Digital certificate issuer-correlated digital signature verification
First Claim
1. A method, comprising:
- receiving, at a processor, a message comprising a digital signature of a message originator;
determining, in response to determining that the message originator is authorized by a data protection policy to originate the message, whether a specific authorized certificate issuer is configured for the message originator within the data protection policy comprising determining whether a mandatory certificate issuer field is specified within an authorized originator tag within the data protection policy; and
in response to determining that the specific authorized certificate issuer is configured for the message originator within the data protection policy;
determining whether a message originator certificate used to generate the digital signature of the message originator is issued by the specific authorized certificate issuer configured for the message originator within the data protection policy.
1 Assignment
0 Petitions
Accused Products
Abstract
A message including a digital signature of a message originator is received at a processor. In response to determining that the message originator is authorized by a data protection policy to originate the message, a determination is made as to whether a specific authorized certificate issuer is configured for the message originator within a data protection policy. In response to determining that the specific authorized certificate issuer is configured for the message originator within the data protection policy, a determination is made as to whether a message originator certificate used to generate the digital signature of the message originator is issued by the specific authorized certificate issuer configured for the message originator within the data protection policy.
-
Citations
18 Claims
-
1. A method, comprising:
-
receiving, at a processor, a message comprising a digital signature of a message originator; determining, in response to determining that the message originator is authorized by a data protection policy to originate the message, whether a specific authorized certificate issuer is configured for the message originator within the data protection policy comprising determining whether a mandatory certificate issuer field is specified within an authorized originator tag within the data protection policy; and in response to determining that the specific authorized certificate issuer is configured for the message originator within the data protection policy; determining whether a message originator certificate used to generate the digital signature of the message originator is issued by the specific authorized certificate issuer configured for the message originator within the data protection policy. - View Dependent Claims (2, 3, 4, 5, 6)
-
-
7. A system, comprising:
-
a memory configured to store a data protection policy; and a processor programmed to; receive a message comprising a digital signature of a message originator; determine, in response to determining that the message originator is authorized by the data protection policy to originate the message, whether a specific authorized certificate issuer is configured for the message originator within the data protection policy comprising determining whether a mandatory certificate issuer field is specified within an authorized originator tag within the data protection policy; and in response to determining that the specific authorized certificate issuer is configured for the message originator within the data protection policy; determine whether a message originator certificate used to generate the digital signature of the message originator is issued by the specific authorized certificate issuer configured for the message originator within the data protection policy. - View Dependent Claims (8, 9, 10, 11, 12)
-
-
13. A computer program product comprising a computer readable storage medium including computer readable program code, where the computer readable program code when executed on a computer causes the computer to:
-
receive a message comprising a digital signature of a message originator; determine, in response to determining that the message originator is authorized by a data protection policy to originate the message, whether a specific authorized certificate issuer is configured for the message originator within the data protection policy comprising determining whether a mandatory certificate issuer field is specified within an authorized originator tag within the data protection policy; and in response to determining that the specific authorized certificate issuer is configured for the message originator within the data protection policy; determine whether a message originator certificate used to generate the digital signature of the message originator is issued by the specific authorized certificate issuer configured for the message originator within the data protection policy. - View Dependent Claims (14, 15, 16, 17, 18)
-
Specification