Content control method using certificate revocation lists
First Claim
Patent Images
1. A method for determining if a certificate is revoked using a certificate revocation list, the method comprising:
- performing by a storage device which is in communication with a host;
receiving a certificate from the host;
receiving a plurality of portions of a certificate revocation list from the host, wherein the plurality of portions of the certificate revocation list amount to the complete certificate revocation list;
processing the portions of the certificate revocation list in the order in which they are received and searching for a reference to the certificate in each of the portions as they are being processed, wherein the plurality of portions are received one after the other, and wherein the processing is performed on the fly as the plurality of portions are received; and
after the plurality of portions have been processed,verifying the certification revocation list from the processed plurality of portions, anddetermining that the certificate is revoked if the reference to it was found and the certificate revocation list was verified.
3 Assignments
0 Petitions
Accused Products
Abstract
Host devices present both the host certificate and the pertinent certificate revocation lists to the memory device for authentication so that the memory device need not obtain the list on its own. Processing of the certificate revocation list and searching for the certificate identification may be performed concurrently by the memory device. The certificate revocation lists for authenticating host devices to memory devices may be stored in an unsecured area of the memory device for convenience of users.
-
Citations
16 Claims
-
1. A method for determining if a certificate is revoked using a certificate revocation list, the method comprising:
performing by a storage device which is in communication with a host; receiving a certificate from the host; receiving a plurality of portions of a certificate revocation list from the host, wherein the plurality of portions of the certificate revocation list amount to the complete certificate revocation list; processing the portions of the certificate revocation list in the order in which they are received and searching for a reference to the certificate in each of the portions as they are being processed, wherein the plurality of portions are received one after the other, and wherein the processing is performed on the fly as the plurality of portions are received; and after the plurality of portions have been processed, verifying the certification revocation list from the processed plurality of portions, and determining that the certificate is revoked if the reference to it was found and the certificate revocation list was verified. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8)
-
9. A storage device comprising:
-
a memory; and a controller in communication with the memory and operative to; receive a certificate from an entity; receive a plurality of portions of a certificate revocation list from the entity, wherein the plurality of portions of the certificate revocation list amount to the complete certificate revocation list; process the portions of the certificate revocation list in the order in which they are received and search for a reference to the certificate in each of the portions as they are being processed, wherein the plurality of portions are received one after the other, and wherein the processing is performed on the fly as the plurality of portions are received; and after the plurality of portions have been processed, verify the certification revocation list from the processed plurality of portions, and determine that the certificate is revoked if the reference to it was found and the certificate revocation list was verified. - View Dependent Claims (10, 11, 12, 13, 14, 15, 16)
-
Specification