Digital certificate proxy
First Claim
1. A method comprising the steps of:
- receiving a request to authenticate identity of a user at a communication platform;
receiving a digital certificate and a short-term proxy of said digital certificate from said platform, wherein said short-term proxy expires after a predetermined expiration time; and
comparing said digital certificate and said short-term proxy with a plurality of digital certificates issued by a central certificate authority to enable authentication of said user'"'"'s identity.
0 Assignments
0 Petitions
Accused Products
Abstract
The invention generates a temporary digital certificate with a useful life of only a few minutes to a few hours. An expiration time is attached to such temporary digital certificate by a secure computer platform that is presented with a user'"'"'s smart-card. Expiration dates one or two years after the issuance of the smart-card are conventional. A digital certificate issued by a central authority is carried within the smart card and is used by the secure computer platform to generate temporary digital certificate. The temporary digital certificate functions as a proxy digital certificate that will allow the user to immediately pocket the smart card and thus avoid the possibility of forgetting it in a card reader.
32 Citations
20 Claims
-
1. A method comprising the steps of:
-
receiving a request to authenticate identity of a user at a communication platform;
receiving a digital certificate and a short-term proxy of said digital certificate from said platform, wherein said short-term proxy expires after a predetermined expiration time; and
comparing said digital certificate and said short-term proxy with a plurality of digital certificates issued by a central certificate authority to enable authentication of said user'"'"'s identity. - View Dependent Claims (2, 3, 4, 5, 6)
-
-
7. A user authentication system comprising:
-
a communication platform coupled to a network for securing communications for a user; and
a remote platform coupled to said network, wherein said remote platform further receives a request to authenticate identity of said user at said communication platform, receives a digital certificate and a short-term proxy of said digital certificate from said communication platform, wherein said short-term proxy expires after a predetermined expiration time, and compares said digital certificate and said short-term proxy with a plurality of digital certificates issued by a central certificate authority to enable authentication of said user'"'"'s identity. - View Dependent Claims (8, 9, 10)
-
-
11. A user authentication system comprising:
-
means for receiving a request to authenticate identity of a user at a communication platform;
means for receiving a digital certificate and a short-term proxy of said digital certificate from said platform, wherein said short-term proxy expires after a predetermined expiration time; and
means for comparing said digital certificate and said short-term proxy with a plurality of digital certificates issued by a central certificate authority to enable authentication of said user'"'"'s identity. - View Dependent Claims (12, 13, 14, 15)
-
-
16. A computer readable medium containing executable instructions, which, when executed in a processing system, cause said processing system to perform a method comprising the steps of:
-
receiving a request to authenticate identity of a user at a communication platform;
receiving a digital certificate and a short-term proxy of said digital certificate from said platform, wherein said short-term proxy expires after a predetermined expiration time; and
comparing said digital certificate and said short-term proxy with a plurality of digital certificates issued by a central certificate authority to enable authentication of said user'"'"'s identity. - View Dependent Claims (17, 18, 19, 20)
-
Specification