Mobile certificate distribution in a PKI
First Claim
1. A method performed by a certificate authority (CA) device for distributing certificates from the CA device to a first mobile device in a mobile ad hoc network (MANET), the MANET comprising the first mobile device, a second mobile device, and one or more access points (APs) for connecting to a communication network, the CA device capable of communicating with the one or more APs over the communication network, the method comprising:
- obtaining information pertaining to the one or more APs of which the first mobile device and the second mobile device are within range;
determining the first mobile device was more recently in communication with the CA device compared to the second mobile device; and
sending a certificate to the one or more APs to enable the first mobile device to obtain the certificate when coming into range with the one or more APs.
4 Assignments
0 Petitions
Accused Products
Abstract
A method of providing certificate issuance and revocation checks involving mobile devices in a mobile ad-hoc network (MANET). The wireless devices communicate with each other via Bluetooth wireless technology in the MANET, with an access point (AP) to provide connectivity to the Internet. A Certificate authority (CA) distributes certificates and certification revocation lists (CRLs) to the devices via the access point (AP). Each group of devices has the name of the group associated with the certificate and signed by the CA. A device that is out of the radio range of the access point may still connect to the CA to validate a certificate or download the appropriate CRL by having all the devices participate in the MANET.
9 Citations
19 Claims
-
1. A method performed by a certificate authority (CA) device for distributing certificates from the CA device to a first mobile device in a mobile ad hoc network (MANET), the MANET comprising the first mobile device, a second mobile device, and one or more access points (APs) for connecting to a communication network, the CA device capable of communicating with the one or more APs over the communication network, the method comprising:
-
obtaining information pertaining to the one or more APs of which the first mobile device and the second mobile device are within range; determining the first mobile device was more recently in communication with the CA device compared to the second mobile device; and sending a certificate to the one or more APs to enable the first mobile device to obtain the certificate when coming into range with the one or more APs. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9)
-
-
10. A non-transitory computer readable medium comprising processor implemented instructions executable by a certificate authority (CA) device for distributing certificates from the CA device to a first mobile device in a mobile ad hoc network (MANET), the MANET comprising the first mobile device, a second mobile device, and one or more access points (APs) for connecting to a communication network, the CA device capable of communicating with the one or more APs over the communication network, the instructions comprising:
-
obtaining information pertaining to the one or more APs of which the first mobile device and the second mobile device are within range; determining the first mobile device was more recently in communication with the CA device compared to the second mobile device; and sending a certificate to the one or more APs to enable the first mobile device to obtain the certificate when coming into range with the one or more APs. - View Dependent Claims (11, 12, 13, 14, 15, 16, 17, 18)
-
-
19. A certificate authority (CA) device configured to communicate with one more access points (APs) over a communication network in a mobile ad hoc network (MANET), the MANET comprising a first mobile device, a second mobile device, and the one or more APs for connecting to the communication network, the CA device comprising a processor configured to distribute certificates from the CA device to the first mobile device, the processor configure to at least:
-
obtain information pertaining to the one or more APs of which the first mobile device and the second mobile device are within range; determine the first mobile device was more recently in communication with the CA device compared to the second mobile device; and send a certificate to the one or more APs to enable the first mobile device to obtain the certificate when coming into range with the one or more APs.
-
Specification