Central and implicit certificate management
First Claim
Patent Images
1. A method of facilitating certificate management, comprising:
- employing at least one processor configured to execute computer-executable instructions stored in memory to perform the following acts;
receiving a request, including a host name, for secure communication from a client;
determining a digital certificate name based at least on the host name and a digital certificate naming convention;
confirming that a digital certificate exists on a network-accessible central store by comparing the digital certificate name with a set of one or more digital certificate names stored locally on a server;
acquiring the digital certificate from the network-accessible central store; and
returning the digital certificate to the client in response to the request.
2 Assignments
0 Petitions
Accused Products
Abstract
Facilitating management of digital certificates is addressed. More specifically, digital certificates as well as public and private keys can be stored in a centrally accessible location and dynamically acquired from the location as needed. Additionally, binding of digital certificates and associated keys can be implicit and determined as a function of a host name provided during protocol negotiation, for example.
-
Citations
19 Claims
-
1. A method of facilitating certificate management, comprising:
-
employing at least one processor configured to execute computer-executable instructions stored in memory to perform the following acts; receiving a request, including a host name, for secure communication from a client; determining a digital certificate name based at least on the host name and a digital certificate naming convention; confirming that a digital certificate exists on a network-accessible central store by comparing the digital certificate name with a set of one or more digital certificate names stored locally on a server; acquiring the digital certificate from the network-accessible central store; and returning the digital certificate to the client in response to the request. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9)
-
-
10. A system configured to facilitate certificate management, comprising:
-
a processor coupled to a memory, the processor configured to execute the following computer-executable components stored in the memory; a first component configured to determine a digital certificate name based on a host name received with a request for secure communication and a naming convention; a second component configured to acquire a digital certificate from a network-accessible central store automatically after confirming the digital certificate exists on the network-accessible central store by comparison of the digital certificate name with a set of one or more names stored locally on a server; and a third component configured to return the digital certificate in response to the request. - View Dependent Claims (11, 12, 13)
-
-
14. A computer-readable storage device having instructions stored thereon that enables at least one processor to perform a method upon execution of the instructions, the method comprising:
-
identifying a file, including a digital certificate, for a web server as a function of a domain name for the web server and one or more file names stored locally on the web server indicative of one or more corresponding files stored on a network-accessible central store, the file names are based on names of domains for web servers to which the files are implicitly bound; requesting the file from the network-accessible central store; receiving the file from the network-accessible central store; and saving the file to a local cache on the web server. - View Dependent Claims (15, 16, 17, 18, 19)
-
Specification