WO1999035783A1 - Client side public key authentication method and apparatus with short-lived certificates - Google Patents
Client side public key authentication method and apparatus with short-lived certificates Download PDFInfo
- Publication number
- WO1999035783A1 WO1999035783A1 PCT/US1999/000344 US9900344W WO9935783A1 WO 1999035783 A1 WO1999035783 A1 WO 1999035783A1 US 9900344 W US9900344 W US 9900344W WO 9935783 A1 WO9935783 A1 WO 9935783A1
- Authority
- WO
- WIPO (PCT)
- Prior art keywords
- public key
- user
- computer
- key
- certificate
- Prior art date
Links
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L9/00—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
- H04L9/30—Public key, i.e. encryption algorithm being computationally infeasible to invert or user's encryption keys not requiring secrecy
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/30—Authentication, i.e. establishing the identity or authorisation of security principals
- G06F21/31—User authentication
- G06F21/33—User authentication using certificates
- G06F21/335—User authentication using certificates for accessing specific resources, e.g. using Kerberos tickets
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L9/00—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
- H04L9/08—Key distribution or management, e.g. generation, sharing or updating, of cryptographic keys or passwords
- H04L9/0816—Key establishment, i.e. cryptographic processes or cryptographic protocols whereby a shared secret becomes available to two or more parties, for subsequent use
- H04L9/0819—Key transport or distribution, i.e. key establishment techniques where one party creates or otherwise obtains a secret value, and securely transfers it to the other(s)
- H04L9/083—Key transport or distribution, i.e. key establishment techniques where one party creates or otherwise obtains a secret value, and securely transfers it to the other(s) involving central third party, e.g. key distribution center [KDC] or trusted third party [TTP]
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L9/00—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
- H04L9/32—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
- H04L9/321—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials involving a third party or a trusted authority
- H04L9/3213—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials involving a third party or a trusted authority using tickets or tokens, e.g. Kerberos
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L9/00—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
- H04L9/32—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
- H04L9/3263—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials involving certificates, e.g. public key certificate [PKC] or attribute certificate [AC]; Public key infrastructure [PKI] arrangements
- H04L9/3268—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials involving certificates, e.g. public key certificate [PKC] or attribute certificate [AC]; Public key infrastructure [PKI] arrangements using certificate validation, registration, distribution or revocation, e.g. certificate revocation list [CRL]
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F2211/00—Indexing scheme relating to details of data-processing equipment not covered by groups G06F3/00 - G06F13/00
- G06F2211/007—Encryption, En-/decode, En-/decipher, En-/decypher, Scramble, (De-)compress
- G06F2211/008—Public Key, Asymmetric Key, Asymmetric Encryption
Definitions
- kerberos refers to kerberos and any trusted third party system that shares symmetric keys with users and services.
- a kerberos-like system has been found highly useful in a number of situations, it is believed that previous kerberos-type systems typically have not been deployed so as to provide advantages associated with public key systems (such as, e.g. , digital signatures).
- public key (PK) system two corresponding (“asymmetric")keys are used in connection with protecting information. Information which is encrypted with one of the two keys can be decrypted only with the other key.
- certificate lifetime policies will be set so as to provide certificates with lifetimes sufficiently short that checking against CRL's can be reduced or eliminated without significantly diminishing overall security. Accordingly, each time the system generates (or re-signs) a certificate for this user (i.e. a certificate containing the user's public key) the certificate will have a different expiration time. Typically, a new certificate (based on identical public key) will generate only after the expiration of the previous certificate, although other protocols could also be used. Thus, the result of the present system will typically be issuance of a series or sequence of certificates for any given user (typically on a daily or workday basis) but in which the certificates for this user are not completely identical, i.e.
- the smartcard image is encrypted, for example with a private key.
- the simulated smartcard client 714 will then decrypt the smartcard image.
- the decrypted image may contain, e.g., public keys, private keys, symmetric keys, certificates and similar information. Some or all of the information (preferably including especially sensitive information such as a private key) may be encrypted under a password known only to the end user.
- blocks shown underneath the client application 514 are items which are client side items, i.e. which use or constitute software residing, typically, on a PC or other computer used by an end user, while items on the right side of the figure represent server-side items i.e.
- FIG. 8A and 8B provide two (of many) possible examples of such further operation.
- the client application 514 may, e.g., generate or store public key credentials 814 (typically using standard cryptographic API's 512).
- public key credentials are, in the embodiment of Fig. 8 A, handled in a fashion which is transparent to the client application 514.
- the simulated smartcard client 714 will send a message 816 to the simulated smartcard server 726 to update the simulated smartcard image on the server side.
- An initial password is generated for a new user and stored on the security server 718 (or a storage device couple therewith) preferably resetting the password 722 such that after the user preforms an initial log on, the password will be flagged as being in an expired state (thus forcing the user to change the password).
Abstract
Description
Claims
Priority Applications (5)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
AU24526/99A AU2452699A (en) | 1998-01-09 | 1999-01-06 | Client side public key authentication method and apparatus with short-lived certificates |
KR1020007007557A KR20010033972A (en) | 1998-01-09 | 1999-01-06 | Client side public key authentication method and apparatus with short-lived certificates |
EP99904041A EP1042885A1 (en) | 1998-01-09 | 1999-01-06 | Client side public key authentication method and apparatus with short-lived certificates |
JP2000528045A JP2002501218A (en) | 1998-01-09 | 1999-01-06 | Client-side public key authentication method and device using short-lived certificate |
CA002313328A CA2313328A1 (en) | 1998-01-09 | 1999-01-06 | Client side public key authentication method and apparatus with short-lived certificates |
Applications Claiming Priority (4)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
US7108498P | 1998-01-09 | 1998-01-09 | |
US60/071,084 | 1998-01-09 | ||
US8543798A | 1998-05-27 | 1998-05-27 | |
US09/085,437 | 1998-05-27 |
Publications (1)
Publication Number | Publication Date |
---|---|
WO1999035783A1 true WO1999035783A1 (en) | 1999-07-15 |
Family
ID=26751814
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
PCT/US1999/000344 WO1999035783A1 (en) | 1998-01-09 | 1999-01-06 | Client side public key authentication method and apparatus with short-lived certificates |
Country Status (6)
Country | Link |
---|---|
EP (1) | EP1042885A1 (en) |
JP (1) | JP2002501218A (en) |
KR (1) | KR20010033972A (en) |
AU (1) | AU2452699A (en) |
CA (1) | CA2313328A1 (en) |
WO (1) | WO1999035783A1 (en) |
Cited By (34)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
WO2000072503A1 (en) * | 1999-05-25 | 2000-11-30 | Silverbrook Research Pty Ltd | Interactive device network registration protocol |
WO2001008351A1 (en) * | 1999-07-22 | 2001-02-01 | Rsa Security Inc. | System and method for certificate exchange |
WO2001027886A1 (en) * | 1999-10-12 | 2001-04-19 | Sonera Smarttrust Oy | Distribution of certifiers |
JP2001189720A (en) * | 1999-10-19 | 2001-07-10 | Sony Corp | Enciphered communication system, token and enciphered communication method |
EP1117207A2 (en) * | 2000-01-14 | 2001-07-18 | Hewlett-Packard Company | Public key infrastructure |
EP1117204A2 (en) * | 2000-01-14 | 2001-07-18 | Hewlett-Packard Company, A Delaware Corporation | Authorization infrastructure based on public key cryptography |
WO2001052470A2 (en) * | 2000-01-14 | 2001-07-19 | Hewlett-Packard Company | Public key validation service |
EP1162781A2 (en) * | 2000-06-09 | 2001-12-12 | TRW Inc. | System and method for generation of a signature certificate in a public key infrastructure |
WO2002017557A1 (en) * | 2000-08-22 | 2002-02-28 | Smarttrust Systems Oy | Secured identity chain |
WO2002044858A2 (en) * | 2000-11-03 | 2002-06-06 | Citrix Systems, Inc. | System and method for securing a non-secure communication channel |
WO2002044874A2 (en) * | 2000-11-29 | 2002-06-06 | Schlumberger Systems Sa | Method, apparatus and computer program product for interoperable cryptographic material |
JP2002169465A (en) * | 2000-08-31 | 2002-06-14 | Sony Corp | Public key certificate utilization system, public key certificate utilization method and information processor as well as program recording medium |
WO2002065696A1 (en) * | 2001-02-14 | 2002-08-22 | Gatespace Ab | A security architecture |
WO2002067158A1 (en) * | 2001-02-17 | 2002-08-29 | Hewlett-Packard Company | Method and system for controlling the on-line supply of digital products or the access to on-line services |
EP1280041A2 (en) * | 2001-07-27 | 2003-01-29 | Hewlett-Packard Company | Authentication for computer networks |
WO2003017069A2 (en) * | 2001-08-14 | 2003-02-27 | Elan Digital Systems Limited | Data integrity |
JP2003092565A (en) * | 2001-09-17 | 2003-03-28 | Toshiba Corp | System, method, device and program for public key foundation |
EP1309214A1 (en) * | 2001-11-05 | 2003-05-07 | Nokia Corporation | Delivery of mobile station operational and self-performance test results to network in response to encrypted request message |
WO2003075539A1 (en) * | 2002-02-28 | 2003-09-12 | General Instrument Corporation | Detection of duplicate client identities in a communication system |
KR100441077B1 (en) * | 2000-06-08 | 2004-07-19 | 인터내셔널 비지네스 머신즈 코포레이션 | Method and graphical user interface for allowing independent devices to work together as a single token interface |
US6802002B1 (en) | 2000-01-14 | 2004-10-05 | Hewlett-Packard Development Company, L.P. | Method and apparatus for providing field confidentiality in digital certificates |
US6807577B1 (en) | 2000-09-14 | 2004-10-19 | International Business Machines Corporation | System and method for network log-on by associating legacy profiles with user certificates |
DE10124111B4 (en) * | 2000-05-17 | 2006-05-04 | Fujitsu Ltd., Kawasaki | System and method for distributed group management |
US7178724B2 (en) | 2003-04-21 | 2007-02-20 | Stmicroelectronics, Inc. | Smart card device and method used for transmitting and receiving secure e-mails |
US7245902B2 (en) | 2002-01-16 | 2007-07-17 | 2 Ergo Limited | Secure messaging via a mobile communications network |
US7269726B1 (en) | 2000-01-14 | 2007-09-11 | Hewlett-Packard Development Company, L.P. | Lightweight public key infrastructure employing unsigned certificates |
US7293176B2 (en) | 2000-07-17 | 2007-11-06 | Citrix Systems, Inc. | Strong mutual authentication of devices |
WO2008017913A2 (en) * | 2006-08-07 | 2008-02-14 | Nokia Corporation | Connecting a first device and a second device |
EP1521426B1 (en) * | 2003-09-30 | 2008-03-19 | Ricoh Company, Ltd. | Communication apparatus, communication system, certificate transmission method and program |
US7685630B2 (en) | 2006-05-04 | 2010-03-23 | Citrix Online, Llc | Methods and systems for providing scalable authentication |
JP2011060291A (en) * | 1999-08-31 | 2011-03-24 | American Express Travel Related Services Co Inc | Method and device for conducting electronic transactions |
JP2012032843A (en) * | 2001-08-13 | 2012-02-16 | Univ Leland Stanford Jr | System and method for id-based encryption and related cryptographic techniques |
DE10259269B4 (en) * | 2002-12-17 | 2013-10-31 | Symantec Corporation (n.d.Ges.d. Staates Delaware) | Device and method for individualized encryption and decryption as well as signature and signature verification via central components |
US8694772B2 (en) | 2008-08-04 | 2014-04-08 | Industrial Technology Research Institute | Method and system for managing network identity |
Families Citing this family (17)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
FR2810841B1 (en) * | 2000-06-22 | 2005-07-29 | Bull Cp8 | METHOD FOR THE PROCESSING AND TRANSMISSION OF DIGITAL DATA ON A MOBILE TELEPHONY NETWORK, PARTICULARLY TO THE "GSM" STANDARD, AND ON-BOARD ELECTRONIC CHIP SYSTEM |
KR20020042083A (en) * | 2000-11-30 | 2002-06-05 | 오경수 | Method for double encryption of private key and sending/receiving the private key for transportation and roaming service of the private key in the public key infrastructure |
US7100200B2 (en) * | 2001-06-13 | 2006-08-29 | Citrix Systems, Inc. | Method and apparatus for transmitting authentication credentials of a user across communication sessions |
KR100495817B1 (en) * | 2002-12-10 | 2005-06-16 | 주식회사 케이티 | system of user authentication process for wireless network and method thereof |
JP4611680B2 (en) * | 2003-07-25 | 2011-01-12 | 株式会社リコー | COMMUNICATION DEVICE, COMMUNICATION SYSTEM, COMMUNICATION METHOD, AND PROGRAM |
JP5348148B2 (en) * | 2003-07-25 | 2013-11-20 | 株式会社リコー | COMMUNICATION DEVICE, COMMUNICATION SYSTEM, COMMUNICATION METHOD, AND PROGRAM |
JP4712326B2 (en) * | 2003-07-25 | 2011-06-29 | 株式会社リコー | COMMUNICATION DEVICE, COMMUNICATION SYSTEM, COMMUNICATION METHOD, AND PROGRAM |
KR101010795B1 (en) * | 2003-11-27 | 2011-01-25 | 엘지전자 주식회사 | Multicasting method for mobile phone |
JP2005333596A (en) * | 2004-05-21 | 2005-12-02 | Toshiba Corp | Electronic application system, and electronic application apparatus |
JP5464794B2 (en) * | 2006-07-24 | 2014-04-09 | コニカミノルタ株式会社 | Network management method and network management system |
WO2010013699A1 (en) | 2008-07-28 | 2010-02-04 | 日本電気株式会社 | Signature system |
JP2011114730A (en) * | 2009-11-27 | 2011-06-09 | Cybertrust Japan Co Ltd | Mail encryption/transmission system and program |
CN115719224A (en) | 2016-01-25 | 2023-02-28 | 创新先进技术有限公司 | Credit payment method and device based on mobile terminal card simulation |
CN106997527A (en) | 2016-01-25 | 2017-08-01 | 阿里巴巴集团控股有限公司 | Credit payment method and device based on mobile terminal P2P |
JP6647259B2 (en) * | 2017-09-19 | 2020-02-14 | セコム株式会社 | Certificate management device |
SG11202008452PA (en) * | 2018-03-02 | 2020-09-29 | Nitto Denko Corp | System and method for securing data communication between computers |
JP6894469B2 (en) * | 2019-06-11 | 2021-06-30 | 株式会社ユビキタスAiコーポレーション | Information processing device and its control program |
Citations (7)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US5200999A (en) * | 1991-09-27 | 1993-04-06 | International Business Machines Corporation | Public key cryptosystem key management based on control vectors |
US5347580A (en) * | 1992-04-23 | 1994-09-13 | International Business Machines Corporation | Authentication method and system with a smartcard |
US5521966A (en) * | 1993-12-14 | 1996-05-28 | At&T Corp. | Method and system for mediating transactions that use portable smart cards |
US5655077A (en) * | 1994-12-13 | 1997-08-05 | Microsoft Corporation | Method and system for authenticating access to heterogeneous computing services |
US5687235A (en) * | 1995-10-26 | 1997-11-11 | Novell, Inc. | Certificate revocation performance optimization |
US5737419A (en) * | 1994-11-09 | 1998-04-07 | Bell Atlantic Network Services, Inc. | Computer system for securing communications using split private key asymmetric cryptography |
US5774552A (en) * | 1995-12-13 | 1998-06-30 | Ncr Corporation | Method and apparatus for retrieving X.509 certificates from an X.500 directory |
-
1999
- 1999-01-06 WO PCT/US1999/000344 patent/WO1999035783A1/en not_active Application Discontinuation
- 1999-01-06 KR KR1020007007557A patent/KR20010033972A/en not_active Application Discontinuation
- 1999-01-06 EP EP99904041A patent/EP1042885A1/en not_active Withdrawn
- 1999-01-06 CA CA002313328A patent/CA2313328A1/en not_active Abandoned
- 1999-01-06 AU AU24526/99A patent/AU2452699A/en not_active Abandoned
- 1999-01-06 JP JP2000528045A patent/JP2002501218A/en active Pending
Patent Citations (7)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US5200999A (en) * | 1991-09-27 | 1993-04-06 | International Business Machines Corporation | Public key cryptosystem key management based on control vectors |
US5347580A (en) * | 1992-04-23 | 1994-09-13 | International Business Machines Corporation | Authentication method and system with a smartcard |
US5521966A (en) * | 1993-12-14 | 1996-05-28 | At&T Corp. | Method and system for mediating transactions that use portable smart cards |
US5737419A (en) * | 1994-11-09 | 1998-04-07 | Bell Atlantic Network Services, Inc. | Computer system for securing communications using split private key asymmetric cryptography |
US5655077A (en) * | 1994-12-13 | 1997-08-05 | Microsoft Corporation | Method and system for authenticating access to heterogeneous computing services |
US5687235A (en) * | 1995-10-26 | 1997-11-11 | Novell, Inc. | Certificate revocation performance optimization |
US5774552A (en) * | 1995-12-13 | 1998-06-30 | Ncr Corporation | Method and apparatus for retrieving X.509 certificates from an X.500 directory |
Cited By (61)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US7805610B2 (en) | 1919-05-25 | 2010-09-28 | Silverbrook Research Pty Ltd | System for registration of sensing device with printer |
US7278018B2 (en) | 1999-05-25 | 2007-10-02 | Silverbrook Research Pty Ltd | Optical sensing device for reading coded data on a surface and registration network for same |
WO2000072503A1 (en) * | 1999-05-25 | 2000-11-30 | Silverbrook Research Pty Ltd | Interactive device network registration protocol |
US7360089B2 (en) | 1999-05-25 | 2008-04-15 | Silverbrook Research Pty Ltd | Registration network for optical sensing device including printer as base station |
US7529936B2 (en) | 1999-05-25 | 2009-05-05 | Silverbrook Research Pty Ltd | Registration network for an optical sensing device |
US6789191B1 (en) | 1999-05-25 | 2004-09-07 | Silverbrook Research Pty Ltd | Interactive device network registration protocol |
US7461250B1 (en) | 1999-07-22 | 2008-12-02 | Rsa Security, Inc. | System and method for certificate exchange |
WO2001008351A1 (en) * | 1999-07-22 | 2001-02-01 | Rsa Security Inc. | System and method for certificate exchange |
JP2011060291A (en) * | 1999-08-31 | 2011-03-24 | American Express Travel Related Services Co Inc | Method and device for conducting electronic transactions |
WO2001027886A1 (en) * | 1999-10-12 | 2001-04-19 | Sonera Smarttrust Oy | Distribution of certifiers |
JP2001189720A (en) * | 1999-10-19 | 2001-07-10 | Sony Corp | Enciphered communication system, token and enciphered communication method |
WO2001052470A3 (en) * | 2000-01-14 | 2002-01-17 | Hewlett Packard Co | Public key validation service |
EP1117204A2 (en) * | 2000-01-14 | 2001-07-18 | Hewlett-Packard Company, A Delaware Corporation | Authorization infrastructure based on public key cryptography |
US7340600B1 (en) | 2000-01-14 | 2008-03-04 | Hewlett-Packard Development Company, L.P. | Authorization infrastructure based on public key cryptography |
US7010683B2 (en) | 2000-01-14 | 2006-03-07 | Howlett-Packard Development Company, L.P. | Public key validation service |
EP1117207A2 (en) * | 2000-01-14 | 2001-07-18 | Hewlett-Packard Company | Public key infrastructure |
US6802002B1 (en) | 2000-01-14 | 2004-10-05 | Hewlett-Packard Development Company, L.P. | Method and apparatus for providing field confidentiality in digital certificates |
US7269726B1 (en) | 2000-01-14 | 2007-09-11 | Hewlett-Packard Development Company, L.P. | Lightweight public key infrastructure employing unsigned certificates |
EP1117204A3 (en) * | 2000-01-14 | 2003-10-01 | Hewlett-Packard Company, A Delaware Corporation | Authorization infrastructure based on public key cryptography |
WO2001052470A2 (en) * | 2000-01-14 | 2001-07-19 | Hewlett-Packard Company | Public key validation service |
EP1117207A3 (en) * | 2000-01-14 | 2002-10-09 | Hewlett-Packard Company | Public key infrastructure |
US6763459B1 (en) | 2000-01-14 | 2004-07-13 | Hewlett-Packard Company, L.P. | Lightweight public key infrastructure employing disposable certificates |
US7185194B2 (en) | 2000-05-17 | 2007-02-27 | Fujitsu Limited | System and method for distributed group management |
DE10124111B4 (en) * | 2000-05-17 | 2006-05-04 | Fujitsu Ltd., Kawasaki | System and method for distributed group management |
KR100441077B1 (en) * | 2000-06-08 | 2004-07-19 | 인터내셔널 비지네스 머신즈 코포레이션 | Method and graphical user interface for allowing independent devices to work together as a single token interface |
EP1162781A3 (en) * | 2000-06-09 | 2003-05-28 | TRW Inc. | System and method for generation of a signature certificate in a public key infrastructure |
EP1162781A2 (en) * | 2000-06-09 | 2001-12-12 | TRW Inc. | System and method for generation of a signature certificate in a public key infrastructure |
US7293176B2 (en) | 2000-07-17 | 2007-11-06 | Citrix Systems, Inc. | Strong mutual authentication of devices |
WO2002017557A1 (en) * | 2000-08-22 | 2002-02-28 | Smarttrust Systems Oy | Secured identity chain |
JP4626033B2 (en) * | 2000-08-31 | 2011-02-02 | ソニー株式会社 | Public key certificate utilization system, public key certificate utilization method, information processing apparatus, and program providing medium |
JP2002169465A (en) * | 2000-08-31 | 2002-06-14 | Sony Corp | Public key certificate utilization system, public key certificate utilization method and information processor as well as program recording medium |
US6807577B1 (en) | 2000-09-14 | 2004-10-19 | International Business Machines Corporation | System and method for network log-on by associating legacy profiles with user certificates |
WO2002044858A3 (en) * | 2000-11-03 | 2003-05-01 | Citrix Systems Inc | System and method for securing a non-secure communication channel |
AU2002235149B2 (en) * | 2000-11-03 | 2005-12-01 | Citrix Systems, Inc. | System and method for securing a non-secure communication channel |
US6986040B1 (en) | 2000-11-03 | 2006-01-10 | Citrix Systems, Inc. | System and method of exploiting the security of a secure communication channel to secure a non-secure communication channel |
WO2002044858A2 (en) * | 2000-11-03 | 2002-06-06 | Citrix Systems, Inc. | System and method for securing a non-secure communication channel |
WO2002044874A3 (en) * | 2000-11-29 | 2003-07-31 | Schlumberger Systems Sa | Method, apparatus and computer program product for interoperable cryptographic material |
WO2002044874A2 (en) * | 2000-11-29 | 2002-06-06 | Schlumberger Systems Sa | Method, apparatus and computer program product for interoperable cryptographic material |
WO2002065696A1 (en) * | 2001-02-14 | 2002-08-22 | Gatespace Ab | A security architecture |
WO2002067158A1 (en) * | 2001-02-17 | 2002-08-29 | Hewlett-Packard Company | Method and system for controlling the on-line supply of digital products or the access to on-line services |
EP1280041A3 (en) * | 2001-07-27 | 2003-04-23 | Hewlett-Packard Company | Authentication for computer networks |
EP1280041A2 (en) * | 2001-07-27 | 2003-01-29 | Hewlett-Packard Company | Authentication for computer networks |
US9356779B2 (en) | 2001-08-13 | 2016-05-31 | The Board Of Trustees Of The Leland Stanford Junior University | Systems and methods for identity-based encryption and related cryptographic techniques |
JP2012032843A (en) * | 2001-08-13 | 2012-02-16 | Univ Leland Stanford Jr | System and method for id-based encryption and related cryptographic techniques |
WO2003017069A3 (en) * | 2001-08-14 | 2004-05-21 | Elan Digital Systems Ltd | Data integrity |
WO2003017069A2 (en) * | 2001-08-14 | 2003-02-27 | Elan Digital Systems Limited | Data integrity |
EP1310923A3 (en) * | 2001-09-17 | 2004-04-07 | Kabushiki Kaisha Toshiba | Public key infrastructure (PKI) based system, method, device and program |
JP2003092565A (en) * | 2001-09-17 | 2003-03-28 | Toshiba Corp | System, method, device and program for public key foundation |
KR100451879B1 (en) * | 2001-09-17 | 2004-10-08 | 가부시끼가이샤 도시바 | Public key infrastructure(pki)-based system, method and device, and recording medium |
EP1309214A1 (en) * | 2001-11-05 | 2003-05-07 | Nokia Corporation | Delivery of mobile station operational and self-performance test results to network in response to encrypted request message |
US7369846B2 (en) | 2001-11-05 | 2008-05-06 | Nokia Corporation | Delivery of mobile station operational and self-performance test results to network in response to encrypted request message |
US7245902B2 (en) | 2002-01-16 | 2007-07-17 | 2 Ergo Limited | Secure messaging via a mobile communications network |
WO2003075539A1 (en) * | 2002-02-28 | 2003-09-12 | General Instrument Corporation | Detection of duplicate client identities in a communication system |
DE10259269B4 (en) * | 2002-12-17 | 2013-10-31 | Symantec Corporation (n.d.Ges.d. Staates Delaware) | Device and method for individualized encryption and decryption as well as signature and signature verification via central components |
US7178724B2 (en) | 2003-04-21 | 2007-02-20 | Stmicroelectronics, Inc. | Smart card device and method used for transmitting and receiving secure e-mails |
EP1521426B1 (en) * | 2003-09-30 | 2008-03-19 | Ricoh Company, Ltd. | Communication apparatus, communication system, certificate transmission method and program |
US8015399B2 (en) | 2003-09-30 | 2011-09-06 | Ricoh Company, Ltd. | Communication apparatus, communication system, certificate transmission method and program |
US7685630B2 (en) | 2006-05-04 | 2010-03-23 | Citrix Online, Llc | Methods and systems for providing scalable authentication |
WO2008017913A3 (en) * | 2006-08-07 | 2008-04-10 | Nokia Corp | Connecting a first device and a second device |
WO2008017913A2 (en) * | 2006-08-07 | 2008-02-14 | Nokia Corporation | Connecting a first device and a second device |
US8694772B2 (en) | 2008-08-04 | 2014-04-08 | Industrial Technology Research Institute | Method and system for managing network identity |
Also Published As
Publication number | Publication date |
---|---|
KR20010033972A (en) | 2001-04-25 |
AU2452699A (en) | 1999-07-26 |
JP2002501218A (en) | 2002-01-15 |
EP1042885A1 (en) | 2000-10-11 |
CA2313328A1 (en) | 1999-07-15 |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
WO1999035783A1 (en) | Client side public key authentication method and apparatus with short-lived certificates | |
US9544297B2 (en) | Method for secured data processing | |
US6317829B1 (en) | Public key cryptography based security system to facilitate secure roaming of users | |
US7624269B2 (en) | Secure messaging system with derived keys | |
US8281136B2 (en) | Techniques for key distribution for use in encrypted communications | |
US7395549B1 (en) | Method and apparatus for providing a key distribution center without storing long-term server secrets | |
EP0695985B1 (en) | Logon certificates | |
US7890767B2 (en) | Virtual smart card system and method | |
EP1500226B1 (en) | System and method for storage and retrieval of a cryptographic secret from a plurality of network enabled clients | |
US6826686B1 (en) | Method and apparatus for secure password transmission and password changes | |
US6092201A (en) | Method and apparatus for extending secure communication operations via a shared list | |
US8315393B2 (en) | System for on-line and off-line decryption | |
US8302171B2 (en) | System and method for privilege delegation and control | |
US7698565B1 (en) | Crypto-proxy server and method of using the same | |
US20030115452A1 (en) | One time password entry to access multiple network sites | |
US20020087862A1 (en) | Trusted intermediary | |
US7065642B2 (en) | System and method for generation and use of asymmetric crypto-keys each having a public portion and multiple private portions | |
GB2385955A (en) | Key certification using certificate chains | |
US7412059B1 (en) | Public-key encryption system | |
Zhou et al. | An efficient public-key framework | |
Alagappan et al. | SPX Guide | |
Macdonell | MiniCA: A web-based certificate authority |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
AK | Designated states |
Kind code of ref document: A1 Designated state(s): AL AM AT AU AZ BA BB BG BR BY CA CH CN CU CZ DE DK EE ES FI GB GD GE GH GM HR HU ID IL IN IS JP KE KG KP KR KZ LC LK LR LS LT LU LV MD MG MK MN MW MX NO NZ PL PT RO RU SD SE SG SI SK SL TJ TM TR TT UA UG UZ VN YU ZW |
|
AL | Designated countries for regional patents |
Kind code of ref document: A1 Designated state(s): GH GM KE LS MW SD SZ UG ZW AM AZ BY KG KZ MD RU TJ TM AT BE CH CY DE DK ES FI FR GB GR IE IT LU MC NL PT SE BF BJ CF CG CI CM GA GN GW ML MR NE SN TD TG |
|
121 | Ep: the epo has been informed by wipo that ep was designated in this application | ||
DFPE | Request for preliminary examination filed prior to expiration of 19th month from priority date (pct application filed before 20040101) | ||
WWE | Wipo information: entry into national phase |
Ref document number: 09462365 Country of ref document: US |
|
WWE | Wipo information: entry into national phase |
Ref document number: 24526/99 Country of ref document: AU |
|
WWE | Wipo information: entry into national phase |
Ref document number: 1999904041 Country of ref document: EP |
|
ENP | Entry into the national phase |
Ref document number: 2313328 Country of ref document: CA Ref country code: CA Ref document number: 2313328 Kind code of ref document: A Format of ref document f/p: F |
|
WWE | Wipo information: entry into national phase |
Ref document number: 1020007007557 Country of ref document: KR |
|
ENP | Entry into the national phase |
Ref country code: JP Ref document number: 2000 528045 Kind code of ref document: A Format of ref document f/p: F |
|
WWP | Wipo information: published in national office |
Ref document number: 1999904041 Country of ref document: EP |
|
REG | Reference to national code |
Ref country code: DE Ref legal event code: 8642 |
|
WWP | Wipo information: published in national office |
Ref document number: 1020007007557 Country of ref document: KR |
|
WWW | Wipo information: withdrawn in national office |
Ref document number: 1999904041 Country of ref document: EP |
|
WWW | Wipo information: withdrawn in national office |
Ref document number: 1020007007557 Country of ref document: KR |