature, whether the certificate is stored in a certificate store on the user'"'"'s mobile computing device, this being performed by the application without user intervention; retrieving the certificate from a certificate store remotely located from the user'"'"'s mobile computing device if the certificate is determined to be not stored on the user'"'"'s mobile computing device; verifying, by the user'"'"'s mobile computing device, the digital signature of the electronic mail message using the certificate, this being performed by the application without user intervention, when the electronic mail message arrives at the user'"'"'s mobile computing device before the electronic mail message is user-selected for opening; generating an indicator for display at the user'"'"'s mobile computing device that indicates whether the digital signature is successfully verified; verifying at least one certificate property of the certificate, this being performed by the application after the certificate is retrieved, without user intervention; and generating an indicator for display at the user'"'"'s mobile computing device that indicates, for each of the at least one certificate property, a result of the verification of the respective certificate property. - View Dependent Claims (2, 3, 4, 5, 6)
-
-
7. A computer-readable storage device, comprising a plurality of instructions for an application, the application for execution on a user'"'"'s mobile computing device, the instructions for performing a method comprising:
-
detecting, by the user'"'"'s mobile computing device, when an electronic mail message comprising a digital signature of the sender of the electronic mail message has arrived at the user'"'"'s mobile computing device; identifying, when the electronic mail message arrives at the user'"'"'s mobile computing device before the electronic mail message is user-selected for opening, a certificate associated with the sender that comprises a public key capable of verifying the digital signature, wherein the certificate is not included in the message; determining, when the electronic mail message arrives at the user'"'"'s mobile computing device before the electronic mail message is user-selected for opening and prior to verifying the digital signature, whether the certificate is stored in a certificate store on the user'"'"'s mobile computing device, this being performed by the application without user intervention; retrieving the certificate from a certificate store remotely located from the user'"'"'s mobile computing device if the certificate is determined to be not stored on the user'"'"'s mobile computing device; verifying, by the user'"'"'s mobile computing device, the digital signature of the electronic mail message using the certificate, this being performed by the application without user intervention, when the electronic mail message arrives at the user'"'"'s mobile computing device before the electronic mail message is user-selected for opening; generating an indicator for display at the user'"'"'s mobile computing device that indicates whether the digital signature is successfully verified; verifying at least one certificate property of the certificate, this being performed by the application after the certificate is retrieved, without user intervention; and generating an indicator for display at the user'"'"'s mobile computing device that indicates, for each of the at least one certificate property, a result of the verification of the respective certificate property.
-
-
8. A system for retrieving certificates associated with senders of digitally signed electronic mail messages, the system comprising:
-
a user'"'"'s mobile computing device, including a processor and a memory, on which an application is installed;
wherein execution of the application causes the processor to perform acts of a method comprising;detecting, by the user'"'"'s mobile computing device, when an electronic mail message comprising a digital signature of the sender of the electronic mail message has arrived at the user'"'"'s mobile computing device; identifying, when the electronic mail message arrives at the user'"'"'s mobile computing device before the electronic mail message is user-selected for opening, a certificate associated with the sender that comprises a public key capable of verifying the digital signature, wherein the certificate is not included in the electronic mail message; determining, when the electronic mail message arrives at the user'"'"'s mobile computing device before the electronic mail message is user-selected for opening and prior to verifying the digital signature, whether the certificate is stored in a certificate store on the user'"'"'s mobile computing device, this being performed by the application without user intervention; retrieving the certificate from a certificate store remotely located from the user'"'"'s mobile computing device if the certificate is determined to be not stored on the user'"'"'s mobile computing device; verifying, by the user'"'"'s mobile computing device, the digital signature of the electronic mail message using the certificate, this being performed by the application without user intervention, when the electronic mail message arrives at the user'"'"'s mobile computing device before the electronic mail message is user-selected for opening; generating an indicator for display at the user'"'"'s mobile computing device that indicates whether the digital signature is successfully verified; verifying at least one certificate property of the certificate, this being performed by the application after the certificate is retrieved, without user intervention; and generating an indicator for display at the user'"'"'s mobile computing device that indicates, for each of the at least one certificate property, a result of the verification of the respective certificate property. - View Dependent Claims (9, 10, 11, 12, 13)
-
Specification