Digital certificate issuer-correlated digital signature verification
First Claim
1. A method, comprising:
- receiving, at a processor, a message comprising a digital signature of a message originator;
determining, in response to determining that the message originator is authorized by a data protection policy to originate the message, whether a specific authorized certificate issuer is required for the message originator within the data protection policy; and
in response to determining that the specific authorized certificate issuer is required for the message originator within the data protection policy;
determining whether a message originator certificate used to generate the digital signature of the message originator is issued by the specific authorized certificate issuer required for the message originator within the data protection policy.
1 Assignment
0 Petitions
Accused Products
Abstract
A message including a digital signature of a message originator is received at a processor. In response to determining that the message originator is authorized by a data protection policy to originate the message, a determination is made as to whether a specific authorized certificate issuer is configured for the message originator within a data protection policy. In response to determining that the specific authorized certificate issuer is configured for the message originator within the data protection policy, a determination is made as to whether a message originator certificate used to generate the digital signature of the message originator is issued by the specific authorized certificate issuer configured for the message originator within the data protection policy.
-
Citations
6 Claims
-
1. A method, comprising:
-
receiving, at a processor, a message comprising a digital signature of a message originator; determining, in response to determining that the message originator is authorized by a data protection policy to originate the message, whether a specific authorized certificate issuer is required for the message originator within the data protection policy; and in response to determining that the specific authorized certificate issuer is required for the message originator within the data protection policy; determining whether a message originator certificate used to generate the digital signature of the message originator is issued by the specific authorized certificate issuer required for the message originator within the data protection policy. - View Dependent Claims (2, 3, 4, 5, 6)
-
Specification
-
- Resources
-
Current AssigneeInternational Business Machines Corporation
-
Original AssigneeInternational Business Machines Corporation
-
InventorsDixon, Bret W., Rumsey, Jonathan L.
-
Primary Examiner(s)KIM, TAE K
-
Application NumberUS15/194,882Publication NumberTime in Patent Office427 DaysField of SearchUS Class CurrentCPC Class CodesH04L 2209/64 Self-signed certificatesH04L 2209/72 Signcrypting, i.e. digital ...H04L 63/06 for supporting key manageme...H04L 63/0823 using certificates cryptogr...H04L 63/20 for managing network securi...H04L 9/006 involving public key infras...H04L 9/14 using a plurality of keys o...H04L 9/30 Public key, i.e. encryption...H04L 9/3247 involving digital signaturesH04L 9/3263 involving certificates, e.g...H04L 9/3265 using certificate chains, t...
