CN109905243A - A kind of method and server of the request of processing updating digital certificate - Google Patents
A kind of method and server of the request of processing updating digital certificate Download PDFInfo
- Publication number
- CN109905243A CN109905243A CN201711308434.8A CN201711308434A CN109905243A CN 109905243 A CN109905243 A CN 109905243A CN 201711308434 A CN201711308434 A CN 201711308434A CN 109905243 A CN109905243 A CN 109905243A
- Authority
- CN
- China
- Prior art keywords
- request
- digital certificate
- update
- abstract
- updating
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Granted
Links
Landscapes
- Management, Administration, Business Operations System, And Electronic Commerce (AREA)
Abstract
The embodiment of the present invention provides the method and server of a kind of processing updating digital certificate request, for solving the poor technical problem of updating digital certificate is requested at digital certificate management center in the prior art treatment effect.This method comprises: the updating digital certificate that receiving terminal apparatus is sent is requested, the information for the digital certificate that the premises equipment requests update is carried in the updating digital certificate request;According to the information of the digital certificate, generates the updating digital certificate and request corresponding update request abstract;Wherein, the request abstract is for the request of updating digital certificate described in unique identification;It searches in buffer queue and makes a summary with the presence or absence of the request to match with the update request abstract;Wherein, the request abstract corresponding to the request of historical figures certificate update is stored in the buffer queue;If it does not exist, the digital certificate is updated according to updating digital certificate request.
Description
Technical field
The present invention relates to field of communication security, in particular to a kind of the method and service of the request of processing updating digital certificate
Device.
Background technique
Digital certificate is the volume of data of mark communication each side's identity information in network communication, it is by authoritative institution-
The distribution of the certificate granting center (Certificate Authority, CA), digital certificate can be used in a network to know in people
Not Tong Xun other side identity.
Currently, mainly digital certificate is managed and is applied by mobile device, mobile device is in managing digital certificate
During, it can be related to updating the scene of mobile phone terminal digital certificate.Pass through nothing in mobile device and digital certificate management center
When gauze network is communicated, it often will appear the network failures such as network communication quality is poor or network communication is interrupted, therefore, movement is set
Standby user, which may need repeatedly to attempt to retransmit, updates certificate request;Certainly, under normal circumstances, mobile device user is being sent out
When sending update certificate request, it is also possible to since maloperation can repeatedly send duplicate update certificate request.In digital certificate management
The heart, if dealing with improperly, will cause to updating digital certificate after receiving mobile device and repeating the update certificate request sent
Error handle.For example, digital certificate management center may reprocess digital certificate, so as to cause more new authentication
Validity period amplification, updates being deviated for anticipation;Alternatively, after some need digital certificate to nullify, in the processing issued licence again,
Later repetitive requests may find that the certificate being updated has been canceled, to occur updating the feelings of certificate request mistake
Condition.
Therefore, the treatment effect that updating digital certificate is requested at digital certificate management center in the prior art is poor.
Summary of the invention
The embodiment of the present invention provides the method and server of a kind of processing updating digital certificate request, for solving existing skill
The poor technical problem of the treatment effect that updating digital certificate is requested at digital certificate management center in art.
In a first aspect, the embodiment of the present invention provides a kind of method of processing updating digital certificate request, comprising the following steps:
The updating digital certificate that receiving terminal apparatus is sent is requested, and carries the end in the updating digital certificate request
The information for the digital certificate that end equipment request updates;
According to the information of the digital certificate, generates the updating digital certificate and request corresponding update request abstract;Its
In, the request abstract is for the request of updating digital certificate described in unique identification;
It searches in buffer queue and makes a summary with the presence or absence of the request to match with the update request abstract;Wherein, described slow
Deposit the request abstract being stored in queue corresponding to the request of historical figures certificate update;
If it does not exist, the digital certificate is updated according to updating digital certificate request.
Optionally, if it does not exist, the digital certificate is updated according to updating digital certificate request, comprising:
If it is determined that the not no request abstract existed with the update request digests match in the buffer queue, according to described
The information of digital certificate verifies the digital certificate in updating digital certificate request;
Determine that the digital certificate by verifying, updates the digital certificate.
Optionally, if it does not exist, before updating the digital certificate according to updating digital certificate request, the side
Method further include:
Abstract is requested to be stored in the buffer queue update;
After updating the digital certificate according to updating digital certificate request, the method also includes:
Update request abstract is associated with updated digital certificate.
Optionally, it is made a summary with the presence or absence of the request to match with the update request abstract in searching buffer queue
Afterwards, the method also includes:
Successfully request to make a summary with updates request digests match if existing in the buffer queue, it is determining and it is described more
The new successful destination request abstract of request digests match;
Obtain the processing status of the destination request abstract;Wherein, the processing status is used to indicate the destination request
The disposition that corresponding historical figures certificate update of making a summary is requested;
According to the processing status, generates and sent to the terminal device corresponding with updating digital certificate request
Feedback information.
Optionally, it according to the processing status, generates and is sent to the terminal device and asked with the updating digital certificate
Seek corresponding feedback information, comprising:
If the processing status is processing carry out state, generates and be used to indicate the number to mobile terminal transmission
Certificate update request carries out the feedback information of state in the processing;Or
If the processing status is end state, obtains the destination request and make a summary the digital certificate of corresponding update, it is raw
Mobile terminal described in Cheng Bingxiang sends the feedback information of the digital certificate including the update.
Optionally, the information of the digital certificate includes sequence number, public key and safe subject information.
Second aspect, the present invention provide a kind of server in real time, comprising:
Receiving module, for the updating digital certificate request that receiving terminal apparatus is sent, the updating digital certificate request
In carry the information of the digital certificate that the premises equipment requests update;
It is corresponding more to generate the updating digital certificate request for the information according to the digital certificate for generation module
New request abstract;Wherein, the request abstract is for the request of updating digital certificate described in unique identification;
Operation module is plucked for searching in buffer queue with the presence or absence of the request to match with the update request abstract
It wants;Wherein, the request abstract corresponding to the request of historical figures certificate update is stored in the buffer queue;
Update module updates the request for requesting abstract to match abstract with described if being not present for the buffer queue,
The digital certificate is updated according to updating digital certificate request.
Optionally, the update module is used for:
If it is determined that the not no request abstract existed with the update request digests match in the buffer queue, according to described
The information of digital certificate verifies the digital certificate in updating digital certificate request;
Determine that the digital certificate by verifying, updates the digital certificate.
Optionally, the operation module is also used to:
Before updating the digital certificate according to updating digital certificate request, abstract deposit is requested into the update
The buffer queue;And after updating the digital certificate according to updating digital certificate request, the update is asked
Abstract is asked to be associated with updated digital certificate.
Optionally, the operation module is also used to:
After whether there is the request abstract to match with the update request abstract in searching buffer queue, if described
Exist in buffer queue and successfully requests to make a summary with update request digests match, it is determining to request digests match with the update
Successful destination request abstract;
Obtain the processing status of the destination request abstract;Wherein, the processing status is used to indicate the destination request
The disposition that corresponding historical figures certificate update of making a summary is requested;
According to the processing status, generates and sent to the terminal device corresponding with updating digital certificate request
Feedback information.
Optionally, the operation module is also used to:
If the processing status is processing carry out state, generates and be used to indicate the number to mobile terminal transmission
Certificate update request carries out the feedback information of state in the processing;Or
If the processing status is end state, obtains the destination request and make a summary the digital certificate of corresponding update, it is raw
Mobile terminal described in Cheng Bingxiang sends the feedback information of the digital certificate including the update.
Optionally, the information of the digital certificate includes sequence number, public key and safe subject information.
The third aspect, the embodiment of the present invention provide a kind of computer installation, and the computer installation includes processor, described
Method as described in relation to the first aspect is realized when processor is for executing the computer program stored in memory.
Fourth aspect, the embodiment of the present invention provide a kind of computer readable storage medium, the computer-readable storage medium
Matter is stored with computer instruction, when described instruction is run on computers, so that computer executes as described in relation to the first aspect
Method.
In the embodiment of the present invention, in the updating digital certificate request for receiving terminal device, by according to digital certificate
The information for updating the digital certificate that request carries, which generates to update, requests corresponding update request abstract, and then by determining caching team
There is identical update request abstract in column right, that is, can determine whether updating digital certificate request is that terminal device repeats to submit
Request, and in determining buffer queue there is no identical updates request make a summary when, can be requested according to updating digital certificate
Digital certificate is updated, thus the case where avoiding the occurrence of the error handle to the updating digital certificate request for repeating to submit,
Improve the accuracy to updating digital certificate.
Detailed description of the invention
Fig. 1 is the flow chart of the method for processing updating digital certificate request in the embodiment of the present invention;
Fig. 2 is the flow diagram that processing updates certificate request in the embodiment of the present invention;
Fig. 3 is the structure chart of the server of processing updating digital certificate request in the embodiment of the present invention;
Fig. 4 is the structure chart of computer installation in the embodiment of the present invention.
Specific embodiment
To make the objectives, technical solutions, and advantages of the present invention clearer, below in conjunction with attached drawing to the present invention make into
It is described in detail to one step, it is clear that the described embodiments are only some of the embodiments of the present invention, rather than whole implementation
Example.Based on the embodiments of the present invention, obtained by those of ordinary skill in the art without making creative efforts
All other embodiment, shall fall within the protection scope of the present invention.
Technical solution described herein can be used for digital certificate management centring system, the specific can be that for number card
Server in book administrative center system, such as CA central server.
Firstly, the part term in the embodiment of the present invention is explained, in order to those skilled in the art understand that.
(1) server can be the server of the computer room of ca authentication mechanism or the server of Private Enterprise CA,
It can be used for managing digital certificate, such as server can be the public key grant a certificate of user by CA system, alternatively, server
Corresponding digital certificate can also be updated according to the request of the certificate update of mobile terminal, etc..
(2) terminal device can be the equipment with wireless communication function.Terminal device can function by wireless communication
It is attached and communicates with server, such as send updating digital certificate request to server.The terminal device can be through wireless
Access net (Radio Access Network, RAN) is communicated with core net.The terminal device may include user equipment
(User Equipment, UE), wireless terminal device, mobile terminal device, subscriber unit (Subscriber Unit), subscriber
Stand (Subscriber Station), movement station (Mobile Station), mobile station (Mobile), distant station (Remote
Station), access point (Access Point, AP), remote terminal equipment (Remote Terminal), access terminal equipment
(Access Terminal), subscriber terminal equipment (User Terminal), user agent (User Agent) or user equipment
(User Device) etc..For example, may include mobile phone (or being " honeycomb " phone), the meter with mobile terminal device
Calculation machine, portable, pocket, hand-held, built-in computer or vehicle-mounted mobile device, intelligent wearable equipment etc..Example
Such as, personal communication service (Personal Communication Service, PCS) phone, wireless phone, Session initiation Protocol
(SIP) phone, wireless local loop (Wireless Local Loop, WLL) are stood, personal digital assistant (Personal
Digital Assistant, PDA), smartwatch, intelligent helmet, intelligent glasses, Intelligent bracelet, etc. equipment.It further include being limited
Equipment, such as the lower equipment of power consumption or the limited equipment of storage capacity or the limited equipment of computing capability etc..For example including
The information sensing devices such as bar code, radio frequency identification (RFID), sensor, global positioning system (GPS), laser scanner.
In the following, introducing the technical solution of the embodiment of the present invention in conjunction with attached drawing and preferred embodiment.
Embodiment one
As shown in Figure 1, the embodiment of the present invention provides a kind of method of processing updating digital certificate request, this method can be answered
For above-mentioned terminal device, this method can be described as follows:
S11: the updating digital certificate that server receiving terminal equipment is sent is requested, and is carried in updating digital certificate request
The information for the digital certificate that premises equipment requests update.
In the embodiment of the present invention, the server in digital certificate management centring system can receive the number of terminal device transmission
The request of word certificate update.In practical applications, it is abnormal in network, terminal device is identical there may be transmission is repeated several times
Certificate request is updated, alternatively, lead to user misoperation because headend equipment design is improper in the normal situation of network, so as to
There can be the request for being repeated several times and sending more new authentication.
In the embodiment of the present invention, the information of the digital certificate carried in updating digital certificate request may include essential information
And other information, wherein essential information includes that information, the other informations such as the sequence number, safe theme, public key of certificate may include
The validity period of timestamp, digital certificate that updating digital certificate request generates and effective status etc..
S12: server generates updating digital certificate and requests corresponding update request abstract according to the information of digital certificate;
Wherein, request abstract is updated for the corresponding updating digital certificate request of unique identification.
In the embodiment of the present invention, server after receiving updating digital certificate request, ask by available updating digital certificate
The information of digital certificate in asking, the public key of sequence number, digital certificate subject, digital certificate including digital certificate.
In turn, server can be common by the public key to the sequence number of acquisition, digital certificate subject and digital certificate
Hash operation is carried out, that is, produces updating digital certificate and requests corresponding update request abstract.Update request abstract can be right
Updating digital certificate requests the digital certificate updated uniquely to be identified, that is to say, that digital certificate has unique
Property, then it can be used to request update unique mark for characterizing the update request abstract of updating digital certificate request, have
The update request of same request abstract is as requested corresponding to the update of same digital certificate.
In the embodiment of the present invention, entrained according to the update request for same digital certificate (with same sequence number)
The information of digital certificate, update request abstract generated are also identical.Therefore, server is subsequent can be according to updating digital certificate
Corresponding abstract is requested to determine whether received updating digital certificate request is the update request for repeating to submit, so as to according to determination
As a result respective handling is carried out.
S13: server is searched in buffer queue and is made a summary with the presence or absence of the request to match with update request abstract;Wherein,
The request abstract corresponding to the request of historical figures certificate update is stored in buffer queue.
In the embodiment of the present invention, buffer queue can be server and generate and cache according to the update of historical reception request
Update request abstract, each update request abstract in buffer queue has uniqueness, and corresponds to and be directed to same significant figure
The update of word certificate is requested.
In practical applications, the request abstract stored in buffer queue, can be server according to the number of historical reception
Certificate update requests historical requests abstract generated, such as server to receive according in the preset time period at current time
The updating digital certificate arrived requests request abstract generated, and the range of the preset time period can have larger time window model
It encloses, can be completely covered, so that certificate update request be avoided to repeat the case where submitting.
Server can search whether that there are identical request abstracts according to request abstract is updated in buffer queue, with true
Whether fixed currently received updating digital certificate request is that mobile terminal repeats the update sent request, and identical update request pair
The request abstract answered is with uniformity, therefore when judgement repeats to submit request, it is only necessary to it has been searched whether in buffer queue identical
Request abstract, without dependent on submit request user, effectively increase determine repeat submit request efficiency and
Accuracy.
S14: if it does not exist, server requests to update digital certificate according to updating digital certificate.
In the embodiment of the present invention, if server by searching for buffer queue, determines not include asking in buffer queue with update
The identical request abstract of abstract is sought, it may be considered that the request of received updating digital certificate is not the update request for repeating to submit,
At this point, server, which can will update, requests abstract deposit buffer queue, and is demonstrate,proved according to updating digital certificate request corresponding number
Book is updated.
When being updated to digital certificate, can be requested first according to updating digital certificate in digital certificate information pair
Whether digital certificate to be updated is verified, be valid certificate with the digital certificate for determining that premises equipment requests update.
Specifically, when the validity to digital certificate is verified, the verifying of the term of validity including digital certificate
With the verifying of digital certificate effective status.If it is determined that digital certificate is within term of validity, and digital certificate is in effective status, then
Digital certificate is valid certificate, is otherwise invalid certificates.
Then, if it is valid certificate that server, which determines that updating digital certificate requests corresponding digital certificate, according to request
Digital certificate is updated.For example, updating digital certificate can be requested to generate corresponding more new business, submit the center CA to phase
The digital certificate answered is updated, while being nullified and being updated certificate, and new digital certificate is generated.
Finally, server can get updated number card, and updated digital certificate is sent to terminal device.
In the embodiment of the present invention, server can also establish updated digital certificate after being updated to digital certificate
Being associated with for abstract is requested with updating, corresponding digital certificate can be determined by request abstract so as to subsequent.
After S13, however, it is determined that exist in buffer queue and successfully request to make a summary with update request digests match, then show
Updating digital certificate request be terminal device repeat issue update request, i.e., server in preset time period before
Receive the historical figures certificate update request for the update of same digital certificate.
Since server may be handled to received historical figures certificate update request before, such as basis
Request is updated digital certificate etc..It is then successful with update request digests match in the available buffer queue of server
Destination request abstract, and determine the corresponding processing status of destination request abstract.In turn, it can be directed to according to processing status determination
Updating digital certificate requests corresponding feedback information, and feedback information can indicate that server is directed to the phase of updating digital certificate request
Disposition is answered, alternatively, being also possible to indicate that the updating digital certificate requests corresponding update result.Wherein, server is in root
When handling according to the processing status of destination request abstract updating digital certificate request, following two feelings are included but are not limited to
Condition:
Situation one: the processing status for requesting abstract is just in processing status.
Show that server carries out the updating digital certificate request for corresponding to historical requests abstract of historical reception
Processing carries out at this point, server can be generated and be used to indicate updating digital certificate request to terminal device transmission in processing
The feedback information of state returns to the prompt information handled to terminal device.
Situation two: the processing status for requesting abstract is end state.
Show that server corresponding history of having completed to make a summary to destination request updates the processing of request, at this point, service
Device can obtain destination request and make a summary the digital certificate of corresponding update according to request abstract and the incidence relation of digital certificate.
In turn, server can generate according to the digital certificate of update and send the feedback of the digital certificate including updating to mobile terminal
Information.
Therefore, server has existed in determining buffer queue and updates the identical destination request abstract of request abstract
When, by the corresponding processing status of inquiry destination request abstract, to determine the feedback for current updating digital certificate request
Information, to indicate the disposition for updating digital certificate request, the update without repeating to send according to terminal device is asked
It asks and digital certificate is reprocessed, guarantee that any time, only one was processed for the update request of digital certificate.
It should be noted that not including in determining buffer queue and updating request abstract phase in the embodiment of the present invention
In the case where the request abstract matched, storage can also be arrived buffer queue when starting to process updating digital certificate request by server
In update request abstract processing status be set as " processing ", in turn, end processing updating digital certificate request when,
Can by update request abstract processing status " ending processing " is changed to by " processing ", and establish update request abstract with more
The connection of new authentication after new.And includes the case where in determining buffer queue and update the request abstract for requesting abstract to match
Under, updating request abstract with destination request abstract can have identical summary identification, the place that terminal is made a summary by destination request
Reason state can determine corresponding feedback information, while can also will update request abstract and be deleted or abandoned.
Below by the application scenarios for illustrating the present invention technical solution in embodiment.
As shown in Fig. 2, the server in digital certificate centring system receives the needle that user is sent by mobile terminal APP
To the update certificate request of digital certificate, and then obtain from request the information of digital certificate, including sequence number, safe theme and
The information such as public key, and generate update request abstract.
In turn, server requests abstract to be searched with the presence or absence of identical request abstract in buffer queue, with true according to update
Whether the fixed update certificate request is that mobile terminal repeats the request submitted, and there are following two situations:
1. there is no identical requests to make a summary in buffer queue, show that updating certificate request is not that mobile terminal repeats to submit
Request.
It is requested in abstract deposit buffer queue at this point, server will update, and certificate update is requested to submit and is continued below
Processing, such as by the validity of RA verifying digital certificate, when determining that digital certificate is effective, pass through the center CA and update number card
Book, and updated digital certificate is associated with the corresponding update of caching request abstract.
Handle certificate update request during, server can also to mobile terminal feedback request handle as a result,
Such as when server starts to process and updates certificate request, the corresponding processing status of request abstract will be updated and be set as locating
Reason, such as the status indicator of setting processing status is " 1 (indicating normal processing status) ", and whole to movement according to the status indicator
Hold feedback prompts information, such as " handling and updating certificate request ".
Further, server will update the corresponding processing status of request abstract and be arranged when completing to certificate request is updated
For processed end, such as the status indicator of processing status is changed into " 0 (processing is completed in expression) " by " 1 ", and to movement
The information of terminal feedback characterization processing result, such as feedback include the information of the certificate request updated, and/or, instruction is completed
Update the information of processing.
2. showing that updating certificate request is that mobile terminal repeats asking for submission there are identical request abstract in buffer queue
It asks.
At this point, server can further check the corresponding processing status of same request abstract of caching, work as processing status
When to handle, then returns to update request and handling prompt information;It, then can be to shifting when processing status is to have ended processing
The result that dynamic terminal feedback digital certificate has been updated.
Embodiment two
Based on the same inventive concept, the embodiment of the present invention also provides a kind of server, which can execute embodiment
The method of updating digital certificate request is handled in one.As shown in figure 3, the server includes receiving module 21, generation module 22, behaviour
Make module 23 and update module 24.
Receiving module 21 can be used for the updating digital certificate request of receiving terminal apparatus transmission, the updating digital certificate
The information for the digital certificate that the premises equipment requests update is carried in request.
Generation module 22 can be used for the information according to the digital certificate, generates the updating digital certificate request and corresponds to
Request abstract;Wherein, the request abstract is for the request of updating digital certificate described in unique identification.
Operation module 23 can be used for searching in buffer queue asks with the presence or absence of with what the update request abstract matched
Seek abstract;Wherein, the request abstract corresponding to the request of historical figures certificate update is stored in the buffer queue.
It is not present and the request for updating request abstract and matching if update module 24 can be used for the buffer queue
Abstract updates the digital certificate according to updating digital certificate request.
Optionally, the update module 24 is used for:
If it is determined that the not no request abstract existed with the update request digests match in the buffer queue, according to described
The information of digital certificate verifies the digital certificate in updating digital certificate request;
Determine that the digital certificate by verifying, updates the digital certificate.
Optionally, the operation module 23 is also used to:
Before updating the digital certificate according to updating digital certificate request, abstract deposit is requested into the update
The buffer queue;And after updating the digital certificate according to updating digital certificate request, the update is asked
Abstract is asked to be associated with updated digital certificate.
Optionally, the operation module 23 is also used to:
After whether there is the request abstract to match with the update request abstract in searching buffer queue, if described
Exist in buffer queue and successfully requests to make a summary with update request digests match, it is determining to request digests match with the update
Successful destination request abstract;
Obtain the processing status of the destination request abstract;Wherein, the processing status is used to indicate the destination request
The disposition that corresponding historical figures certificate update of making a summary is requested;
According to the processing status, generates and sent to the terminal device corresponding with updating digital certificate request
Feedback information.
Optionally, the operation module 23 is also used to:
If the processing status is processing carry out state, generates and be used to indicate the number to mobile terminal transmission
Certificate update request carries out the feedback information of state in the processing;Or
If the processing status is end state, obtains the destination request and make a summary the digital certificate of corresponding update, it is raw
Mobile terminal described in Cheng Bingxiang sends the feedback information of the digital certificate including the update.
Optionally, the information of the digital certificate includes sequence number, public key and safe subject information.
Embodiment three
A kind of computer installation is also provided in the embodiment of the present invention, structure is as shown in figure 4, the computer installation includes place
Manage device 31 and memory 32, wherein the present invention is realized when processor 31 is for executing the computer program stored in memory 32
The step of method of the processing updating digital certificate request provided in embodiment one.
Optionally, processor 31 specifically can be central processing unit, application-specific integrated circuit (Application
Specific Integrated Circuit, ASIC), it can be one or more integrated circuits executed for controlling program,
It can be the hardware electricity of use site programmable gate array (Field Programmable Gate Array, FPGA) exploitation
Road can be baseband processor.
Optionally, processor 31 may include at least one processing core.
Optionally, electronic equipment further includes memory 32, and memory 32 may include read-only memory (Read Only
Memory, ROM), random access memory (Random Access Memory, RAM) and magnetic disk storage.Memory 32 is used for
The data required when running of storage processor 31.The quantity of memory 32 is one or more.
Example IV
A kind of computer readable storage medium is also provided in the embodiment of the present invention, which has
Computer instruction may be implemented the present invention such as when computer instruction instruction is run on computers and implement the processing that an example provides
The step of method of updating digital certificate request.
In embodiments of the present invention, it should be understood that the method and server of disclosed processing updating digital certificate request,
It may be implemented in other ways.For example, apparatus embodiments described above are merely indicative, for example, unit
It divides, only a kind of logical function partition, there may be another division manner in actual implementation, such as multiple units or components
It can be combined or can be integrated into another system, or some features can be ignored or not executed.Another point, it is shown or
The mutual coupling, direct-coupling or communication connection discussed can be through some interfaces, the indirect coupling of equipment or unit
It closes or communicates to connect, can be electrical or other forms.
Each functional unit in embodiments of the present invention can integrate in one processing unit or each unit can also
To be independent physical module.
It, can if integrated unit is realized in the form of SFU software functional unit and when sold or used as an independent product
To be stored in a computer readable storage medium.Based on this understanding, the technical solution of the embodiment of the present invention is complete
Portion or part can be embodied in the form of software products, which is stored in a storage medium, packet
It includes some instructions to use so that a computer equipment, such as can be personal computer, server or the network equipment etc.,
Or processor (Processor) executes all or part of the steps of the method for each embodiment of the present invention.And storage above-mentioned is situated between
Matter includes: general serial bus USB (Universal Serial Bus flash drive, USB), mobile hard disk, read-only
Memory (Read-Only Memory, ROM), random access memory (Random Access Memory, RAM), magnetic disk
Or the various media that can store program code such as CD.
Above embodiments are only used for that technical solution of the present invention is described in detail, but the explanation of above embodiments is only
It is the method for being used to help understand the embodiment of the present invention, should not be construed as the limitation to the embodiment of the present invention.The art
Any changes or substitutions that can be easily thought of by technical staff, should all cover within the protection scope of the embodiment of the present invention.
Claims (14)
1. a kind of method of processing updating digital certificate request characterized by comprising
The updating digital certificate that receiving terminal apparatus is sent is requested, and is carried the terminal in the updating digital certificate request and is set
The information for the digital certificate that standby request updates;
According to the information of the digital certificate, generates the updating digital certificate and request corresponding update request abstract;Wherein, institute
Update request abstract is stated for the request of updating digital certificate described in unique identification;
It searches in buffer queue and makes a summary with the presence or absence of the request to match with the update request abstract;Wherein, the caching team
The request abstract corresponding to the request of historical figures certificate update is stored in column;
If it does not exist, the digital certificate is updated according to updating digital certificate request.
2. the method as described in claim 1, which is characterized in that if it does not exist, request to update according to the updating digital certificate
The digital certificate, comprising:
If it is determined that the not no request abstract existed with the update request digests match in the buffer queue, according to the number
The information of digital certificate verifies the digital certificate in certificate update request;
Determine that the digital certificate by verifying, updates the digital certificate.
3. method according to claim 2, which is characterized in that if it does not exist, requested more according to the updating digital certificate
Before the new digital certificate, the method also includes:
Abstract is requested to be stored in the buffer queue update;
After updating the digital certificate according to updating digital certificate request, the method also includes:
Update request abstract is associated with updated digital certificate.
4. the method as described in any claim of claim 1-3, which is characterized in that whether there is and institute in searching buffer queue
It states after updating the request abstract that request abstract matches, the method also includes:
It successfully requests to make a summary with update request digests match if existing in the buffer queue, determination is asked with the update
Seek the successful destination request abstract of digests match;
Obtain the processing status of the destination request abstract;Wherein, the processing status is used to indicate the destination request abstract
The disposition of corresponding historical figures certificate update request;
According to the processing status, generates and send feedback corresponding with updating digital certificate request to the terminal device
Information.
5. method as claimed in claim 4, which is characterized in that according to the processing status, generate and to the terminal device
Send feedback information corresponding with updating digital certificate request, comprising:
If the processing status is processing carry out state, generates and be used to indicate the digital certificate to mobile terminal transmission
Update the feedback information that request carries out state in the processing;Or
If the processing status is end state, obtains the destination request and make a summary the digital certificate of corresponding update, generate simultaneously
The feedback information of the digital certificate including the update is sent to the mobile terminal.
6. the method as described in claim 1, which is characterized in that the information of the digital certificate includes sequence number, public key and peace
Full subject information.
7. a kind of server characterized by comprising
Receiving module is taken in the updating digital certificate request for the updating digital certificate request that receiving terminal apparatus is sent
Information with the digital certificate that the premises equipment requests update;
Generation module generates the updating digital certificate and corresponding update is requested to be asked for the information according to the digital certificate
Seek abstract;Wherein, the request abstract is for the request of updating digital certificate described in unique identification;
Operation module updates the request for requesting abstract to match abstract with the presence or absence of with described for searching in buffer queue;Its
In, the request abstract corresponding to the request of historical figures certificate update is stored in the buffer queue;
Update module updates the request for requesting abstract to match abstract with described if being not present for the buffer queue, according to
The updating digital certificate request updates the digital certificate.
8. server as claimed in claim 7, which is characterized in that the update module is used for:
If it is determined that the not no request abstract existed with the update request digests match in the buffer queue, according to the number
The information of digital certificate verifies the digital certificate in certificate update request;
Determine that the digital certificate by verifying, updates the digital certificate.
9. server as claimed in claim 8, which is characterized in that the operation module is also used to:
Before updating the digital certificate according to updating digital certificate request, the update is requested described in abstract deposit
Buffer queue;And after updating the digital certificate according to updating digital certificate request, update request is plucked
It to be associated with updated digital certificate.
10. the server as described in any claim of claim 7-9, which is characterized in that the operation module is also used to:
After whether there is the request abstract to match with the update request abstract in searching buffer queue, if the caching
Exist in queue and successfully requests to make a summary with update request digests match, it is determining to request digests match success with the update
Destination request abstract;
Obtain the processing status of the destination request abstract;Wherein, the processing status is used to indicate the destination request abstract
The disposition of corresponding historical figures certificate update request;
According to the processing status, generates and send feedback corresponding with updating digital certificate request to the terminal device
Information.
11. server as claimed in claim 10, which is characterized in that the operation module is also used to:
If the processing status is processing carry out state, generates and be used to indicate the digital certificate to mobile terminal transmission
Update the feedback information that request carries out state in the processing;Or
If the processing status is end state, obtains the destination request and make a summary the digital certificate of corresponding update, generate simultaneously
The feedback information of the digital certificate including the update is sent to the mobile terminal.
12. server as claimed in claim 6, which is characterized in that the information of the digital certificate include sequence number, public key and
Safe subject information.
13. a kind of computer installation, which is characterized in that the computer installation includes processor, and the processor is for executing
It is realized when the computer program stored in memory such as any claim the method in claim 1-6.
14. a kind of computer readable storage medium, which is characterized in that the computer-readable recording medium storage has computer to refer to
It enables, when described instruction is run on computers, so that computer executes the side as described in claim any in claim 1-6
Method.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201711308434.8A CN109905243B (en) | 2017-12-11 | 2017-12-11 | Method and server for processing digital certificate updating request |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201711308434.8A CN109905243B (en) | 2017-12-11 | 2017-12-11 | Method and server for processing digital certificate updating request |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN109905243A true CN109905243A (en) | 2019-06-18 |
| CN109905243B CN109905243B (en) | 2022-06-03 |
Family
ID=66942322
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201711308434.8A Active CN109905243B (en) | 2017-12-11 | 2017-12-11 | Method and server for processing digital certificate updating request |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN109905243B (en) |
Cited By (1)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN112039979A (en) * | 2020-08-27 | 2020-12-04 | 中国平安财产保险股份有限公司 | Distributed data cache management method, device, equipment and storage medium |
Citations (5)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101035135A (en) * | 2007-04-27 | 2007-09-12 | 清华大学 | Digital certificate system applicable to the no/weak local storage client system |
| CN101340278A (en) * | 2007-07-03 | 2009-01-07 | 三星电子株式会社 | License management system and method |
| CN105812388A (en) * | 2016-05-13 | 2016-07-27 | 中国农业银行股份有限公司 | Managing method and system for user certificate and private key |
| US20170093570A1 (en) * | 2014-06-16 | 2017-03-30 | Fujitsu Limited | Computer-readable recording medium storing update program and update method, and computer-readable recording medium storing management program and management method |
| CN106789004A (en) * | 2016-12-15 | 2017-05-31 | 国云科技股份有限公司 | A kind of network communication method of highly effective and safe |
-
2017
- 2017-12-11 CN CN201711308434.8A patent/CN109905243B/en active Active
Patent Citations (5)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101035135A (en) * | 2007-04-27 | 2007-09-12 | 清华大学 | Digital certificate system applicable to the no/weak local storage client system |
| CN101340278A (en) * | 2007-07-03 | 2009-01-07 | 三星电子株式会社 | License management system and method |
| US20170093570A1 (en) * | 2014-06-16 | 2017-03-30 | Fujitsu Limited | Computer-readable recording medium storing update program and update method, and computer-readable recording medium storing management program and management method |
| CN105812388A (en) * | 2016-05-13 | 2016-07-27 | 中国农业银行股份有限公司 | Managing method and system for user certificate and private key |
| CN106789004A (en) * | 2016-12-15 | 2017-05-31 | 国云科技股份有限公司 | A kind of network communication method of highly effective and safe |
Cited By (2)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN112039979A (en) * | 2020-08-27 | 2020-12-04 | 中国平安财产保险股份有限公司 | Distributed data cache management method, device, equipment and storage medium |
| CN112039979B (en) * | 2020-08-27 | 2023-06-20 | 中国平安财产保险股份有限公司 | Distributed data cache management method, device, equipment and storage medium |
Also Published As
| Publication number | Publication date |
|---|---|
| CN109905243B (en) | 2022-06-03 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| EP3639465B1 (en) | Improved hardware security module management | |
| TWI407747B (en) | Systems and methods for adaptive authentication | |
| CN106790156B (en) | Intelligent device binding method and device | |
| US20030153300A1 (en) | Radio communication system with high security level, and communication unit and portable terminal used therefor | |
| RU2017140260A (en) | AUTHENTICATION IN A DISTRIBUTED MEDIUM | |
| US20190141048A1 (en) | Blockchain identification system | |
| KR100882354B1 (en) | Network authentication apparatus and method using integrity information of platform | |
| CN105376220A (en) | Service implementation method and system and server | |
| WO2012139474A1 (en) | Data acquisition method, device and system | |
| CN108650289B (en) | Method and device for managing data based on block chain | |
| CN110602214A (en) | Evidence storing and processing method, device, equipment and medium of judicial chain | |
| CN111176794A (en) | Container management method and device and readable storage medium | |
| CN106330812B (en) | File security recognition methods and device | |
| US20120023561A1 (en) | Id authentication system, id authentication method, and non-transitory computer readable medium storing id authentication program | |
| CN112669043A (en) | Card binding method, terminal device, authentication server and storage medium | |
| CN105227736B (en) | A kind of update method of reserved phone number, apparatus and system | |
| CN113595907A (en) | Aggregation method and device for issuing routing strategy based on SSLVPN | |
| US20030140146A1 (en) | Method and system for interconnecting a Web server with a wireless portable communications device | |
| CN109905243A (en) | A kind of method and server of the request of processing updating digital certificate | |
| JP2019208351A (en) | Method and server for managing power supply | |
| WO2018207404A1 (en) | Authentication system, authentication server, authentication method and authentication program | |
| JP6566456B1 (en) | Display control system, communication apparatus, display control method, and display control program | |
| CN108156071B (en) | Method for adding members to community, terminal device and computer readable storage medium | |
| JP2004013731A (en) | Management system for connection information of ic card, management method for connection information, ic card and server | |
| CN111225019B (en) | Session control processing method, device, equipment and medium |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| GR01 | Patent grant | ||
| GR01 | Patent grant |