[go: up one dir, main page]

IN2009CN02956A - - Google Patents

Download PDF

Info

Publication number
IN2009CN02956A
IN2009CN02956A IN2956CHN2009A IN2009CN02956A IN 2009CN02956 A IN2009CN02956 A IN 2009CN02956A IN 2956CHN2009 A IN2956CHN2009 A IN 2956CHN2009A IN 2009CN02956 A IN2009CN02956 A IN 2009CN02956A
Authority
IN
India
Prior art keywords
electronic certificate
client
certificate
server
server apparatus
Prior art date
Application number
Inventor
Kohsuke Okamoto
Takashi Miyamoto
Original Assignee
Ibm
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Ibm filed Critical Ibm
Publication of IN2009CN02956A publication Critical patent/IN2009CN02956A/en

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/32Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
    • H04L9/3263Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials involving certificates, e.g. public key certificate [PKC] or attribute certificate [AC]; Public key infrastructure [PKI] arrangements
    • H04L9/3268Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials involving certificates, e.g. public key certificate [PKC] or attribute certificate [AC]; Public key infrastructure [PKI] arrangements using certificate validation, registration, distribution or revocation, e.g. certificate revocation list [CRL]
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/04Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks
    • H04L63/0428Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks wherein the data content is protected, e.g. by encrypting or encapsulating the payload
    • H04L63/0442Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks wherein the data content is protected, e.g. by encrypting or encapsulating the payload wherein the sending and receiving network entities apply asymmetric encryption, i.e. different keys for encryption and decryption
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/08Network architectures or network communication protocols for network security for authentication of entities
    • H04L63/0823Network architectures or network communication protocols for network security for authentication of entities using certificates
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/14Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols using a plurality of keys or algorithms
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/32Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
    • H04L9/3247Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials involving digital signatures
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W12/00Security arrangements; Authentication; Protecting privacy or anonymity
    • H04W12/04Key management, e.g. using generic bootstrapping architecture [GBA]
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L2209/00Additional information or applications relating to cryptographic mechanisms or cryptographic arrangements for secret or secure communication H04L9/00
    • H04L2209/60Digital content management, e.g. content distribution
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/04Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks
    • H04L63/0407Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks wherein the identity of one or more communicating identities is hidden

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Security & Cryptography (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Computer Hardware Design (AREA)
  • Computing Systems (AREA)
  • General Engineering & Computer Science (AREA)
  • Management, Administration, Business Operations System, And Electronic Commerce (AREA)
  • Storage Device Security (AREA)
  • Computer And Data Communications (AREA)

Abstract

When a client apparatus receives a request for an electronic certificate from a server apparatus, the server apparatus reads a client containing personal information and a server public key of the server apparatus from a storage unit and encrypts the client certificate using the server public key. The client apparatus also a temporary electronic certificate by setting, in a basic field of an electronic certificate, a predetetmined item indicating that the electronic certificate is a temporary electronic certificate and by the client certificate having been encrypted in an extension field of the electronic certificate. Thenthe client apparatus sends the temporary electronic certificate to the server apparatus.
IN2956CHN2009 2006-10-27 2007-10-24 IN2009CN02956A (en)

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
JP2006293253 2006-10-27
PCT/JP2007/070706 WO2008050792A1 (en) 2006-10-27 2007-10-24 System, device, method and program for authenticating communication partner by means of electronic certificate including personal information

Publications (1)

Publication Number Publication Date
IN2009CN02956A true IN2009CN02956A (en) 2015-08-07

Family

ID=39324586

Family Applications (1)

Application Number Title Priority Date Filing Date
IN2956CHN2009 IN2009CN02956A (en) 2006-10-27 2007-10-24

Country Status (8)

Country Link
US (2) US8225096B2 (en)
EP (1) EP2086162B1 (en)
JP (1) JP4870777B2 (en)
KR (1) KR101054970B1 (en)
CN (1) CN101529797B (en)
CA (1) CA2663241C (en)
IN (1) IN2009CN02956A (en)
WO (1) WO2008050792A1 (en)

Families Citing this family (47)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US6990581B1 (en) 2000-04-07 2006-01-24 At&T Corp. Broadband certified mail
JP5179471B2 (en) * 2006-04-10 2013-04-10 モデール ビー.ブイ. Apparatus and method for securely transmitting data
US8225096B2 (en) 2006-10-27 2012-07-17 International Business Machines Corporation System, apparatus, method, and program product for authenticating communication partner using electronic certificate containing personal information
FR2958821A1 (en) * 2007-12-11 2011-10-14 Mediscs METHOD FOR AUTHENTICATING A USER
WO2009156302A1 (en) * 2008-06-23 2009-12-30 Nxp B.V. Electronic device and method of software or firmware updating of an electronic device
JP5329184B2 (en) * 2008-11-12 2013-10-30 株式会社日立製作所 Public key certificate verification method and verification server
US8510810B2 (en) * 2008-12-23 2013-08-13 Bladelogic, Inc. Secure credential store
US8499154B2 (en) * 2009-01-27 2013-07-30 GM Global Technology Operations LLC System and method for establishing a secure connection with a mobile device
US20110150266A1 (en) * 2009-12-22 2011-06-23 Dirk Hohndel Automated security control using encoded security information
JP5505160B2 (en) 2010-07-22 2014-05-28 ブラザー工業株式会社 Information processing apparatus and computer program
JP5505161B2 (en) * 2010-07-22 2014-05-28 ブラザー工業株式会社 Information processing apparatus and computer program
US8776205B2 (en) * 2010-10-29 2014-07-08 GM Global Technology Operations LLC Secure connection systems and methods for vehicles
JP5682237B2 (en) * 2010-11-05 2015-03-11 富士ゼロックス株式会社 Information processing apparatus and program
US8789163B2 (en) * 2011-02-20 2014-07-22 Robert S. Cahn On-line membership verification utilizing an associated organization certificate
US8843740B2 (en) * 2011-12-02 2014-09-23 Blackberry Limited Derived certificate based on changing identity
US9026789B2 (en) * 2011-12-23 2015-05-05 Blackberry Limited Trusted certificate authority to create certificates based on capabilities of processes
US9444629B2 (en) 2013-05-24 2016-09-13 Sap Se Dual layer transport security configuration
WO2015026336A1 (en) * 2013-08-21 2015-02-26 Intel Corporation Processing data privately in the cloud
DE102013222503A1 (en) * 2013-11-06 2015-05-07 Siemens Aktiengesellschaft A client device and method for embossing a client device to at least one server device
CN104320264B (en) * 2014-02-24 2018-07-31 杨淼彬 A kind of digital certificate method of effective information
US20160182289A1 (en) * 2014-12-18 2016-06-23 Interactive Intelligence Group, Inc. System and method for device pairing transaction
US10282562B1 (en) 2015-02-24 2019-05-07 ImageKeeper LLC Secure digital data collection
US10523435B2 (en) * 2015-07-20 2019-12-31 Digicert, Inc. Mutable fields in digital certificates
US10454689B1 (en) * 2015-08-27 2019-10-22 Amazon Technologies, Inc. Digital certificate management
US20170063557A1 (en) * 2015-08-28 2017-03-02 Fortinet, Inc. Detection of fraudulent certificate authority certificates
JP6567939B2 (en) 2015-10-05 2019-08-28 任天堂株式会社 Information processing system, peripheral device, wireless communication chip, application program, and information processing method
US11552968B2 (en) * 2015-10-28 2023-01-10 Qomplx, Inc. System and methods for detecting and mitigating golden SAML attacks against federated services
KR102444239B1 (en) * 2016-01-21 2022-09-16 삼성전자주식회사 Security Chip, Application Processor, Device including security Chip and Operating Method thereof
US10243955B2 (en) * 2016-07-14 2019-03-26 GM Global Technology Operations LLC Securely establishing time values at connected devices
US9660978B1 (en) * 2016-08-08 2017-05-23 ISARA Corporation Using a digital certificate with multiple cryptosystems
WO2018045590A1 (en) * 2016-09-12 2018-03-15 Telefonaktiebolaget Lm Ericsson (Publ) A method for secure link layer connection over wireless local area networks
US9667619B1 (en) * 2016-10-14 2017-05-30 Akamai Technologies, Inc. Systems and methods for utilizing client side authentication to select services available at a given port number
JP6784198B2 (en) * 2017-03-09 2020-11-11 トヨタ自動車株式会社 Locking / unlocking system, key unit
US10581829B1 (en) 2017-05-31 2020-03-03 Cisco Technology, Inc. Certificate-based call identification and routing
US11082412B2 (en) 2017-07-12 2021-08-03 Wickr Inc. Sending secure communications using a local ephemeral key pool
US11316666B2 (en) * 2017-07-12 2022-04-26 Amazon Technologies, Inc. Generating ephemeral key pools for sending and receiving secure communications
JP2019057083A (en) * 2017-09-20 2019-04-11 株式会社三井住友銀行 Method for opening remote account by non-face-to-face transaction, computer, and program
US11546310B2 (en) * 2018-01-26 2023-01-03 Sensus Spectrum, Llc Apparatus, methods and articles of manufacture for messaging using message level security
US10425401B1 (en) 2018-10-31 2019-09-24 ISARA Corporation Extensions for using a digital certificate with multiple cryptosystems
TWI723494B (en) * 2019-08-15 2021-04-01 威進國際資訊股份有限公司 Client verification system and its verification method
KR20210076402A (en) * 2019-12-16 2021-06-24 현대자동차주식회사 In-vehicle controller and method for injecting certificate for the same
US11468198B2 (en) * 2020-04-01 2022-10-11 ImageKeeper LLC Secure digital media authentication and analysis
JP7502618B2 (en) * 2020-07-20 2024-06-19 富士通株式会社 COMMUNICATION PROGRAM, COMMUNICATION DEVICE, AND COMMUNICATION METHOD
US11553105B2 (en) 2020-08-31 2023-01-10 ImageKeeper, LLC Secure document certification and execution system
US11514165B2 (en) * 2020-09-18 2022-11-29 Dell Products L.P. Systems and methods for secure certificate use policies
CN112311766B (en) * 2020-09-29 2022-04-01 新华三大数据技术有限公司 Method and device for acquiring user certificate and terminal equipment
KR102474894B1 (en) * 2022-09-01 2022-12-06 (주)노르마 A virtual private network generating method providing the virtual private network by performing signature and verification based on post quantum cryptography algorithm and a virtual private network operating system performing the same

Family Cites Families (16)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
JP3905961B2 (en) 1997-11-11 2007-04-18 インターナショナル・ビジネス・マシーンズ・コーポレーション Temporary signature authentication method and system
US6189096B1 (en) * 1998-05-06 2001-02-13 Kyberpass Corporation User authentification using a virtual private key
US7039805B1 (en) 1998-05-20 2006-05-02 Messing John H Electronic signature method
US6367009B1 (en) * 1998-12-17 2002-04-02 International Business Machines Corporation Extending SSL to a multi-tier environment using delegation of authentication and authority
US8812850B2 (en) * 2000-03-02 2014-08-19 Tivo Inc. Secure multimedia transfer system
JP4586250B2 (en) * 2000-08-31 2010-11-24 ソニー株式会社 Personal identification certificate link system, information processing apparatus, information processing method, and program providing medium
US6807577B1 (en) * 2000-09-14 2004-10-19 International Business Machines Corporation System and method for network log-on by associating legacy profiles with user certificates
FR2822002B1 (en) 2001-03-12 2003-06-06 France Telecom CRYPTOGRAPHIC AUTHENTICATION BY EPHEMER MODULES
AU2002316679A1 (en) * 2001-07-12 2003-01-29 Atrua Technologies, Inc. Method and system for biometric image assembly from multiple partial biometric frame scans
JP3842100B2 (en) 2001-10-15 2006-11-08 株式会社日立製作所 Authentication processing method and system in encrypted communication system
JP2005051734A (en) 2003-07-15 2005-02-24 Hitachi Ltd Electronic document authenticity guarantee method and electronic document publication system
JP2005328408A (en) 2004-05-17 2005-11-24 Hitachi Ltd Attribute certificate attribute information encryption method
US20090055642A1 (en) * 2004-06-21 2009-02-26 Steven Myers Method, system and computer program for protecting user credentials against security attacks
EP1766848A1 (en) 2004-06-21 2007-03-28 Echoworx Corporation Method, system and computer program for protecting user credentials against security attacks
US7900247B2 (en) * 2005-03-14 2011-03-01 Microsoft Corporation Trusted third party authentication for web services
US8225096B2 (en) 2006-10-27 2012-07-17 International Business Machines Corporation System, apparatus, method, and program product for authenticating communication partner using electronic certificate containing personal information

Also Published As

Publication number Publication date
US8578167B2 (en) 2013-11-05
KR101054970B1 (en) 2011-08-05
EP2086162A4 (en) 2017-05-17
KR20090075705A (en) 2009-07-08
EP2086162A1 (en) 2009-08-05
CA2663241C (en) 2014-12-09
CN101529797A (en) 2009-09-09
WO2008050792A1 (en) 2008-05-02
US20080104401A1 (en) 2008-05-01
JP4870777B2 (en) 2012-02-08
US20120272066A1 (en) 2012-10-25
JPWO2008050792A1 (en) 2010-02-25
CA2663241A1 (en) 2008-05-02
EP2086162B1 (en) 2020-01-29
US8225096B2 (en) 2012-07-17
CN101529797B (en) 2011-12-14

Similar Documents

Publication Publication Date Title
IN2009CN02956A (en)
ATE523020T1 (en) METHOD FOR SYNCHRONIZING BETWEEN SERVER AND MOBILE DEVICE
WO2012127384A3 (en) Incorporating data into cryptographic components of an ecqv certificate
EP1895739A3 (en) Encrypting device, decrypting device, information system, encrypting method, decrypting method, and program
GB201016672D0 (en) Secure exchange/authentication of electronic documents
WO2009034815A1 (en) Account management system, base account management device, derivative account management device and program
WO2012092423A3 (en) Extending data confidentiality into a player application
SG165275A1 (en) Background service process for local collection of data in an electronic discovery system
PL2166697T3 (en) Method and system for authenticating a user by means of a mobile device
WO2009123712A3 (en) Information server and mobile delivery system and method
TW200501705A (en) Enrolling/sub-enrolling a digital rights management (DRM) server into a DRM architecture
WO2009158086A3 (en) Techniques for ensuring authentication and integrity of communications
SG152298A1 (en) System and method for sending secure messages
NZ596935A (en) Generating an encryption/decryption key by comparing data sets received from a central server
JP2009525527A5 (en)
TW200638345A (en) Unlocking a protected portable storage medium
GB201118575D0 (en) Secure data transfer device
WO2008126840A1 (en) Content use system and advertisement content use method
WO2006089160A3 (en) Videonline security network architecture and methods therefor
WO2010006331A3 (en) Method of providing secure tamper-proof acquired data from process instruments
WO2007041609A3 (en) System and method for relicensing content
EP2105857A3 (en) Method and device for generating right object, method and device for transmitting right object, and method and device for receiving right object
NZ603822A (en) Permutation data transform to enhance security
GB2430518A (en) Method of delivering direct proof private keys to devices using a distribution cd
WO2004092931A3 (en) Method and system for managing digital rights