Digital certificate issuer-correlated digital signature verification
First Claim
Patent Images
1. A method, comprising:
- receiving, at a processor, a message comprising a digital signature of a message originator;
determining, in response to determining that the message originator is authorized by a data protection policy to originate the message, whether a specific authorized certificate issuer is configured for the message originator within the data protection policy, where the data protection policy comprises one of a system-wide data protection policy and a target queue-level data protection policy, and if the data protection policy comprises the target queue-level data protection policy and a separate system-wide data protection policy is also specified, then the target queue-level data protection policy takes precedence over the separate system-wide data protection policy; and
in response to determining that the specific authorized certificate issuer is configured for the message originator within the data protection policy;
determining whether a message originator certificate used to generate the digital signature of the message originator is issued by the specific authorized certificate issuer configured for the message originator within the data protection policy.
1 Assignment
0 Petitions
Accused Products
Abstract
A message including a digital signature is received at a processor. It is determined whether a specific authorized certificate issuer is configured for a message originator within a data protection policy. In response to determining that the specific authorized certificate issuer is configured for the message originator within the data protection policy, it is determined whether a message originator certificate used to generate the digital signature is issued by the configured specific authorized certificate issuer.
-
Citations
5 Claims
-
1. A method, comprising:
-
receiving, at a processor, a message comprising a digital signature of a message originator; determining, in response to determining that the message originator is authorized by a data protection policy to originate the message, whether a specific authorized certificate issuer is configured for the message originator within the data protection policy, where the data protection policy comprises one of a system-wide data protection policy and a target queue-level data protection policy, and if the data protection policy comprises the target queue-level data protection policy and a separate system-wide data protection policy is also specified, then the target queue-level data protection policy takes precedence over the separate system-wide data protection policy; and in response to determining that the specific authorized certificate issuer is configured for the message originator within the data protection policy; determining whether a message originator certificate used to generate the digital signature of the message originator is issued by the specific authorized certificate issuer configured for the message originator within the data protection policy. - View Dependent Claims (2, 3, 4, 5)
-
Specification