专利快速检索-快速检索全球专利，免费商用专利数据库-IPRDB

1. 发明授权

US06539093B1 Key ring organizer for an electronic business using public key infrastructure 失效
公开(公告)号：US06539093B1
公开(公告)日：2003-03-25
申请号：US09223803
申请日：1998-12-31
申请人： Khalid Asad , Michael A. Brown , Adarsh Gupta , Manjit Singh Kohli , J. Matthew Sebastian
发明人： Khalid Asad , Michael A. Brown , Adarsh Gupta , Manjit Singh Kohli , J. Matthew Sebastian
IPC分类号： H04L908
CPC分类号： H04L63/065 , G06Q20/3674 , G06Q20/3829 , H04L9/083 , H04L9/3263 , H04L63/0823
摘要： Users and security aware applications are able to request operations on and manipulate role based digital certificates (and their corresponding private keys) distributed among multiple key rings through the use of a Key Ring Organizer (KRO). In a typical use of the KRO, the computer network is coupled to a secure server and at least one end-user terminal; a Registration Authority; and an organization server hosting secure applications. The end-user terminal includes a general purpose Web browser with a KRO plug-in module and a KRO managing a set of key rings, where each key ring may contain multiple keys. The KRO components include the KRO, a set of KRO catalogs (typically one), a built-in key ring, and multiple external key rings. A key ring can be of any type, including a smart card, key disk, or remote file. A catalog (typically a file) contains a set of entries in which each entry contains a set of attributes and a reference to a key record stored in a key ring. Public key data is stored in a catalog during key generation and later verified against the certificate to be stored in a key ring in order to maintain the integrity of the association between references in a catalog and the key pairs to which they refer. A built-in key ring is contained within each catalog and is managed by end-users like any other key ring; however, outside the KRO environment, a built-in key ring is not accessed independently from the catalog which contains it. This mechanism greatly increases mobility. In a typical client-server session the KRO is accessed by a secure server application using Key Ring Organizer Language (KROL) messages sent to the KRO plug-in over a secure protocol (e.g., SSL) to generate, store and select role based keys for use in signing documents or authenticating end-users. The KRO provides a mechanism whereby signature requests are always authorized by the owner of the signing private key. The KRO also allows digital key parameters to be configured by the end-user so that authentication request must be authorized by the user as well.

2. 发明授权

US06715073B1 Secure server using public key registration and methods of operation 失效
标题翻译：使用公钥登记的安全服务器和操作方法
公开(公告)号：US06715073B1
公开(公告)日：2004-03-30
申请号：US09223766
申请日：1998-12-31
申请人： Larry An , Hamid Bacha , Robert Briggs , Robert Burns , Robert B. Carroll , Mark Fisk , Hatem Ghafir , Raymond Good , Srinivasa Kasturi , Ku Lee , Drew Kittel , Lolo Lasida , Hiroshi Maruyama , Amit Pamecha , Paresh Patel , Dieter Poetzschke , Roger Reider , Khalid Asad
发明人： Larry An , Hamid Bacha , Robert Briggs , Robert Burns , Robert B. Carroll , Mark Fisk , Hatem Ghafir , Raymond Good , Srinivasa Kasturi , Ku Lee , Drew Kittel , Lolo Lasida , Hiroshi Maruyama , Amit Pamecha , Paresh Patel , Dieter Poetzschke , Roger Reider , Khalid Asad
IPC分类号： H04L900
CPC分类号： H04L63/0823 , G06F21/33 , H04L63/10
摘要： A secure-end-to-end communication system for electronic business system and method of operation, e.g., the Internet, includes a web server—vault controller having personal storage vaults in the controller for users, registration and certification authorities. Each personal vault runs programs on the controller under a unique UNIX user ID. Data storage is provided by the controller wherein the storage is owned by the same user ID assigned to the vault. A registration authority running as a software application in the controller processes requests to issue, renew and revoke digital certificates issued by a certification authority using two pairs of public-private keys. The registration authority interacts with the vault controller to decide whether an applicant qualifies to receive a digital certificate. The certification authority running as software application in the controller includes a certificate management system that provides services such as issuing, revoking, suspending, resuming, and renewing a user's right to digital certificates.
摘要翻译：用于电子商务系统和操作方法（例如因特网）的安全端到端通信系统包括在用于用户，注册和认证机构的控制器中具有个人存储库的web服务器 - 保管库控制器。每个个人保管库在独特的UNIX用户标识下，在控制器上运行程序。数据存储由控制器提供，其中存储器由分配给保险库的相同用户ID拥有。在控制器中作为软件应用程序运行的注册机构处理使用两对公私钥发出，更新和撤销由证书颁发机构颁发的数字证书的请求。注册机构与文件库控制器进行交互，以决定申请人是否有资格接收数字证书。在控制器中作为软件应用程序运行的认证机构包括提供诸如颁发，撤销，暂停，恢复和更新用户数字证书权限等服务的证书管理系统。

你已经成功收藏专利！

检索式保存成功!

IPRDB

热门服务

关于我们

友情链接

联系方式