Electrical computers and digital processing systems: support – Multiple computer communication using cryptography – Central trusted authority provides computer authentication
Reexamination Certificate
2005-02-08
2005-02-08
Moise, Emmanuel L. (Department: 2136)
Electrical computers and digital processing systems: support
Multiple computer communication using cryptography
Central trusted authority provides computer authentication
C713S155000, C713S168000, C713S182000, C713S152000, C380S282000, C709S227000, C709S229000
Reexamination Certificate
active
06854056
ABSTRACT:
A method or system is presented for coupling identities through the use of digital certificates, thereby allowing a client to be authenticated for a variety of services without those services having to modify their existing methods of authentication. The client generates a request for a digital certificate containing its host identity for a targeted host and secret data associated with its host identity. The secret data has been encrypted using the public key of the certifying authority that receives the request for the digital certificate. The certifying authority decrypts the secret data using its private key and encrypts the secret data using the public key of the targeted host. The digital certificate is then generated and returned to the client. At some point in time, a host receives the certificate from the client and obtains the client's host identity from the certificate, i.e. the host identity uniquely identifies the client or the user of the client to the host. Encrypted secret data associated with the host identity, such as a password, is also retrieved from the digital certificate. The host decrypts the secret data with its private key, and the host then authenticates the client using the host identity and the decrypted secret data for various services. The digital certificate may be formatted according to the X.509 standard, and the host identity and secret information may be stored in an X.509 extension within the digital certificate.
REFERENCES:
patent: 4868877 (1989-09-01), Fischer
patent: 5241594 (1993-08-01), Kung
patent: 5371794 (1994-12-01), Diffie et al.
patent: 5455953 (1995-10-01), Russell
patent: 5535276 (1996-07-01), Ganesan
patent: 5712914 (1998-01-01), Aucsmith et al.
patent: 5774552 (1998-06-01), Grimmer
patent: 5790785 (1998-08-01), Klug et al.
patent: 5815574 (1998-09-01), Fortinsky
patent: 5832211 (1998-11-01), Blakley, III et al.
patent: 5841970 (1998-11-01), Tabuki
patent: 5982898 (1999-11-01), Hsu et al.
patent: 6005939 (1999-12-01), Fortenberry et al.
patent: 6026166 (2000-02-01), LeBourgeois
patent: 6189097 (2001-02-01), Tycksen et al.
patent: 6230266 (2001-05-01), Perlman et al.
patent: 6233577 (2001-05-01), Ramasubramani et al.
patent: 6301658 (2001-10-01), Koehler
patent: 6321333 (2001-11-01), Murray
patent: 6324645 (2001-11-01), Andrews et al.
patent: 6341351 (2002-01-01), Muralidhran et al.
patent: 6405313 (2002-06-01), Reiter et al.
patent: 6553493 (2003-04-01), Okumura et al.
patent: 6564320 (2003-05-01), de Silva et al.
patent: 6584565 (2003-06-01), Zamek
Benantar Messaoud
Gindin Thomas L.
Milman Ivan
Burwell Joseph R.
LaBaw Jeffrey S.
Moise Emmanuel L.
LandOfFree
Method and system for coupling an X.509 digital certificate... does not yet have a rating. At this time, there are no reviews or comments for this patent.
If you have personal experience with Method and system for coupling an X.509 digital certificate..., we encourage you to share that experience with our LandOfFree.com community. Your opinion is very important and Method and system for coupling an X.509 digital certificate... will most certainly appreciate the feedback.
Profile ID: LFUS-PAI-O-3500060