Electrical computers and digital processing systems: support – Multiple computer communication using cryptography – Central trusted authority provides computer authentication
Reexamination Certificate
1998-09-16
2002-01-01
Peeso, Thomas R. (Department: 2132)
Electrical computers and digital processing systems: support
Multiple computer communication using cryptography
Central trusted authority provides computer authentication
C713S168000, C713S176000, C380S272000, C380S278000, C380S282000, C380S285000
Reexamination Certificate
active
06336186
ABSTRACT:
COPYRIGHT NOTICE
A portion of the disclosure of this patent document contains material which is subject to copyright protection. The copyright owner has no objection to the facsimile reproduction by anyone of the patent document or the patent disclosure as it appears in the Patent and Trademark Office patent file or records, but otherwise reserves all copyright rights whatsoever.
BACKGROUND OF THE INVENTION
The present application relates generally to cryptographic systems and, more particularly, to methods for creating and managing server-based certificate (key) crypto policy in such systems.
With each passing day, more and more computers are connected together through pervasive open networks, such as the Internet, Wide Area Networks (WANs), and the like. With the ever-increasing popularity of such environments comes the need for exchanging messages and other documents in a secured fashion over an open communication network. To this end, some sort of cryptographic system is usually employed.
Generally, cryptographic systems use either “secret-key” encryption or “public key” encryption. In “secret-key” encryption, a single key is used for both encryption and decryption. Consider, for example, a user (sender) who wants to send an e-mail message to a colleague (recipient) in a secured manner, such that no one who intercepts the message will be able to read it. If the sender employs a cryptographic “secret key” to encrypt the message, the recipient, in turn, must also use the same key to decipher or decrypt the message. As a result, the same key must be initially transmitted via secure channels so that both parties can know it before encrypted messages can be sent over insecure channels. This is typically inconvenient, however. A better approach is, therefore, sought.
Public key cryptography overcomes the problem by eliminating the need for a single “secret” key. As illustrated in
FIG. 1A
, each user of a public key cryptographic system has two mathematically-related keys, a “public key” and a secret or “private key.” Operating in a complementary fashion, each key in the pair unlocks the code that the other key makes. Knowing the public key does not help deduce the corresponding private key, however. Accordingly, the public key can be published and widely disseminated across a communications network, such as the Internet, without in any way compromising the integrity of the private key. Anyone can use a recipient's public key to encrypt a message to that person, with the recipient, in turn, using his or her own corresponding private key to decrypt the message. One's private key, on the other hand, is kept secret, known only to the user.
Keys are typically stored on “keyrings.” Public keys, including a user's own as well as those of colleagues', are stored in a “public keyring” file. A user's private key is, in a similar fashion, stored in a “private keyring” file. Each key pair has a User ID (such as the owner's name and e-mail address) so that the user and the user's colleagues can identify the owners of keys. Each private key also has a passphrase, or verbose password, that protects it. No one but a message's intended recipient can decrypt the message, not even the person who originally encrypted the message, because no one else has access to the private key necessary for decrypting the encrypted message.
Since public key cryptography provides privacy without the need for the same kind of secure channels that conventional secret key encryption requires, it is commonly employed to send secured messages and other documents from one individual to another across a network or other communication channel, including the Internet. An example of its use in a commercial product today includes PGP™, available from Pretty Good Privacy, Inc. of Santa Clara, Calif.
Keys are also used to digitally sign a message or file and, in a complementary manner, to verify a digital signature. These “digital signatures” allow authentication of messages. When a user signs a message, a cryptographic program uses that user's own private key to create a digital signature that is unique to both the contents of the message and the user's private key. Any recipient can employ the user's public key to authenticate the signature. Since the signer, alone, possesses the private key that created that signature, authentication of a signature confirms that the message was actually sent by the signer, and that the message has not been subsequently altered by anyone else. Forgery of a signed message is computationally infeasible.
By way of summary,
FIG. 1B
illustrates the functions for which public and private keys are used when sending and receiving messages. When keys are used to secure files stored on a user's own computer or local network server, the user is both the “sender” (the person who saves the file) and the “recipient” (the person who opens the file).
Cryptographic systems, including ones implementing public key cryptography, are described in the technical, trade, and patent literature. For a general description, see e.g., Schneier, Bruce,
Applied Cryptography
, Second Edition, John Wiley & Sons, Inc., 1996. For a description focusing on the PGP™ implementation of public key cryptography, see e.g., Garfinkel, Simon,
PGP: Pretty Good Privacy
, O'Reilly & Associates, Inc., 1995. The disclosures of each of the foregoing are hereby incorporated by reference.
Despite the benefits of public key cryptographic products, a particular problem arises in their everyday use, however. Oftentimes there exists a need for locating and sharing public cryptographic keys with peers. This is typically done through a Public Key Infrastructure, using publicly-available public key servers. The problem which arises stems from the fact that such key servers are not tailored towards corporate environments. In particular, public key servers essentially function as “dumb” repositories for keys, with the result that such servers often store many bogus keys and unnecessarily-large keys. This leads to server bloat, confusion by novice users, and inefficient use of system resources (e.g., bandwidth, CPU performance, and storage requirements).
In corporate environments, in contrast, customers (i.e., the users) demand control over keys they maintain. To date, however, the only solution available for imposing a crypto policy is a manual one: the system administrator must manually inspect and authenticate keys which have been submitted for storage on a company's key server(s). For instance, the system administrator could delete undesirable keys, User IDs, and signatures, or could be the only one allowed to add keys to the key server's database. Such a labor-intensive approach, however, places too great of a burden on the system administrator and is, thus, impractical for all but the smallest of companies. All told, there exists a need for a cryptosystem having methodology for automating the task of creating and enforcing a crypto policy at the company's key servers. The present invention fulfills this and other needs.
SUMMARY OF THE INVENTION
A cryptosystem constructed in accordance with the present invention comprises at least one client (software) running at a workstation, terminal, desktop PC, or the like, which is connected over a network (e.g., 10/100 Base T/Ethernet) to back-end server software running on a server computer. The client software includes client cryptosystem software (e.g.,
PGP for Personal Privacy
, Version 5.5) for providing encryption of messages (e.g., e-mail, binary files, text (ASCII) files, or the like) for supporting secured communication between a sender and a recipient.
The cryptosystem includes at the server side a Certificate (Key) Server of the present invention for storing and maintaining certificate or key information in a certificate database. The Certificate Server allows clients to submit and retrieve keys from a database based on a set of policy constraints which are set for one's particular site (e.g., company). Th
Callas Jonathan David
Dyksterhouse Marc David
McArdle Mark James
Hamaty Christopher J.
Inouye Patrick J. S.
Networks Associates Technology Inc.
Smart John A.
LandOfFree
Cryptographic system and methodology for creating and... does not yet have a rating. At this time, there are no reviews or comments for this patent.
If you have personal experience with Cryptographic system and methodology for creating and..., we encourage you to share that experience with our LandOfFree.com community. Your opinion is very important and Cryptographic system and methodology for creating and... will most certainly appreciate the feedback.
Profile ID: LFUS-PAI-O-2826551