×

Identity-based certificate management

  • US 9,473,310 B2
  • Filed: 04/18/2014
  • Issued: 10/18/2016
  • Est. Priority Date: 04/07/2009
  • Status: Active Grant
First Claim
Patent Images

1. A method performed by a computer system for validating a digital certificate issued to a client system and associated with a specific client identity, the method comprising:

  • receiving the digital certificate from the client system, the digital certificate including a user identifier and a certificate validity period identifier, the user identifier corresponding to the specific client identity;

    generating a first query to a directory service having a plurality of entries each associated with different client identities, the first query including a request for a first entry associated with the specific client identity, the first entry including a directory validity time value for the specific client identity;

    receiving the directory validity time value returned by the directory service in response to the first query; and

    validating the digital certificate in response to determining that a certificate validity period specified by the certificate validity period identifier is later than the received directory validity time value.

View all claims
  • 10 Assignments
Timeline View
Assignment View
    ×
    ×