TWI282231B - System and method for searching and retrieving certificates - Google Patents

Abstract

A system and method for searching and retrieving certificates, which may be used in the processing of encoded messages. In one broad aspect, a method is provided in which a certificate search request is received, a search of one or more certificate servers for certificates satisfying the request is performed, located certificates are retrieved and processed at a first computing device to determine data that uniquely identifies each located certificate, and search result data comprising the determined data is communicated to a second device (e.g. a mobile device) for use in determining whether each located certificate is already stored on the second device.

Description

1282231 ' IX. DESCRIPTION OF THE INVENTION: TECHNICAL FIELD OF THE INVENTION The present invention relates generally to the processing of messages such as email messages, and more particularly to a search and retrieval process for processing encoded messages. System and method of voucher. [Prior Art]

E-mail (e_maii) messages can be encoded using one of several known agreements. Certain agreements (for example, Secure Mumple Internet Mail Extensions (S/MIME)) rely on public and private encryption keys to provide credibility and integrity, and rely on a public to The Public Key Infrastructure (PKI) communicates information that provides for authentication and authorization. Data encrypted using a private key in a private key/public key pair can only be decrypted using the corresponding public key in the private key/public key pair, and vice versa. The authenticity of the public key used in the process of encoding the message is verified using the voucher. Specifically, if the user of the computing device wants to encrypt a message before transmitting the message to a particular individual, the user needs a voucher for the individual. The voucher typically includes the individual's 2 credits and includes other identifying related information. If the necessary credentials of the intended recipient have not been stored in the user's computing device, the credentials must first be retrieved. A voucher for searching and retrieving a particular recipient is a process that typically involves the name and/or email of the recipient in a search form displayed by the user on the computing device. The address is used to query a credential server. Typically, 104435.doc 1282231 5, the credentials found in the search are then temporarily downloaded to the computing device for the test, and then a list of checked documents can be displayed to the user. However, the user may manually select the selected credentials in the list for storage in the non-volatile storage area of the computing device (n〇n_v〇latiie store) for possible future use. Ren, in some embodiments, in the first execution of the individual...

All the documents found in the Sigma search are downloaded to the computing device, and only a certain data required to generate the list of documents found in the search can be downloaded to the calculation at the beginning. Device. The list is displayed to a user, typically using the common name and email address of the individual who issued their respective credentials to identify each of the credentials found. It is only for the user to select a particular credential to be stored for future use from the list, which is the credential that is downloaded to the computing device for storage. In particular, if the computing device is an action, then deferring downloading the voucher to the mobile device and downloading only the credentials selected by the user' can significantly minimize resource waste. Unfortunately, in the implementation of the deferred download voucher, the order (4) for generating the material is used to determine whether or not any of the other documents has been stored in the computer. For example, in order for the application on the computing device to be approximately ... one of the identified credentials identified in the list has been saved =, save, t: typically the actual credentials must be downloaded to the computing device, It is possible to obtain the necessary H for making a decision f, expensive (for example, regarding bandwidth), and may be wasted if the download is already in the voucher storage area. ^ ^ ^ 104435.doc 1282231 SUMMARY OF THE INVENTION [0005] Embodiments of the present invention generally relate to a system and method for searching for credentials more efficiently on a different computing device, and retrieving credentials to be stored on the computing device .

In a broad aspect of the present invention, a method of searching for and retrieving credentials is provided, comprising the steps of: receiving a credential search request; performing a search on one or more credential servers, wherein at least one query is submitted to the One or more credential servers for requesting retrieval of credentials satisfying the credential search request; retrieving at least one credential from the one or more credential servers; processing each of the retrieved credentials on a first computing device Determining search result data, wherein the search result data includes beribles that uniquely identify the respective voucher, and for each voucher retrieved, the associated search=fruit data is communicated from the first computing device to the _th: device And, in another aspect of the invention, in the process of determining whether the respective voucher has been stored on the second device, uniquely identifying each respective voucher. The haibei material includes the serial number of the respective voucher and the issuer profile, and the processing step includes parsing each of the retrieved vouchers' to obtain the respective serial number and issuer profile. ^: In addition to the invention - in the broad aspect, the material that uniquely identifies each respective voucher includes a hash of at least a portion of the respective voucher = including the application - the hash algorithm to each of the retrieved documents Also pay for each other. In another broad aspect of the present invention, a system for searching and retrieving 104435.doc 1282231 credentials is provided, the system comprising at least a first call leaf t-position and a second load 4' wherein the first The computing device is adapted to: receive a credential search request; perform - search on - or a plurality of credential servers, the search mode is to submit at least - query to the one or more credential servers, thereby satisfying The voucher searches for the required voucher; retrieves at least one voucher from the _ or more voucher: " processes each of the retrieved voucher to determine the search result data, wherein the search result data includes the only voucher (four) respective voucher And for each of the retrieved credentials, the associated search result data is communicated to a second device for use in determining whether the respective credentials have been stored on the second device. [Embodiment] Certain embodiments of the present invention utilize a mobile station. (4) is a two-way communication device with advanced data communication capabilities, which has the ability to communicate with other computer systems, and is also commonly referred to herein. A mobile device. - The mobile device can also include voice communication capabilities. According to the functions provided by a mobile device, it can be called a data communication device, a two-way beer machine, a mobile phone with data communication capability, a wireless internet service commissioner or a light-weight device (with or without Including phone capabilities). One row (four) is placed in communication with other devices through a network containing multiple transceiver stations. Refer to Figures 1 through 3 for the reader to understand the structure of a mobile device and how it communicates with other devices. Please refer to Fig. 1'. A block diagram of a mobile device in an exemplary embodiment is shown generally at 100. The mobile device bay includes a number of components, and the control component is a microprocessor 102. The microprocessor 102 controls the overall operation of the mobile device 100. Communication functions, including data and voice communications, are performed through communication subsystem 104. Communication subsystem 104 receives messages from a wireless network and transmits messages to the wireless network 200. In the mobile device 100 of this example embodiment, the communication subsystem 104 is configured in accordance with the Global System for Mobile Communications (GSM) and General Packet Radio Services (GPRS) standards. The GSM/GPRS wireless network is globally available and it is expected that these standards will eventually be enhanced by the GSM environment (Enhanced Data Gsm Environment; EDGE) and universal mobile telecommunications services.

Replaced by Mobile Telecommunications Service; UMTS). The new standards are still in the definition, but it is believed that their new standards will have similarities to the 'squatting mode of operation described herein, and those skilled in the art will appreciate that the invention is intended to use any other suitable standard developed in the future. . The wireless link connecting the communication subsystem 104 to the wireless network 2 represents one or more different radio frequency (RF) channels operating in accordance with a defined protocol specified for GSM/GpRS communications. In line with newer network protocols, their channels can support circuit-switched voice communications and support packet-switched data communications. In addition, in the mobile device 1 of this example embodiment, the wireless network associated with the mobile device f 100 is a (^"/(}1^8 wireless network, but in the change beacon mode, the other Wireless networks may also be associated with mobile devices. For example, different types of wireless networks may be used, including a data center network, a twisted mountain, a "," Ά < ° ° s center ... line network and permeable The same physical base station supports the (four) tone and data communication dual-mode network. The combined dual-mode network includes, but is not limited to, code division multiple access (code division Multiple Access; 1〇4435.doc -10· 1282231 CDMA) Or CDMA2000 network, GSM/GPRS network (as described above) and future third generation (3G) networks (like EDGE and UMTS). Some older negative center network examples include]\/1 〇13七乂1^Radio Network and 〇&{&Dingba (^TM radio network. Older voice center network examples include Personal Communication Systems (PCS) networks (like GSM) ) and time division multiple access (TDMA) system. The device 102 also interacts with additional subsystems, such as random access memory (RAM) 106, flash memory 108, display 110, auxiliary input/output (1/0) subsystem 112, serial port 114. , keyboard 116, speaker 11 8 , microphone 12 〇, short-distance from communication subsystem 122 and other device subsystems 124. Some subsystems of the device 100 perform communication-related functions, while other subsystems provide "resident" Resident or on-device function. For example, for communication-related functions (such as inputting a text message intended to be transmitted through the network 2 (10)) and a resident function (such as a computer or work list), the display 110 and the keyboard can be used. 116. The operating system software used by the microprocessor 1〇2 is typically stored in a persistent storage such as flash memory 108, or may be a read-only memory (R〇M). Or a similar storage element (not shown). Those skilled in the art should understand that the operating system, the application of a particular device, or a portion thereof can be temporarily loaded into a volatile storage area. For example, the RAM device 106. The mobile device 100 can transmit and receive communication signals through the network 200 after the necessary network registration or startup procedure has been completed. The network access system is associated with 104435.doc 1282231 ' I set 1GG - user or user. In order to identify the user, the mobile device 100 needs to have a user identification module (Subscriber Ident)

The Module) or "SIM" card 126 is inserted into a sim interface (2) to enable communication using the network. The SIM interface 126 is a type of conventional "smart card" for identifying a user of the mobile device 100, as well as for personalizing the alpha mobile device 1 and the like. Without the SIM 126, the mobile device 1 〇〇 is completely incapable of communicating with the network 200. By inserting the SIM 126 into the SIM interface • 128, the user has access to all subscribed services. Services include: web browsing and messaging. Fl ’ such as email, voicemail, short message service (10)_

SerVice; SMS) and Multimedia Messaging Services (MMS). More advanced services include: point of sale, on-site service and sales force automation. The SIMm includes a processor and memory for storing information. Once the SIM 126 is inserted into the (10) interface 128, it is broken into the microprocessor 102. In order to identify the user, sim 126 contains user parameters, such as an international mobile subscriber identification number (1 plus (10) (4) ❶ (5) | Mobile Subscriber Identity; IMSI) 〇 ^ SIM 126^ -# point is '- the user does not necessarily receive any single-physical mobile device Constrained. With: 26 can also store additional user information of a mobile device, including note (4) calendar information and recent call information. Mobile device 100 is a battery powered device and includes a battery interface 132 for receiving one or more rechargeable batteries 13A. The battery interface is turned to a regulator (not shown) that assists the battery 13 to provide power V+ to the mobile device 10. Although current technology utilizes a battery, future technologies such as micro fuel cells can be used. Provide power to the mobile device 1〇〇.

1 〇4435.dOC -12- 1282231. In addition to its operating system functions, the microprocessor 102 can execute a software application on the mobile device 1GG. The group of applications (including data and voice communication applications) that control the operation of the basic device are typically installed on the mobile device 100 during the mobile device (10) @ manufacture. The other application that can be loaded onto the mobile device 100 is an A information administrator who robs the information manager; piM). — piM has the ability to organize and manage data items of interest to a user, including (but not limited to) e-mail, light calendar events, voice mail, appointments, and work items. - The PIM application has the ability to transmit and receive data items via the wireless network 2: can be stored by a host computer system and/or associated with the corresponding data item of the mobile device user via the wireless network 2 It is time to closely integrate, synchronize and update PIM data projects. This function creates a mirrored host computer on the mobile device 1 for such projects. This may be particularly advantageous for a host computer system that is the office computer system of the mobile device user. Additional applications may also be loaded into the mobile device via the network 20, the auxiliary I/O subsystem 112, the serial port 114, the short-range relay, or any other suitable subsystem 124. on. This application-installation bullet increases the functionality of the mobile device i 00 and provides enhanced on-device functionality, communication-related functionality, or both. Other functions such as financial transactions.埠 114 allows a user to set preferences through an external device or software application, and expands the mobile device 1 by providing a download to the mobile device 1 via a wireless communication network: asset or software. 〇104435.doc -13- • 1282231, ^ force. For example, the alternate download path can be used to load an encryption key onto the mobile device 100 via a direct and therefore 'reliable and trusted connection' to provide secure device communication. • The short-distance communication subsystem 22 provides communication between the mobile device 1 and the different systems or 4 without the need to use the network. For example, subsystem 122 can include an infrared device and associated circuitry and components for short-range communication. Short-distance communication examples will include standards developed by the Infrared Data Association (IRDA) Association, Bluetooth, and the IEEE-developed w 802.u family of standards. In use, a received signal (such as a text message, an email message, or a web page download) will be processed by communication subsystem 104 and input to microprocessor 102. Next, the microprocessor 1 2 will process the received signal for output to the display 110 or alternatively to the auxiliary 1/sub-system 112. A user can also write a material item, such as an electronic mail message, for example, using keyboard 116 along with a display and possibly using auxiliary I/O subsystem 112. Auxiliary 1/0 subsystem 112 may include the following devices: a touch screen, a trackball, an infrared fingerprint detector, or a scroll wheel with dynamic button capabilities. The keyboard 116 is an alphanumeric keyboard and/or a telephone type keypad. A written item can be transmitted over network 200 via communication subsystem 104. For voice communications, the overall operation of the mobile device 100 is substantially similar except that the received signal will be output to the speaker 8 and the signal to be transmitted will be generated by the microphone 120. It is also possible to implement an alternative voice or audio I/O subsystem on the mobile device, such as a voice message recording subsystem. Although the voice or audio signal output is mainly through the speaker 1 i 8 to 104435.doc -14-1282231. A, but the display no can also be used to provide additional information, such as a 'send party' identity, voice call duration Or other information related to voice calls. Referring now to FIG. 2, a block diagram of the communication subsystem component ι4 shown in FIG. Communication subsystem 104 includes a receiver 15A, a transmitter 152, or a plurality of embedded or internal antenna elements 154 and 156, a local oscillator (LO) 158, and a processor module (such as a digital bit) Signal Processor (DSP) 160). The particular design of communication subsystem 104 is dependent on network 200 in which mobile device 1 is intended to operate, and thus it should be understood that the design shown in Figure 2 is merely an example. The signal received by antenna 154 through network 200 is input to receiver 150, which performs common receiver functions such as signal amplification, down conversion, filtering, channel selection, and analog to digital (a/). d) Conversion. A/D conversion of a received signal allows for more complex communication functions, such as demodulation and decoding, to be performed in the Dsp 16〇. In a similar manner, Dsp repairs 160 (including modulation and coding) the signals to be transmitted. The processed signals are input to a transmitter 152 for digital to analog (d/a) conversion, up conversion, filtering, amplification, and transmission via the antenna 156 through the network 2 . The DSP 160 not only processes the communication signals, but also provides control of the receiver 15 and the transmitter 152. For example, the gain applied to the communication signal can be adjusted to be controlled by the automatic gain control method implemented in the DSP 160. "The wireless link between the mobile device 100 and a network 200 may include one or more different channels (typically different RF channels) and the correlation between the mobile device 100 and the network 200. Joint agreement. An RF channel is a limited resource that must be saved by 104435.doc -15-1282231, typically due to the limitations of the overall bandwidth and the limited battery power of the mobile device 100. When the mobile device 100 is fully operational, the transmitter 152 is typically tuned or turned on only when it is transmitting to the network 200, otherwise the transmitter 1 52 is turned off to conserve resources. Similarly, receiver 15 is periodically turned off to conserve power unless a receiver 15 is required to receive a signal or information during a specified period (if any). Referring now to Figure 3, a block diagram of one of the nodes of a wireless network is depicted as 202. In practice, network 200 includes one or more nodes 202. The mobile device 100 communicates with a node 202 within the wireless network 200. In the example embodiment of FIG. 3, node 202 is configured in accordance with the General Packet Radio System (GPRS) and Global System for Mobile (GSM) technologies. The node 202 includes a base station controller (BSC) 204 including an associated tower 206, a packet control unit (PCU) 208 for supporting GPRS in GSM, a mobile switching center (MS C) 210, and a Home Location Register (HLR) 212, a Visitor Location Registry (VLR) 214, a Serving GPRS Support Node (SGSN) 216, a gateway GPRS support node (Gateway GPRS Support Node; GGSN) 21 8 and a Dynamic Host Configuration Protocol (DHCP) 220. This list of components is not intended to be a comprehensive list of components for all nodes 202 within a GSM/GPRS network, but rather to list a list of components commonly used for communication over the network 200. 104435.doc -16- • 1282231 In the GSM network, the MSC 210 is coupled to the BSC 204 and to a base station 222, and can further be hacked to a landline network, such as a public switched telephone network. (PSTN) 222, to meet circuit switching needs. The connection through PCU 208, SGSN 216, and GGSN 218 to a public or private network (Internet) 224 (also commonly referred to herein as a shared network infrastructure) represents the data path of a GPRS capable mobile device. In an extended GPRS capable GSM network, the BSC 204 also includes a Packet Control Unit (PCU) 208, which is coupled to the SGSN 2 1 6 to control segmentation, radio Channel configuration and meeting packet exchange requirements. In order to track the location of the mobile device and the availability of circuit switching and packet switching management, the MSC 210 shares the HLR 212 with the SGSN 2 16 . Access VLR 214 is controlled by MSC 210. Tower 206 is a fixed transceiver station. Tower 206 and BSC 204 together form a fixed transceiver device. The fixed transceiver device provides wireless network coverage for a particular coverage area (generally referred to collectively as "cells"). The stationary transceiver device transmits communication signals to and from the mobile device via the tower 206, and receives communication signals from the mobile device. The fixed transceiver device typically performs a number of functions, such as modulation of signals intended for transmission to the mobile device, and possibly encoding and/or, under the control of its controller, in accordance with a particular (typically predetermined) communication protocol and parameters. encryption. The fixed transceiver device similarly demodulates and possibly decodes and decrypts (if necessary) any communication signals received from the mobile device 100 within its cells. The communication protocols and parameters between different nodes can vary. For example, a node can employ a different modulation scheme and operate at a different frequency than the other nodes. 104435.doc -17- 1282231; All the action devices registered to the #疋 network, such as a user, and the like, are stored in the measure 212. Hlr212

Location information for each registered mobile device is also included and may be queried to determine the current location of the mobile device. The MSC 21 is responsible for the group containing the plurality of location areas and stores in VLR 2i4 the data of the squatting device currently in its responsible area. Further, the VLR2i4* contains information about the mobile devices that are visiting other networks. The information in vlr 214 includes portions of the retentive mobile device data transmitted from HLR 212 to VLR 214 for accelerated access. By moving the extra information—the far-end hlr 2 ^ 2 node to VLr 2 4], traffic between nodes can be reduced, so voice and data services can be provided with accelerated response times, and at the same time Less computing resources. The SGSN 216 and the GGSN 218 are components added to support GPRS (i.e., packet replacement data support) in GSM. Within the wireless network 2, the SGSN 216 and MSC 210 continue to track the location of each mobile device 100 with similar responsibilities. The SGSN 216 also performs the Queen's work and access control for the data stream i on the network. GGSN 2 1 8 provides an inter-network connection to an external packet switched network and is connected to one or more SGSNs 216 via an Internet Protocol (IP) backbone network operating within the network 2 . During normal operation, a given mobile device 1 must perform a "Gprs Attach" to obtain an ip address and access the data service. This requirement does not exist in the circuit parent-to-speech voice channel because the Integrated Services Digital Network (ISDN) address is used to route incoming and outgoing calls. Currently, all GPRS capable networks 104435.doc -18-1282231 use private, dynamically assigned ip addresses, so a DHCP server 220 connected to the GGSN 21 8 is required. There are a number of mechanisms for dynamic IP assignment, including the use of a combination of a Remote Authentication Dial-in User Service (RADIUS) server and a DHCP server. Once the GPRS Attach is complete, a logical connection from the mobile device 100, through the PCU 208 and the SGSN 216 to an Access Point Node (APN) within the GGSN 2 1 8 is established. The APN represents a logical end of an IP tunnel that can access a direct Internet compatible service or a private network connection. The APN also represents the security mechanism of the network 200, since each mobile device 100 must be assigned to one or more APNs, and the mobile device 100 does not perform GPRS Attach to an authorized APN first. It is impossible to exchange information. The APN can be thought of as similar to an internet domain name, such as ''myconnection.wireless.com') Once the GPRS Attach is complete, a tunnel is built and any protocol that supports IP packets is used. All traffic is exchanged within standard IP packets. This includes chiseled tunneling methods such as IP over IP, as in the case of certain IPSecurity (IPsec) connections used with Virtual Private Network (VPN). Also known as Packet Data Protocol (PDP) content, and a limited amount of PDP content is available in the network 200. To maximize the use of PDP content, the network 200 will perform one for each PDP content. An idle timer to determine if there is insufficient activity. When a mobile device is not using its PDP content, the PDP content may be deconfigured and the IP address is passed back to 104435.doc 19 1282231 by DHCP server 220 Managed IP Address Pools Referring now to Figure 4, a block diagram of components of one of the host systems in an example configuration is shown. Host System 250 The type is a corporate office or other local area network (LAN), but may alternatively be an office or some other private system, for example, in a variant implementation. In the example shown in Figure 4, the host system 250 is depicted as the LAN of the organization to which the user of the mobile device belongs. φ [ΑΝ 250 includes a plurality of network components interconnected by a LAN connection 260, for example, a user's desktop computer 262a ( The accompanying cradle 264, which contains a mobile device 100 suitable for the user, is located on the LAN 250. For example, the transmission of the binding device can be performed by a sequence or a sequence of bus connections. The cradle 264 is coupled to the computer 262a. The other user 262b is also located on the LAN 250, and each computer may or may not be equipped with a dedicated transport base for the mobile device. The transport base (10) facilitates the information (For example, PIM data, a private symmetric encryption key used to facilitate secure communication between the mobile device (10) and (10) • 250) is downloaded from the user computer to the mobile device (10) and is intended for use in initialization. A large number of information updates that are typically performed during the mobile device (10) are particularly useful. The information of the mobile device (10) may include the use of credentials during the exchange of messages. Those skilled in the art will appreciate that the user Ray..., 262b is typically also not Indeed, other peripheral devices are not depicted in Figure 4. The present invention is generally directed to the processing of messages such as email messages. Certain embodiments are generally directed to communicating such messages to the wearer (10) or from the mobile device. message. Therefore, for this 2 104435.doc -20-1282231 configuration, for ease of illustration, only a subset of the network components of the LAN 250 are shown in FIG. 4, and those skilled in the art should understand that the LAN 250 will include unclear Other additional components are shown in Figure 4. In general, LAN 250 may represent a smaller portion of one of the larger networks of the organization and may include different components and/or be arranged in a different topology than that shown in the example of Figure 4. In this example, mobile device 100 communicates with LAN 250 via a node 202 of wireless network 200 and a shared network infrastructure 224, such as a service provider network or a public internet network. Access to the LAN 250 can be provided through one or more routers, and the computing device of the LAN 250 can operate from a firewall or proxy server 266 back end. In a variant embodiment, the LAN 250 includes a wireless VPN router (not shown) to facilitate data exchange between the LAN 250 and the mobile device 100. In the wireless industry, a wireless VPN router concept is a new concept and means that a VPN connection can be established directly to a mobile device 100 over a particular wireless network. The possibility of using a wireless VPN router has recently been implemented and can be used when the new Internet Protocol (IP) version 6 (IPV6) is delivered to an IP-based wireless network. This new agreement will provide sufficient IP addresses to make an IP address dedicated to all mobile devices, prompting the ability to send information to a mobile device at any time. The advantage of using a wireless VPN router is that it may be an off-the-shelf VPN component that does not require the use of a separate wireless gateway and separate wireless infrastructure. In this variant embodiment, the preferred method is that a VPN connection is a Transmission Control Protocol (TCP)/IP or a User Datagram Protocol (UDP)/IP connection, 104435.doc 21 1282231 Hunting passes the message directly to the mobile device 1〇〇. Scheduled to a mobile device 100

The user's message is initiated by a message server 268 of the LAN 250 to receive such messages from any of a number of sources. For example, a mailer has been connected from a computer 262b in the LAN 250, from i Zhuo; &$##μμ to the wireless network 200 or to a different wireless network. - different 4 thousand #Λ # gm small " of the device (not shown), from a different computing device with the ability to transmit information or other devices, through the shared network foundation

The facility 224' and may transmit a message, e.g., via an Application Service Provider (ASP) or an Internet Service Provider (ISP). The U server 268 is typically used as a per-user type that has been set up to transmit and receive messages in the primary interface organization for exchanging messages (especially email messages) within the organization and through the shared network infrastructure 224. It is associated with the _user account that is handled by the message server H 268. An example of the message server 268 is Micr〇s〇 ft ExchangeTM with "". In some embodiments, LAN 250 can include a plurality of message servers 268. Message server 268 can also be adjusted to provide additional functionality in addition to message management, for example, including data management associated with calendars and worklists. When receiving the message, the field message server 268 typically stores the message in a message storage area (not explicitly shown) from which the message can be retrieved and delivered to the user. For example, an email client application executing on a user computer 262a may request an email message stored on the message server 268 associated with the user account. The subscriber typically retrieves the messages and stores the retrieved information locally on computer 262a. 104435.doc -22- •1282231 When the mobile device 100 is operated by the user, the user will want to retrieve the email message "~ and then pass it to the handheld device. - The email client application executing on the mobile device 100 can also request the message server 268 to request the associated user account. The email client can be configured (possibly configured by the user according to the organization's information technology (Ιτ) policy, or configured by the system administrator) to follow the instructions of the user, at a certain pre- This requirement is made when defining a 2 time interval or when a predefined event occurs. In some embodiments, the mobile device 100 is assigned its own email address, and when the message server 268 receives a message that has been explicitly addressed to the mobile device 100, it automatically redirects the message to the mobile device (10). In order to facilitate wireless communication of information and message related data between the mobile device 100 and components of the LAN 250, a number of wireless communication support may be provided. (4) In this embodiment, for example, the wireless communication support component 27 includes - The message management device 272. The message management engine 272 is used to explicitly provide support for managing messages (e.g., emails) handled by the mobile device. In general, although the message is still stored in the message service 268, the message management server 272 can be used to control when, if and how the message should be transmitted to the mobile device. The message management server cry 272 also facilitates the handling of messages written on the mobile device 100, and the messages 2 are transmitted to the message server 268 for subsequent delivery. ~ For example, the message management server 272 can monitor the user's "mailbox" for new email messages (eg, the message store 268 associated with the user account's message store); The defined filter applies to the new message to determine if and how to relay the message to the user's action 104435.doc -23· 1282231 'Device 100; compress and encrypt new messages (eg, using encryption techniques such as

v Data Encryption Standard (DES) or Triple DES (Tnple DES), and send the message to the mobile device 1 via the shared network infrastructure 224 and the wireless network 200; and receive the mobile device The message written on the page (for example, Triple DeSt has been used for encryption), decrypting and decompressing the written messages, reformatting the written messages (if you want to reformat the written message, the message appears to It is derived from the user computer 262a) and the written message is posted to the message server 268 for delivery. The suffocation server 272 can be defined (eg, as defined by the system administrator in accordance with IT policies) and enforces associated messages (messages intended to be transmitted from the mobile device 100 and/or received by the mobile device 丨0 0) Some properties or restrictions. For example, their attributes or restrictions may include whether the mobile device 100 can receive encrypted and/or signed messages; the minimum encryption key size; if it is transmitted, 4 or more must be encrypted and/or signed; The mobile device 1 transmits a copy of all the security messages that have been sent to the pre-defined replica address. The message management server 272 can also be adjusted to provide other control functions, such as feeding a message or message. A member of the server (10) stores a message (eg, 'factory block') sent to the mobile device (10). For example, when the mobile device 1 retrieves a message from the message server (10), the management server 272 is adjusted to send only the first part of the message to; Define the size (# used to π; upper, upper eight ~ winner, σ / more parts of the message, intended by the message management server 272] 04435.doc -24- '1282231 to the action of the block of similar size Device 1 may, as long as, have a maximum predefined message size. Thus, message management server 272 facilitates optimal control over the type of data and amount of data communicated to the mobile device and may help minimize potential The bandwidth or other resources are wasted. It is understood by those skilled in the art that the message management server 272 may not be implemented on a separate physical server in the LAN 250 or other network. For example, associated with the message management server 272 Some or all of the functions may be integrated with the other server in the voice server 268 or the LAN 250. In addition, the LAN 25 0 may include a plurality of message management servers 272, especially when a large number of mobile devices must be supported. In a variant embodiment of the invention, embodiments of the invention generally relate to the processing of encoded messages, such as encrypted and/or signed email messages, although Simple Mail Transfer Protocol (Simple Mail Transfer Protocol; SMIT), RFC822 Header and Multipurpose Internet Mail Extension Standard (Muhipurp〇se

Internet Mail Extensions; MIME) This section defines a format for an e-mail message that does not require encoding, but can be used in a private message (ie, in a female full-travel application) to use one of the mime protocols. The version of Secure/MIME (S/MIME). S/MIME implements end-to-end authentication and credibility, and protects data integrity and privacy from the time a sender of a message transmits a message until the recipient of the message decodes and reads the message. Sex. Other known standards and protocols may be employed to facilitate secure messaging, such as Pretty Privacy (PGP), OpenPGP, and other standards and protocols known in the art. 104435.doc -25- 1282231 - Secure messaging protocols (such as S/ΜΙΜΕ) rely on public and private encryption keys to provide credibility and integrity, and rely on a public key infrastructure (Public Key Infrastructure; ρκι ) to convey the identification and authorization provided. Data encrypted using a private key in a private key/public key pair can only be decrypted using the corresponding public key in the private key/public key pair, and vice versa. Private key information is never made public, and public key information is shared. • For example, if a sender wants to send a message to a recipient in encrypted form, the recipient's public key is used to encrypt a message, and then only use the recipient's private money. The key can decrypt the message. Or in some encoding techniques, the article that generates and uses a session key (加密ne_time session key) to encrypt a message typically uses a symmetric encryption technique (eg, Triple DES). Next, the recipient's public key is used to encrypt the session key (eg, using a public key encryption algorithm such as RSA) and then limited to using the recipient's private record to be able to use the recipient's private key record. Period key decryption. Then use the decrypted session amount to decrypt the message. The message header can be used to specify the specific encryption scheme that must be used to decrypt the message. In the variant implementation, other encryption techniques based on the public Jin Yu cipher compilation can be used. However, in each case, it is limited to the use of the recipient's private record to facilitate the decryption of the message' and in this way, the credibility of the message is maintained. ~ As a step-by-step example, a sender can use a digital signature to sign a message. The digital signature is a summary of the message encrypted by the recipient's private money (eg, a hash of the message), which can then be appended to 104435.doc • 26 - 1282231 The outgoing message. In order to confirm the signature of the message when receiving, the recipient··f uses the same technique as the sender (eg 'use the same standard hash' π έ ) H to get a summary of the received message^ The recipient also uses the sender's public key to decrypt the digital signature in order to obtain a matching summary that should be the received message. If the sums of the received messages do not match, it implies that the content of the message has changed during transmission and/or that the message is not from the sender of the public key used to confirm the use. In this way, the private sign is used to confirm the digital signature, and the sender's knowledge and message integrity must be transferred. - The encoded message can be encrypted, signed or encrypted and signed. The validity of the public key used in their operations is verified by the use of credentials. A voucher is a digital file issued by a certificate authority (CA). The card is used to identify the association between the user and its public money, and ultimately to provide the level of trust in the authenticity of the user's public key. The voucher contains information about the voucher holder, along with the contents of the voucher (typically formatted by > as accepted (eg, χ·5〇9)). Referring to FIG. 5, an example credential key 3〇〇 is illustrated. The voucher 310 issued to "(10) Snnth" is an example of a voucher issued to a body, which may be referred to as an end entity certificate. The end entity voucher 31 〇 typically identifies the voucher holder 312 (i.e., 〇匕Smith in this example) and the issuer 314 of the voucher, and includes the issuer's - digital signature 3 16 and the voucher Someone's public key 318. The voucher 31〇 typically also includes other information and attributes that identify the voucher holder (e.g., email address, organization name, organizational unit name, location, etc.). When an individual writes a message intended to be transmitted to a recipient, it is customary to include the voucher 300 of the individual, along with the message. For a trusted public key, its issuing organization must be trusted. The relationship between a trusted C A and a user's public record can be represented by a series of related credentials (also known as a voucher chain). The credential chain can be followed to determine the validity of a credential. For example, in the example credential chain 300 shown in Figure 5, a recipient claiming to be a message transmitted by John Smith may wish to confirm the trust attached to the credential 3 10 of the received message. status. For example, to validate the trust status of the credential 310 on a recipient's computing device (e.g., user computer 262a of FIG. 4), the issuer ABC's credential 320 is obtained and used to confirm that the credential 310 is indeed the issuer Signed by ABC. The credential 320 may already be stored in a credential storage area of the computing device or may need to be from a credential source (e.g., the LDAP server 284 of Figure 4, some other public or private LDAP server). If the voucher 320 has been stored in the recipient's computing device and the voucher has been designated as trusted by the recipient, then the voucher 3 1 0 is linked to a stored, trusted voucher Trusted. However, in the example shown in Figure 5, a voucher 330 is also required to confirm the trust of the voucher 310. Credential 330 is a self-signed credential and is referred to as a "root certificate." Therefore, in the voucher chain 300, the voucher 32 can be referred to as an "intermediate certificate"; it is assumed that for a particular end entity voucher, a link to the voucher can be determined, linked to a voucher Any given credential can contain zero, one or more intermediate credential. If the credential 330 is a root credential issued by a trusted source (eg, 104435.doc -28 - 1282231 'eg, from a large credential authority such as, for example), then - due to the m10 link to a trusted credential Be trusted. This sender and recipient of the suffocation trust the source of the root certificate. If you cannot link a credential to a trusted credential, the credential can be considered "untrusted". The credential server stores information about the credential and a list identifying the credential that has been revoked. They can access their credential servers to obtain credentials and confirm that they are convinced and abolished. For example, a Lightweight Directory Access Protocol (LDAP) server can be used to obtain credentials, and online credential status agreements can be used (〇nline

Cemflcate Status Protocol; OCSP) The server confirms the status of the certificate revocation. Standard email security protocols typically facilitate the transfer of secure messages between non-mobile computing devices (e.g., computers 262a, 262b, remote desktop devices of Figure 4). Referring again to Figure 4, in order to be able to read from the mobile device | the signed message received from the sender, the mobile device 1 is adjusted to store the credentials of the other individual and the associated public key. Typically, for example, the credentials stored on the user computer 262a are downloaded from the computer 262a to the mobile device 1 via the transport base 264. The voucher stored on the computer 262a and loaded into the mobile device 1 is not limited to the voucher associated with the individual, but may also include, for example, a voucher issued to Ca. The user may also explicitly designate certain credentials stored on computer 262a or mobile device 100 as "trusted." Therefore, when the user receives a voucher on the mobile device, the voucher can be confirmed by storing 104435.doc -29-1282231 or other credentials on the voucher and mobile device 100, and specifying The trust is determined to be linked to the _trusted credentials. The mobile device can also be adjusted to store the private key associated with the private key pair of the user record 7, prompting the mobile device H) 0: the signature can be signed by the mobile device 1 The message is sent to the user and encrypted by the user's public account (4), for example, the private key can be transmitted from the user via the transmission base 264

The electric thin 262 & download to the mobile device 1GG. Preferably, the exchange of the private key between the computer 262a and the mobile device (10) causes the latter to share the identity and a method of accessing the message. User computers 262a, 262b may obtain credentials from a number of sources for storage on user computers 262a, 262b and/or on mobile farms (e.g., mobile device 100). For example, their source of credentials may be private (for example, dedicated to an organization) or public, local or remote, and accessible from an organization's private network or over the Internet. In the example shown in Figure 4, a plurality of pKI servers 28 associated with the organization reside on the LAN 250. The PKI server 280 includes: a server 282 for issuing credentials; an LDAP server 284 for searching and downloading credentials (e.g., for individuals within the organization); and - for confirming the revoked status of the credentials 〇csp server 286. A user computer 262a may retrieve credentials from the LDAP server 284, for example, to download their credentials to the mobile device 1 via the transport base 264. However, in a variant embodiment, the mobile device 1 can directly access the LDAP server 284 (ie, in this context, "wirelessly" (〇ver 104435.doc -30-1282231 the air)) And the mobile device 100 can search and retrieve the individual's credentials through an action data server 288. Similarly, the mobile data server 288 can be adjusted to allow the mobile device 100 to directly query the OCSP server 286 to confirm the revoked status of the credentials. Those skilled in the art will appreciate that the mobile data server 288 need not physically reside on a separate computing device other than the other components of the LAN 250, and in a variant implementation, the mobile data server 288 can be provided in the same On the computing device of another component of the LAN 25 0. Additionally, in a variant implementation, some functionality of the mobile data server 288 may be integrated with the functionality of another component in the LAN 250 (e.g., message management server 272). In a variant embodiment, only the selected pKI server 280 is accessible to the mobile device (e.g., allowing credentials to be downloaded from only one user computer 262a, 262b) while allowing the mobile device 100 to check the revoked status of the credentials. . In a variant implementation, for example, perhaps in accordance with IT policy, as determined by a system administrator, only certain mobile devices 280 can be accessed by mobile devices registered to a particular user. For example, other sources of credentials (not shown) may include a Windows credential storage area, another secure credential storage area on or external to the LAN 250, and a smart card. Referring now to Figure 6', a block diagram of an example of an encoded message is generally illustrated as 350. The encoded message may be received by a message server (e.g., message server 268 of Figure 4). The encoded message 35 〇 typically includes one or more of the following: a header portion 352, an encoded portion 354, one or more encoded attachments 356, one or more encrypted 104435.doc. 1282231 The duration key 358 and the signature and signature related information 36〇. For example, the standard score 352 typically includes addressing information such as "T〇", "Fr〇m" and "

The address 'and may also include, for example, a message length indicator and a sender encryption and signature scheme identification. The actual message content typically includes a message text or batting portion 354 and may include one or more attachments 356 that the sender can use to encrypt the message content using a session key. If a session key is used, each recipient's respective public key is typically used to encrypt the session key for each of the intended recipients and is included in 358 of the message. . If the message is signed, it also includes a signature and signature related information 360. For example, this can include the sender's credentials. The manner in which one of the encoded messages shown in Fig. 6 is provided by way of example only, and those skilled in the art will appreciate that the present invention is applicable to other encoded messages. Depending on the particular messaging scheme used, the composition of the _coded message may appear in a different order than that shown in Figure 6, and an encoded message may include fewer, additional or different components, depending on the coded Whether the message is encrypted, signed or encrypted and signed. The specific embodiments are generally directed to a system and method for more efficiently searching for credentials on a device and retrieving credentials to be stored on the device. In a specific embodiment, the device is a mobile device (eg, the mobile device of FIG. 4), and a voucher search application resident and executed on the mobile device is programmed to The search for credentials is initiated on one or more of the 2 servers (e.g., Figure 4iLDAp Server 284). In this embodiment, the mobile device searches for a credential server through an intermediate computing device (e.g., the mobile data server 288 of FIG. 4) and retrieves the individual from the credential server 104435.doc -32-1282231 Referring to FIG. 4, a consideration-example embodiment in which a voucher search application on the mobile device 100 searches the LDAP server 284 via the mobile data server 288 and retrieves individual credentials from the LDAp server 2m. The voucher search application receives a search request, typically from a user who wants to identify the individual's credentials and provide the individual's first name, last name, and email address. It is also possible to suggest a wider range of searches. Asking 'for example, by entering only a few letters of the name to form a search query, which will return all the credentials issued with a name containing the first letter as a prefix; or by inputting the intercept in its way Use a universal character or a blank item to expand - search. Then 'the search is to be taken from the mobile device to the beating server 288' and then the action data The server 288 queries the LDAP server 284 for the requested credentials. In this example embodiment, the credential found is retrieved by the mobile data server 288 and the search results associated with each of the voucher's credentials are retrieved. Information (such as individual (or entity) appeals and e-mail addresses whose respective credentials are issued to the individual (or body) are communicated to the mobile device] 〇〇' motivating data from the search results ^Life/monthly order, so as not to be given to the user. Then, the user can select from the list, select the specific account to be downloaded and stored on the mobile device, and then wait for the selected voucher to be conveyed to the action. The data server will be downloaded from the mobile data server 288 to the mobile device 100 by the selected credentials. 1 by transmitting only a list for generating a checked voucher in the first instance. Specific search result data (rather than communicating the full 104435.doc -33-1282231 ~ part voucher) to the action set and 'only the specific voucher selected by the user' is selected to be more efficient (example In terms of time and bandwidth), the search and retrieval vouchers are carried out. 伯J?· jL· _U- y 1 ^ - 疋 则 技术 technical system can not be adjusted, 夬疋 or ί, privately displayed to users The indication relates to which of the documents in the list have been stored in a voucher storage area of the mobile device 1 without downloading the voucher to the mobile device 1 to promote a decision. In such systems, f is required to download the selected voucher to confirm that the selected voucher has not been stored in the voucher storage area. This is time consuming and bandwidth consuming and may be unnecessary. Thus, the specific embodiments of the present invention generally relate to facilitating the determination of whether a voucher has been stored on a device (e.g., such as a mobile device): without having to download all of the voucher to the device. . Referring to Figure 7A, a flow diagram of the steps in the method of searching and retrieving credentials in a particular embodiment of the present invention is generally illustrated as 4". At step 410, a first computing device receives a request from a second device for a voucher to search for at least one voucher feeder. In an example embodiment, if the second device is a mobile device (eg, the mobile device 1 of FIG. 4), the first computing device acts as a second device and the at least one credential server An intermediary device between them, such as an action data server (e.g., action data server 288 of FIG. 4). In an example embodiment, a credential server to be searched may be an _LDAP server (eg, LDAP server 284 of FIG. 4). The request may include information presented by a credential search application resident and executed on the second device. The information may be derived from user input to the voucher search 104435.doc -34· 1282231 application (eg, when a user initiates the search), or in a variant implementation, the material may be derived from The data generated by the application that initiated the search. The information will typically include at least one name and/or -t sub-mail address, and those skilled in the art will appreciate that various search queries can be constructed without departing from the scope of the present invention.

Further steps of the method 〇0 are described based on a convenient embodiment of the first computing device-action data feeder and the second device-based mobile device. However, the specific embodiment of the present invention described in the method 400 or the method of FIG. 7B can be applied to a plurality of embodiments, wherein the s-th computing device is not an action data feeder but some other computing device. And/or the second device is not a mobile device, but some, his computing device. For example, a system architecture includes first and second devices and at least one credential server, wherein the cost of data transfer between the first device and the second device (eg, in terms of time and bandwidth) And - more similar; | the cost of data transfer between the $-device and the at least - voucher server - the system architecture may benefit from the application of the present invention - the specific embodiment. At V 420, the mobile data server queries the request to the heart to detect the voucher based on the search request received from the mobile search verification application in step 41 0. The action profile server retrieves the credentials found in the search from the at least one credential server. The v 430 忒 action data server transmits the search result data for each of the found vouchers back to the voucher search application of the mobile device. The search result data transmitted back typically includes the common name of the individual (or entity) 104435.doc -35-1282231 and the email address, with their respective credentials issued to the individual (or entity). However, 'in accordance with this embodiment of the present invention, the mobile data server identifies the serial number of the respective voucher and the issuer by using the voucher's voucher's credentials to be used as part of the search result data. And is passed back) to process each of the retrieved credentials.

In some embodiments, the credentials retrieved at step 420 are only temporarily stored until the search result data is passed back to the mobile device at step 43, at which point the retrieved credentials are deleted. In other embodiments, the credentials retrieved at v42G may be cached or otherwise more persistently stored (eg, until a search is received from the mobile device for the return). As soon as the response is received, or a certain period of time is stored. At step 440, the voucher search application compares the serial number and the issuer (4) associated with each of the found: voucher, and the voucher associated with the voucher stored in the mobile device: Serial number and hair

The pedestrian information is used to determine whether or not the respective certificates have been stored on the mobile device. At step 450, a sneak peek (4) is generated by the list and displayed to the user of the action table. The checklist core search step (4) returns to the mobile device after the sorrow + at least one of the poor results can be identified by issuing "仏 /, 1. For example, the clear email address" In the case of the ":::: and 7 or the body embodiment, it is also possible to make a decision on the households of the respective items of the certificate to which the certificate is used. To # _ & 〃, 中 § 私 私 according to step 440 U does not indicate whether the respective voucher has been stored in the line 104435.doc -36 > 1282231 break. Therefore, the user does not need to In the sneak peek, μ downloads and selects the stored vouchers - so it is not necessary to copy to the mobile device. For example, the indicator includes a checked or not: 敎 box As a further example, depending on the status of the indicator, each item of the morning may be highlighted or not highlighted. At step 460, for example, a voucher selected by the user of the mobile device. Hold

At step 470, the mobile data server receives from the mobile device information identifying the selection made in step 4) and then passes the selection: the voucher back to the mobile device, typically for storage in the action On the device. In some embodiments, if a selected credential has not been retained by the mobile data server since the previous download, the mobile data server may need to query again before the credential is transmitted back to the mobile device. Also the server to find the certificate (this step is not shown in the figure).

Referring now to McCaw, a flowchart of the steps in the method of searching and retrieving credentials in another embodiment of the present invention is generally illustrated as 400b. The method 400b is similar to the method, except that the search result data associated with the voucher returned by the first computing device to the second device includes a hash of at least a portion of each of the found credentials. Specifically, in step 43〇b, the action data server transmits the search result data about each of the found documents back to the voucher search application of the mobile device. The search result data returned is typical Including the common name and email address of the individual (or entity), the respective credentials are issued to the individual (or the body). According to this embodiment of the invention, the action data server 104435.doc -37· 1282231: : by applying a hash algorithm "by hashing at least a portion of each of the retrieved cards 4, to enter a boat / / ^ / processing the voucher retrieved by the parent. Then the hash is used as the search result data. In the embodiment, the entire voucher is hashed to produce the hash of the return. However, in the variant implementation, a von says from the gentry 6 and - or more specific The portion or the block is broken to produce the hash of the return, however it is possible to reduce the hash that will uniquely and correctly identify the same voucher based on the portion or position that is hashed. Step 440, the voucher search application generates a hash for each credential stored in the mobile device or in a plurality of specified credential storage areas, and compares each generated hash with each checked credential In order to determine whether the respective voucher has been stored on the mobile device. In the hashing process of generating the stored voucher, in this step, the same hash algorithm employed on the step side is applied (if If the entire voucher is not hashed, then the same part or block of the stored voucher is hashed. Cause: Fruit - a hash of the generated voucher is matched in the step machine from the smashing bevel server The received _ hash is considered to have been determined - matching. A detailed description of the remaining steps of method 4 〇〇 b is provided with reference to Figure 7A. In a variant embodiment of the invention, it can be used to uniquely identify A voucher and other information conveyed more efficiently than the entire voucher that can be passed back to the second device (in terms of time and bandwidth) can be used as the search result data and used for Determining whether the voucher has been stored on the second device. 104435.d〇c -38- 1282231, == The described embodiment of the invention generally allows the user to quickly and ** download to The voucher of the leaf device does not require a high cost requirement. In a variant embodiment of the invention, the voucher search request may not be initiated by a user but executed by the second device. An application (perhaps by the voucher search application or by some other application) to initiate the voucher search request. In the following embodiments, a list to be displayed to a user may not be generated ( For example, Figure 7 and π Ref & Step 450) ' and automatically identify the voucher to be downloaded after identifying which voucher has been stored on the second device (eg, step 44 of Figures 7A and 7B) Without user intervention. In a variant embodiment, the invention is also applicable to other applications that do not involve credentials. For example, some of the foregoing techniques can be used to determine, for example, certain contact data records as to whether an electronic file has been stored on a computing device. In a specific embodiment of the present invention, a method for searching for and retrieving credentials may be provided as executable software instructions stored on a computer readable medium (which may include transmission medium) . The invention has been described in terms of several specific embodiments. However, those skilled in the art will appreciate that other variations and modifications can be made without departing from the scope of the invention as defined in the scope of the Shenqing patent as incorporated herein. BRIEF DESCRIPTION OF THE DRAWINGS In order to best understand the specific embodiments of the present invention and to clearly illustrate the embodiments, the embodiments will be described by way of example and with reference to the accompanying drawings in the drawings: 104435.doc _39· • 1282231 1 is a block diagram of a mobile device in an example embodiment; FIG. 2 is a block diagram showing a node of a communication network component of the mobile device shown in FIG.

4 is a block diagram of a component of a host system in an example configuration; FIG. 5 is a block diagram showing an example of a certificate chain; FIG. 6 is a block diagram showing an example of an example of a compiled message; 7A shows a flow of steps in the method of the present invention, and FIG. 7B shows a flow chart of steps in another method of the present invention: 1, search and retrieval of documents [ Description of main component symbols] Mobile device microprocessor 100 102

104 106 108 110 Communication Subsystem Random Access Memory (Ram) Flash Memory Display 112 114 116 Auxiliary Input/Output (I/O) Subsystem Sequence 埠 Keyboard 118 120 122 Speaker Microphone Short Moment Communication Subsystem 104435. Doc -40- 1282231 124 Other Device Subsystem 126 SIM Card 128 SIM Interface 130 Rechargeable Battery 132 Battery Interface 150 Receiver 152 Transmitter 154, 156 Antenna Element 158 Local Oscillator (LO) 160 Digital Signal Processor (DSP 200 Wireless Network 202 Node 204 Base Station Controller (BSC) 206 Tower 208 Packet Control Unit (PCU) 210 Mobile Switching Center (MSC) 212 Home Location Register (HLR) 214 Guest Location Temporary Storage Visitor Location Registry (VLR) 216 Serving GPRS Support Node (SGSN) 218 Gateway GPRS Support Node (GGSN) 220 Dynamic Host Configuration Protocol (DHCP) 435.doc -41 - 1282231

222 Public Switched Telephone Network (PSTN) 224 Public or Private Network (Internet) 250 Host System (LAN) 260 LAN Connection 262a, 262b User Computer 264 Transport Cradle 266 Proxy Server 268 Message Server 270 Wireless Communication Support Component 272 Message Management Server 280 PKI Server 282 CA Server 284 LDAP Server 286 OCSP Calendar 288 Action Data Server 300 Credentials Key 310 Credentials (Terminal Entity Credentials) 312 Voucher Holder 314 Voucher Issuer 316 Issuer's Digital Signature 318 Voucher Holder's Public Key 320 Voucher 330 Document 350 Encoded Message 104435.doc -42- 1282231 352 354 356 358 360 Header Part Encoded Some of the coded attachments in this document have been encrypted with the session key signature and signature related information 104435.doc -43 -

Claims (1)

1282231 X. Patent Application Range · · A method for searching and retrieving credentials, including the following steps: a. receiving a voucher search request; b. performing a search on one or more credential servers, at least one of which is Knowing: the parent to the 4 or more credential servers, dreaming to search for the voucher that satisfies the voucher search requirement; c. retrieving at least one voucher from the one or more credential servers; Processing each of the voucher retrieved in the step coffee on the first-computing device to determine the search result data, wherein the search result includes: information including the unique identification of the respective voucher; and e. for searching in step c) Each of the credentials communicates its associated search result data from the first computing device to a second device for use in determining whether the respective credentials have been stored on the second device. • = method of claim 1 'where the material uniquely identifying each respective voucher includes the serial number of the respective voucher and the issuer profile, and wherein the process includes parsing each voucher retrieved in step c) to obtain The respective serial number and issuer information. 3 The method of claim 1 wherein the data 2 uniquely identifying each of the respective credentials - the hash of at least a portion of the respective credentials and wherein the second step includes applying - the hash algorithm to each retrieved in step e) Hearts '' borrow to get the respective hashes. 4) The method of claim ^, wherein the hash obtained for each voucher is the 104435.doc 1282231 5 · If the method of requesting the worker 1, 2, 3 or 4, wherein the second device is a Mobile device. The method of claim 5, wherein the first computing device is an action data server. The method of asking for 1, 2, 3 or 4, further comprising: in the second installation, Jiang Yi, the list of the documents retrieved in step c) is displayed to a user, The list is determined by step e) to show which credentials are stored on the second device. 8. The method of claim 7, further comprising receiving one or more selected credentials from the list and communicating the selected credentials to the second device. 9. A computer readable recording medium having a plurality of instructions for performing the method of claim 1, 2, 3 or 4. A system for a technology and a retrieval voucher, the system comprising at least a first-computing device and a second device, wherein the first computing device is adapted to: a) receive a voucher search request; b) at one or Performing a search on a plurality of credential servers, the search mode is at least one query to the one or more credential servers, so as to request retrieval of the voucher satisfying the credential search request; c) from the one or more The credential server retrieves at least one credential; d) processing each of the retrieved credentials to determine search result data, wherein the search result data includes data uniquely identifying the respective credential '· and e) for each credential retrieved, The associated search result data is communicated to a second device for use in determining whether the respective credential has been placed on the second device = 104435.doc 1282231. = Item 10 of the system 'in which only - identify each of the respective voucher's assets: 4 the serial number of the respective voucher and the issuer's information, and directly account for each voucher process, the first ', Μ ^ brother 8 ten The dissimilar device is adjusted to parse the retrieved parent voucher to obtain 12 main VII, ^ 曰々 and issuer data. 12. The system of claim 1, wherein the prudence that uniquely identifies the respective voucher of 4iL Xr ^ I includes at least a portion of the respective voucher - a hash, ... each of which treats each of the von y, and Among them, in the parental one, the first calculation of the singularity of the singularity is 5 1 > Wrong to get the respective miscellaneous 104435.doc