Requesting digital certificates
First Claim
Patent Images
1. A method, comprising:
- requesting a certificate from a certificate issuer for a public key that is associated with a corresponding private key stored by a storing entity, the requesting comprising,generating a certificate request message indicative of a request for a certificate generated by a generating entity, andtransmitting the certificate request message to the certificate issuer, wherein the certificate request message comprises an indication of an origin of at least one of the private key and the public key, the indication representative of whether at least one of the storing entity and the generating entity are secure and whether or not the storing entity and the generating entity are within a single device.
2 Assignments
0 Petitions
Accused Products
Abstract
A method for requesting a certificate from a certificate issuer for a public key that is associated with a corresponding private key stored by a storing entity, the method comprising: generating by means of a generating entity a certificate request message indicative of a request for a certificate; and transmitting the certificate request message to the certificate issuer; the certificate request message including an indication of the relationship between the storing entity and the generating entity.
-
Citations
31 Claims
-
1. A method, comprising:
requesting a certificate from a certificate issuer for a public key that is associated with a corresponding private key stored by a storing entity, the requesting comprising, generating a certificate request message indicative of a request for a certificate generated by a generating entity, and transmitting the certificate request message to the certificate issuer, wherein the certificate request message comprises an indication of an origin of at least one of the private key and the public key, the indication representative of whether at least one of the storing entity and the generating entity are secure and whether or not the storing entity and the generating entity are within a single device.
-
2. A method, comprising:
-
requesting a certificate from a certificate issuer for a public key that is associated with a corresponding private key stored by a storing entity, the requesting comprising, generating a certificate request message indicative of a request for a certificate generated with a generating entity; and transmitting the certificate request message to the certificate issuer, wherein the certificate request message comprises an indication of a relationship between the storing entity and the generating entity, and wherein the indication is representative of whether at least one of the storing entity and generating entity are physically secure and whether or not the storing entity and the generating entity are within a single device. - View Dependent Claims (3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16)
-
-
17. An apparatus, comprising:
a generator configured to generate a certificate request message to request a certificate from a certificate issuer in respect of a public key that is associated with a corresponding private key stored by a storing entity, wherein the generator is configured to generate the certificate request message including an indication of an origin of at least one of the public key and the private key, the indication representative of whether at least one of the storing entity and the generating entity are physically secure and whether or not the storing entity and the generating entity are within a single device, the generator implemented on at least one processor that is comprised at least partially of hardware. - View Dependent Claims (18, 19)
-
20. An apparatus, comprising:
a certificate issuer configured to process certificate request messages, the certificate issuer configured to analyze a certificate request message to determine whether the certificate request message is an acceptable certificate request message, when the certificate request message is determined to be acceptable, issue a certificate in response to the certificate request message, and configured to limit the certificate based on an indication of an origin of at least one of a public key and a private key, the indication representative of a physical security determined based on a relationship of at least one of a generator and a storage entity storing the at least one of the public key and the private key, the indication further representative of whether or not the storing entity and the generating entity are within a single device, the certificate issuer implemented on at least one processor that is comprised at least partially of hardware. - View Dependent Claims (21, 22, 23)
-
24. A method, comprising:
-
receiving a certificate request message from a generating entity for a public key that is associated with a corresponding private key stored by a storing entity, wherein the certificate request message comprises an indication of an origin of at least one of the public key and the private key; analyzing the certificate request message to determine whether the certificate request message is acceptable; and issuing a certificate in response to the certificate request message when the certificate request message is determined to be acceptable, the certificate being limited based on the indication of the origin of the at least one of the public key and the private key, the indication representative of whether at least one of the storing entity and the generating entity are physically secure and whether or not the storing entity and the generating entity are within a single device. - View Dependent Claims (25, 26, 27)
-
-
28. A computer program embodied on a non-transitory computer-readable storage medium, the computer program configured to control a processor to perform operations comprising:
-
requesting a certificate from a certificate issuer from a generating entity for a public key that is associated with a corresponding private key stored by a storing entity, the requesting comprising generating a certificate request message indicative of a request for a certificate; and transmitting the certificate request message to the certificate issuer, wherein the certificate request message comprises an indication of an origin of at least one of the public key and the private key the indication representative of whether at least one of the storage entity and the generating entity are physically secure and whether or not the storing entity and the generating entity are within a single device.
-
-
29. A computer program embodied on a non-transitory computer-readable storage medium, the computer program configured to control a processor to perform operations comprising:
-
receiving a certificate request message from a generating entity for a public key that is associated with a corresponding private key stored by a storing entity, wherein the certificate request message comprises an indication of an origin of at least one of the public key and the private key; analyzing the certificate request message to determine whether the certificate request message is acceptable; and issuing a certificate in response to the certificate request message when the certificate request message is determined to be acceptable, the certificate being limited based on the indication of the origin of the at least one of the public key and the private key in respect of the certificate which is requested, the indication representative of whether at least one of the storage entity and the generating entity are physically secure and whether or not the storing entity and the generating entity are within a single device.
-
-
30. An apparatus comprising:
a generator configured to generate a certificate request message to request a certificate from a certificate issuer in respect of a public key that is associated with a corresponding private key stored by a storing entity, wherein the generator is implemented on at least one processor that is comprised at least partially of hardware;
wherein the generator is configured to generate a certificate request message comprising an indication of a relationship between the storing entity and the generator, wherein the indication indicates whether at least one of the storing entity and generating entity are physically secure and whether or not the storing entity and the generating entity are within a single device.
-
31. A computer program embodied on a non-transitory computer-readable storage medium, the computer program configured to control a processor to perform operations comprising:
-
requesting a certificate from a certificate issuer by a generating entity for a public key that is associated with a corresponding private key stored by a storing entity, the requesting comprising, generating a certificate request message indicative of a request for a certificate; and transmitting the certificate request message to the certificate issuer, wherein the certificate request message comprises an indication of a relationship between the storing entity and the generating entity, and wherein the indication indicates whether at least one of the storing entity and the generating entity are physically secure and whether or not the storing entity and the generating entity are within a single device.
-
Specification