System for domain control validation
First Claim
Patent Images
1. A system, comprising:
- at least one server computer having a processor and being configured to;
receive a request including a certificate signing request and a first Internet protocol address, the certificate signing request identifying a domain and a certificate;
retrieve a second Internet protocol address for the domain from a domain name system;
when the first Internet protocol address is the same as the second Internet protocol address;
sign the certificate, andtransmit the signed certificate to a requester of the request; and
when the first Internet protocol address is not the same as the second Internet protocol address, reject the certificate signing request.
3 Assignments
0 Petitions
Accused Products
Abstract
A system and method for domain control validation is presented. At a certificate authority a request is received. The request includes a certificate signing request and a first Internet protocol address. The certificate signing request identifies a domain and a certificate. A second Internet protocol address for the domain is retrieved from a domain name system. When the first Internet protocol address is the same as the second Internet protocol address, the certificate is signed, and the signed certificate is transmitted to a requester of the request. When the first Internet protocol address is not the same as the second Internet protocol address, the certificate signing request is rejected.
-
Citations
10 Claims
-
1. A system, comprising:
at least one server computer having a processor and being configured to; receive a request including a certificate signing request and a first Internet protocol address, the certificate signing request identifying a domain and a certificate; retrieve a second Internet protocol address for the domain from a domain name system; when the first Internet protocol address is the same as the second Internet protocol address; sign the certificate, and transmit the signed certificate to a requester of the request; and when the first Internet protocol address is not the same as the second Internet protocol address, reject the certificate signing request. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9)
-
10. A system, comprising:
at least one server computer having a processor and being configured to; receive a request from a second server computer, the second server computer operating an administration account for a domain, the request including a certificate signing request and a first Internet protocol address of a third server computer hosting a website for the domain, the certificate signing request identifying the domain and a certificate; retrieve a second Internet protocol address for the domain from a domain name system; when the first Internet protocol address is the same as the second Internet protocol address; sign the certificate, and transmit the signed certificate to a requester of the request; and when the first Internet protocol address is not the same as the second Internet protocol address, reject the certificate signing request.
Specification