专利快速检索-快速检索全球专利，免费商用专利数据库-IPRDB

1. 发明申请

US20110153479A1 Alternative Approach to Deployment and Payment for Digital Certificates 有权
标题翻译：数字证书部署和付款的替代方法
公开(公告)号：US20110153479A1
公开(公告)日：2011-06-23
申请号：US12646515
申请日：2009-12-23
申请人： Quentin Liu , Kathleen Elizabeth Barnes , Richard F. Andrews
发明人： Quentin Liu , Kathleen Elizabeth Barnes , Richard F. Andrews
IPC分类号： G06Q99/00 , H04L29/06 , G06Q10/00 , G06Q30/00
CPC分类号： H04L63/0823 , G06Q30/0185 , G06Q30/04 , G06Q30/06
摘要： A method for managing payment of digital certificates includes receiving a request to issue a digital certificate to a subscriber, capturing and saving payment information of the subscriber, performing a first authentication and verification of the subscriber at a first time, and performing at least one additional authentication and verification of the subscriber at least once every authentication period. A long-lived certificate is issued to the subscriber provided the subscriber is authenticated and verified. The long-lived certificate is valid for an expiration period. However, the long-lived certificate is revoked if (1) the additional authentications and verification produce invalid results, or (2) if payment is not received during a payment period. The authentication period is shorter than the expiration period and there are at least a first and a second authentication period within the expiration period. The expiration period is longer than the authentication period.
摘要翻译：一种用于管理数字证书支付的方法包括接收向用户发出数字证书的请求，捕获和保存订户的支付信息，在第一时间执行用户的第一认证和验证，以及执行至少一个附加认证周期至少一次认证和验证用户。如果用户被认证和验证，则向订户发出长寿命证书。长寿命证书在有效期内有效。但是，如果（1）额外的认证和验证产生无效的结果，或（2）如果在付款期间未收到付款，那么长期的证书将被撤销。验证周期短于到期时间，并且在到期期间内至少有第一和第二认证周期。到期时间长于认证周期。

2. 发明申请

US20110154027A1 METHOD AND SYSTEM FOR CO-TERMINATION OF DIGITAL CERTIFICATES 有权
标题翻译：数字证书共同终止的方法和系统
公开(公告)号：US20110154027A1
公开(公告)日：2011-06-23
申请号：US12646834
申请日：2009-12-23
申请人： Quentin Liu , Kathleen Barnes , Richard F. Andrews
发明人： Quentin Liu , Kathleen Barnes , Richard F. Andrews
IPC分类号： H04L29/06
CPC分类号： H04L63/0823 , H04L9/3263 , H04L2209/56
摘要： A method of renewing a plurality of digital certificates includes receiving, at a first time, a request from a user to renew a first digital certificate and determining an expiration date for the first digital certificate. The method also includes receiving, at a second time, a request from the user to renew a second digital certificate and determining an expiration date for the second digital certificate. The expiration date for the second certificate is later than the expiration date for the first certificate. The method further includes determining a new expiration date occurring after the first time and the second time and renewing the first digital certificate. An expiration date for the renewed first digital certificate is equal to the new expiration date. Moreover, the method includes renewing the second digital certificate. An expiration date for the renewed second digital certificate is equal to the new expiration date.
摘要翻译：更新多个数字证书的方法包括：在第一时间接收来自用户的请求以更新第一数字证书并确定第一数字证书的到期日期。该方法还包括在第二时间接收来自用户的更新第二数字证书并确定第二数字证书的有效期的请求。第二个证书的到期日期晚于第一个证书的有效期。该方法还包括确定在第一次和第二次之后发生的新的到期日期并更新第一数字证书。更新的第一个数字证书的有效期等于新的到期日。此外，该方法包括更新第二数字证书。更新的第二个数字证书的有效期等于新的到期日。

3. 发明申请

US20110145569A1 METHOD AND SYSTEM FOR PROVISIONING MULTIPLE DIGITAL CERTIFICATES 有权
标题翻译：提供多个数字证书的方法和系统
公开(公告)号：US20110145569A1
公开(公告)日：2011-06-16
申请号：US12639771
申请日：2009-12-16
申请人： Quentin Liu , Marc Williams , Richard F. Andrews
发明人： Quentin Liu , Marc Williams , Richard F. Andrews
IPC分类号： H04L29/06 , H04L9/06
CPC分类号： H04L9/3294 , H04L9/0891 , H04L9/3263 , H04L63/0823 , H04L2209/56
摘要： A method of provisioning a first digital certificate and a second digital certificate based on an existing digital certificate includes receiving information related to the existing digital certificate. The existing digital certificate includes a first name listed in a Subject field and a second name listed in a SubjectAltName extension. The method also includes receiving an indication from a user to split the existing digital certificate and extracting the first name from the Subject field and the second name from the SubjectAltName extension of the existing digital certificate. The method further includes extracting the public key from the existing digital certificate, provisioning the first digital certificate with the first name listed in a Subject field of the first digital certificate and the public key, and provisioning the second digital certificate with the second name listed in a Subject field of the second digital certificate and the public key.
摘要翻译：基于现有数字证书提供第一数字证书和第二数字证书的方法包括接收与现有数字证书相关的信息。现有的数字证书包括在主题字段中列出的名字和在SubjectAltName扩展名中列出的第二个名称。该方法还包括从用户接收分离现有数字证书并从主题字段提取名字和来自现有数字证书的SubjectAltName扩展名的第二名称的指示。该方法还包括从现有数字证书中提取公开密钥，以第一数字证书的主题字段和公钥中列出的名字来提供第一数字证书，以及将第二数字证书以第第二数字证书的主题字段和公钥。

4. 发明申请

US20110145567A1 METHOD AND SYSTEM TO COMBINE MULTIPLE DIGITAL CERTIFICATES USING THE SUBJECT ALTERNATIVE NAME EXTENSION 有权
标题翻译：使用主题替代名称扩展来组合多个数字证书的方法和系统
公开(公告)号：US20110145567A1
公开(公告)日：2011-06-16
申请号：US12639765
申请日：2009-12-16
申请人： Quentin Liu , Marc Williams , Richard F. Andrews
发明人： Quentin Liu , Marc Williams , Richard F. Andrews
IPC分类号： H04L29/06
CPC分类号： H04L9/3263 , H04L63/0823 , H04L2209/56 , H04M15/48
摘要： A method for forming a digital certificate includes receiving contact information associated with the digital certificate. The contact information includes at least a name, a mailing address, and an email address. The method also includes receiving billing information associated with the digital certificate and receiving a Certificate Signing Request (CSR) for the digital certificate. The method further includes receiving a first name for use in forming the digital certificate and receiving a second name for use in forming the digital certificate. Moreover, the method includes receiving an indication of a vendor of web server software, receiving an indication of a service period for the digital certificate, and forming the digital certificate. The first name is stored in a Subject field of the digital certificate and the second name is stored in the SubjectAltName extension of the digital certificate.
摘要翻译：用于形成数字证书的方法包括接收与数字证书相关联的联系信息。联系人信息至少包括姓名，邮寄地址和电子邮件地址。该方法还包括接收与数字证书相关联的计费信息并接收数字证书的证书签名请求（CSR）。该方法还包括接收用于形成数字证书的第一名称和接收用于形成数字证书的第二名称。此外，该方法包括接收web服务器软件的供应商的指示，接收数字证书的服务周期的指示，以及形成数字证书。名字存储在数字证书的主题字段中，第二个名称存储在数字证书的SubjectAltName扩展名中。

5. 发明授权

US5884322A Method and apparatus for creating and assigning unique identifiers for network entities and database items in a networked computer system 失效
标题翻译：用于在网络计算机系统中为网络实体和数据库项创建和分配唯一标识符的方法和装置
公开(公告)号：US5884322A
公开(公告)日：1999-03-16
申请号：US687677
申请日：1996-07-26
申请人： Gursharan S. Sidhu , Shantanu Narayan , Mark A. Gealy , Richard F. Andrews , Susan A. Manning
发明人： Gursharan S. Sidhu , Shantanu Narayan , Mark A. Gealy , Richard F. Andrews , Susan A. Manning
IPC分类号： H04L29/12 , G06F17/30
CPC分类号： H04L29/12254 , H04L61/2038
摘要： Unique identifications are assigned to entities in a network and items in a database. In general, unique identifications are assigned to entities or data items within a network by a plurality of server entities, each server entity capable of obtaining a unique subset of identifications from other server entities, assigning an identification from its subset to another server entity, subdividing its own subset to form other unique subsets and assigning a unique subset to another server entity. Each server entity receives its own server entity identification when it is installed and also may request to receive a unique subset of entity identifications. A subset of entity identifications, also referred to interchangeably herein as a "block" of entity identifications, comprises one or more entity identifications. Each server entity controls the assignment of the entity identifications within the subsets it receives. When items such as records or attributes within records are created in a server's database, the server entity generates a unique sequence identification which it combines with its entity identification to create a unique item identification.
摘要翻译：将唯一标识分配给网络中的实体和数据库中的项目。通常，由多个服务器实体将唯一标识分配给网络内的实体或数据项，每个服务器实体能够从其他服务器实体获得唯一的标识子集，将标识从其子集分配给另一个服务器实体，其自己的子集来形成其他唯一的子集，并将唯一的子集分配给另一个服务器实体。每个服务器实体在安装时都会收到其自己的服务器实体标识，并且还可以请求接收一个唯一的实体标识子集。实体标识的一个子集，也被称为实体标识的“块”，在本文中也可互换地包括一个或多个实体标识。每个服务器实体控制其接收的子集内的实体标识的分配。当在服务器的数据库中创建诸如记录中的记录或属性的项目时，服务器实体生成唯一的序列标识，其与其实体标识相结合以创建唯一的项目标识。

6. 发明授权

US08468583B2 Streamlined process for enrollment of multiple digital certificates 有权
标题翻译：注册多个数字证书的流程简化
公开(公告)号：US08468583B2
公开(公告)日：2013-06-18
申请号：US12710665
申请日：2010-02-23
申请人： Richard F. Andrews
发明人： Richard F. Andrews
IPC分类号： G06F7/04
CPC分类号： H04L9/3268 , H04L2209/56
摘要： The enrollment process for purchasing multiple digital certificates configured using different cryptographic algorithms or hashing algorithms is streamlined. A certificate purchaser wishing to purchase two or more certificates is prompted to provide answers to common enrollment questions, such as the purchaser's contact information, payment details, web server software, and the like, using a simplified and streamlined enrollment process. Each certificate is optionally configured using a different hashing algorithm.
摘要翻译：采用不同的密码算法或散列算法配置多个数字证书的注册过程简化了。提示要购买两个或多个证书的证书购买者，使用简化和简化的注册过程来提供常见注册问题的答案，例如购买者的联系信息，付款明细，网络服务器软件等。每个证书都可以使用不同的散列算法进行配置。

7. 发明授权

US08364954B2 Method and system for provisioning multiple digital certificates 有权
标题翻译：提供多个数字证书的方法和系统
公开(公告)号：US08364954B2
公开(公告)日：2013-01-29
申请号：US12639771
申请日：2009-12-16
申请人： Quentin Liu , Marc Williams , Richard F. Andrews
发明人： Quentin Liu , Marc Williams , Richard F. Andrews
IPC分类号： H04L9/32
CPC分类号： H04L9/3294 , H04L9/0891 , H04L9/3263 , H04L63/0823 , H04L2209/56
摘要： A method of provisioning a first digital certificate and a second digital certificate based on an existing digital certificate includes receiving information related to the existing digital certificate. The existing digital certificate includes a first name listed in a Subject field and a second name listed in a SubjectAltName extension. The method also includes receiving an indication from a user to split the existing digital certificate and extracting the first name from the Subject field and the second name from the SubjectAltName extension of the existing digital certificate. The method further includes extracting the public key from the existing digital certificate, provisioning the first digital certificate with the first name listed in a Subject field of the first digital certificate and the public key, and provisioning the second digital certificate with the second name listed in a Subject field of the second digital certificate and the public key.
摘要翻译：基于现有数字证书提供第一数字证书和第二数字证书的方法包括接收与现有数字证书相关的信息。现有的数字证书包括在主题字段中列出的名字和在SubjectAltName扩展名中列出的第二个名称。该方法还包括从用户接收分离现有数字证书并从主题字段提取名字和来自现有数字证书的SubjectAltName扩展名的第二名称的指示。该方法还包括从现有数字证书中提取公开密钥，以第一数字证书的主题字段和公钥中列出的名字来提供第一数字证书，以及将第二数字证书以第第二数字证书的主题字段和公钥。

8. 发明授权

US06324645B1 Risk management for public key management infrastructure using digital certificates 有权
标题翻译：使用数字证书的公钥管理基础设施的风险管理
公开(公告)号：US06324645B1
公开(公告)日：2001-11-27
申请号：US09132289
申请日：1998-08-11
申请人： Richard F Andrews , Peter Williams , Judy Lin
发明人： Richard F Andrews , Peter Williams , Judy Lin
IPC分类号： H04K100
CPC分类号： H04L9/006 , H04L9/3263 , H04L2209/56
摘要： A public key management infrastructure (104) is shared by at least two users (102). A method (300) for managing risk arising from a user's use of the shared public key management infrastructure (104) includes the following steps. The user (102) is associated (301) with a digital certificate (200) which is issued and digitally signed by a certification authority (CA). The digital certificate (200) represents that the user (102) is bound to a public key (210) corresponding to a private key held by the user (102); the public key (210) and the private key form a key pair for use in public-key cryptography. The digital certificate (200) further includes an access label (216), which may identify the domain (105) within the public key management infrastructure (104) which the user (102) is authorized to access and/or the privileges which the user (102) is authorized to exercise. The user's identity and the validity of the digital certificate (200) are established (303,305). The access label (216) is read (304) from the user's digital certificate (200), and the user's use of the public key management infrastructure (104) is controlled (306) based upon the access label (216).
摘要翻译：公共密钥管理基础设施（104）由至少两个用户共享（102）。一种用于管理由用户使用共享公钥管理基础设施（104）引起的风险的方法（300），包括以下步骤。用户（102）与由认证机构（CA）发行和数字签名的数字证书（200）相关联（301）。数字证书（200）表示用户（102）被绑定到对应于由用户（102）保存的私钥的公钥（210）; 公开密钥（210）和私钥形成用于公钥密码术的密钥对。数字证书（200）还包括访问标签（216），其可以标识用户（102）被授权访问的公共密钥管理基础设施（104）内的域（105）和/或用户（102）有权行使。建立用户身份和数字证书（200）的有效性（303,305）。从用户的数字证书（200）读取访问标签（216）（304），并且基于访问标签（216）控制用户对公钥管理基础设施（104）的使用（306）。

9. 发明授权

US08375204B2 Method and system to combine multiple digital certificates using the subject alternative name extension 有权
标题翻译：使用主题替代名称扩展来组合多个数字证书的方法和系统
公开(公告)号：US08375204B2
公开(公告)日：2013-02-12
申请号：US12639765
申请日：2009-12-16
申请人： Quentin Liu , Marc Williams , Richard F. Andrews
发明人： Quentin Liu , Marc Williams , Richard F. Andrews
IPC分类号： H04L9/32
CPC分类号： H04L9/3263 , H04L63/0823 , H04L2209/56 , H04M15/48
摘要： A method for forming a digital certificate includes receiving contact information associated with the digital certificate. The contact information includes at least a name, a mailing address, and an email address. The method also includes receiving billing information associated with the digital certificate and receiving a Certificate Signing Request (CSR) for the digital certificate. The method further includes receiving a first name for use in forming the digital certificate and receiving a second name for use in forming the digital certificate. Moreover, the method includes receiving an indication of a vendor of web server software, receiving an indication of a service period for the digital certificate, and forming the digital certificate. The first name is stored in a Subject field of the digital certificate and the second name is stored in the SubjectAltName extension of the digital certificate.
摘要翻译：用于形成数字证书的方法包括接收与数字证书相关联的联系信息。联系人信息至少包括姓名，邮寄地址和电子邮件地址。该方法还包括接收与数字证书相关联的计费信息并接收数字证书的证书签名请求（CSR）。该方法还包括接收用于形成数字证书的第一名称和接收用于形成数字证书的第二名称。此外，该方法包括接收web服务器软件的供应商的指示，接收数字证书的服务周期的指示，以及形成数字证书。名字存储在数字证书的主题字段中，第二个名称存储在数字证书的SubjectAltName扩展名中。

10. 发明授权

US06931133B2 Method and system of securely escrowing private keys in a public key infrastructure 有权
标题翻译：在私钥基础设施中安全地托管私钥的方法和系统
公开(公告)号：US06931133B2
公开(公告)日：2005-08-16
申请号：US10232624
申请日：2002-09-03
申请人： Richard F. Andrews , Zhiyong Huang , Tom Qi Xiong Ruan
发明人： Richard F. Andrews , Zhiyong Huang , Tom Qi Xiong Ruan
IPC分类号： H04L9/08 , H04L9/00
CPC分类号： H04L9/0894 , H04L2209/04
摘要： A method of restricting access to private keys in a public key infrastructure provides for storage of an encrypted private key at a primary site. A masked session key is stored at a secondary site, where the masked session key enables recovery of the private key. By using distributed storage architecture for recovery data, simplification can be achieved without sacrificing security.
摘要翻译：在公共密钥基础设施中限制对私钥的访问的方法提供了在主站点处存储加密的私钥。被屏蔽的会话密钥存储在辅助站点，其中屏蔽的会话密钥启用恢复私钥。通过使用分布式存储架构进行恢复数据，可以在不牺牲安全性的情况下实现简化。

你已经成功收藏专利！

检索式保存成功!

IPRDB

热门服务

关于我们

友情链接

联系方式