ATE451656T1 - Verfahren und vorrichtung zur effizienten zertifikatwiderrufung - Google Patents

Verfahren und vorrichtung zur effizienten zertifikatwiderrufung

Info

Publication number
ATE451656T1
ATE451656T1 AT04809735T AT04809735T ATE451656T1 AT E451656 T1 ATE451656 T1 AT E451656T1 AT 04809735 T AT04809735 T AT 04809735T AT 04809735 T AT04809735 T AT 04809735T AT E451656 T1 ATE451656 T1 AT E451656T1
Authority
AT
Austria
Prior art keywords
certificate
tradeoff
revokal
dense hash
grounded dense
Prior art date
Application number
AT04809735T
Other languages
English (en)
Inventor
Craig Gentry
Zulfikar Ramzan
Original Assignee
Ntt Docomo Inc
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Ntt Docomo Inc filed Critical Ntt Docomo Inc
Application granted granted Critical
Publication of ATE451656T1 publication Critical patent/ATE451656T1/de

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/32Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
    • H04L9/3236Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials using cryptographic hash functions
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/32Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
    • H04L9/3263Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials involving certificates, e.g. public key certificate [PKC] or attribute certificate [AC]; Public key infrastructure [PKI] arrangements
    • H04L9/3268Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials involving certificates, e.g. public key certificate [PKC] or attribute certificate [AC]; Public key infrastructure [PKI] arrangements using certificate validation, registration, distribution or revocation, e.g. certificate revocation list [CRL]
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/50Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols using hash chains, e.g. blockchains or hash trees
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L2209/00Additional information or applications relating to cryptographic mechanisms or cryptographic arrangements for secret or secure communication H04L9/00
    • H04L2209/30Compression, e.g. Merkle-Damgard construction

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Security & Cryptography (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Management, Administration, Business Operations System, And Electronic Commerce (AREA)
  • Storage Device Security (AREA)
  • Sheets, Magazines, And Separation Thereof (AREA)
  • Devices For Checking Fares Or Tickets At Control Points (AREA)
AT04809735T 2003-09-19 2004-09-09 Verfahren und vorrichtung zur effizienten zertifikatwiderrufung ATE451656T1 (de)

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
US50425303P 2003-09-19 2003-09-19
PCT/US2004/029764 WO2005029445A2 (en) 2003-09-19 2004-09-09 Method and apparatus for efficient certificate revocation

Publications (1)

Publication Number Publication Date
ATE451656T1 true ATE451656T1 (de) 2009-12-15

Family

ID=34375468

Family Applications (1)

Application Number Title Priority Date Filing Date
AT04809735T ATE451656T1 (de) 2003-09-19 2004-09-09 Verfahren und vorrichtung zur effizienten zertifikatwiderrufung

Country Status (6)

Country Link
US (2) US7840994B2 (de)
EP (1) EP1668617B1 (de)
JP (1) JP4699368B2 (de)
AT (1) ATE451656T1 (de)
DE (1) DE602004024553D1 (de)
WO (1) WO2005029445A2 (de)

Families Citing this family (24)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US7162429B1 (en) 2000-12-29 2007-01-09 Bellsouth Intellectual Property Corporation System and method for managing sponsorships
DE602004024553D1 (de) * 2003-09-19 2010-01-21 Ntt Docomo Inc Verfahren und vorrichtung zur effizienten zertifikatwiderrufung
CA2551819C (en) * 2004-01-09 2015-02-24 Corestreet, Ltd. Signature-efficient real time credentials for ocsp and distributed ocsp
US20050154878A1 (en) * 2004-01-09 2005-07-14 David Engberg Signature-efficient real time credentials for OCSP and distributed OCSP
US8606875B1 (en) * 2004-06-30 2013-12-10 Oracle America, Inc. Method and system for automatic distribution and installation of a client certificate in a secure manner
EP1843515A3 (de) 2004-08-31 2011-08-03 NTT DoCoMo, Inc. Multicasting und Zwischenspeicherung
JP4794560B2 (ja) * 2004-08-31 2011-10-19 株式会社エヌ・ティ・ティ・ドコモ 暗号デジタル証明書の失効
US7315941B2 (en) 2004-12-17 2008-01-01 Ntt Docomo Inc. Multi-certificate revocation using encrypted proof data for proving certificate's validity or invalidity
US8880433B2 (en) * 2005-04-14 2014-11-04 At&T Intellectual Property I, L.P. Dynamic authentication of mark use
US8874477B2 (en) 2005-10-04 2014-10-28 Steven Mark Hoffberg Multifactorial optimization system and method
US9521371B2 (en) 2006-12-27 2016-12-13 Verizon Patent And Licensing Inc. Remote station host providing virtual community participation in a remote event
US8643736B2 (en) 2006-12-27 2014-02-04 Verizon Patent And Licensing Inc. Method and apparatus for participating in a virtual community for viewing a remote event over a wireless network
US8656440B2 (en) 2006-12-27 2014-02-18 Verizon Patent And Licensing Inc. Method and system of providing a virtual community for participation in a remote event
US8707031B2 (en) * 2009-04-07 2014-04-22 Secureauth Corporation Identity-based certificate management
JP5822489B2 (ja) * 2011-03-07 2015-11-24 キヤノン株式会社 情報処理装置及びコンピュータプログラム
US9424405B2 (en) * 2012-11-28 2016-08-23 Apple Inc. Using receipts to control assignments of items of content to users
CN104901931B (zh) 2014-03-05 2018-10-12 财团法人工业技术研究院 证书管理方法与装置
US10021137B2 (en) * 2014-12-27 2018-07-10 Mcafee, Llc Real-time mobile security posture
US10333696B2 (en) 2015-01-12 2019-06-25 X-Prime, Inc. Systems and methods for implementing an efficient, scalable homomorphic transformation of encrypted data with minimal data expansion and improved processing efficiency
JP2018528732A (ja) * 2015-07-31 2018-09-27 ミカリ, シルヴィオMICALI, Silvio 偽造防止
US10187375B1 (en) * 2016-04-22 2019-01-22 Walgreen Co. Cryptographic services engine
GB201811263D0 (en) * 2018-07-10 2018-08-29 Netmaster Solutions Ltd A method and system for managing digital using a blockchain
CN110958109B (zh) * 2019-10-12 2023-09-19 上海电力大学 基于层次默克尔哈希树的轻型动态数据完整性审计方法
CN120150961B (zh) * 2025-03-26 2025-09-26 中国电建集团北京勘测设计研究院有限公司 一种针对分布式身份场景下的细粒度证书撤销与回滚方法

Family Cites Families (19)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US6766450B2 (en) * 1995-10-24 2004-07-20 Corestreet, Ltd. Certificate revocation system
US6097811A (en) * 1995-11-02 2000-08-01 Micali; Silvio Tree-based certificate revocation system
US6292893B1 (en) * 1995-10-24 2001-09-18 Silvio Micali Certificate revocation system
US8732457B2 (en) * 1995-10-02 2014-05-20 Assa Abloy Ab Scalable certificate validation and simplified PKI management
US6487658B1 (en) * 1995-10-02 2002-11-26 Corestreet Security, Ltd. Efficient certificate revocation
US6301659B1 (en) * 1995-11-02 2001-10-09 Silvio Micali Tree-based certificate revocation system
US5903651A (en) * 1996-05-14 1999-05-11 Valicert, Inc. Apparatus and method for demonstrating and confirming the status of a digital certificates and other data
JPH11328186A (ja) * 1997-11-11 1999-11-30 Mitsubishi Electric Corp 相関ルール生成方法および相関ルール生成装置
US6397329B1 (en) * 1997-11-21 2002-05-28 Telcordia Technologies, Inc. Method for efficiently revoking digital identities
US6226743B1 (en) 1998-01-22 2001-05-01 Yeda Research And Development Co., Ltd. Method for authentication item
US7178029B2 (en) * 1998-08-18 2007-02-13 Privador, Ltd Method and apparatus for validating a digital signature
JP2000250858A (ja) * 1999-02-26 2000-09-14 Mitsubishi Electric Corp サービス認可方式及びサービス認可方法
JP2001077809A (ja) * 1999-09-06 2001-03-23 Nec Software Chugoku Ltd 電子証明書管理装置,方法および記録媒体
US20020184504A1 (en) * 2001-03-26 2002-12-05 Eric Hughes Combined digital signature
JP2003263518A (ja) * 2002-03-08 2003-09-19 Ntt Data Corp 文書データ処理装置、方法及びコンピュータプログラム
CA2479869C (en) * 2002-04-08 2013-07-09 Corestreet, Ltd. Physical access control
KR100558765B1 (ko) * 2002-11-14 2006-03-10 한국과학기술원 적응형 경로 인덱스를 이용한 xml 질의 수행 방법
US7721089B2 (en) * 2003-05-21 2010-05-18 Ntt Docomo, Inc. Broadcast encryption using RSA
DE602004024553D1 (de) * 2003-09-19 2010-01-21 Ntt Docomo Inc Verfahren und vorrichtung zur effizienten zertifikatwiderrufung

Also Published As

Publication number Publication date
US20060129803A1 (en) 2006-06-15
US20100005292A1 (en) 2010-01-07
WO2005029445A2 (en) 2005-03-31
US8321664B2 (en) 2012-11-27
JP4699368B2 (ja) 2011-06-08
JP2007506365A (ja) 2007-03-15
EP1668617B1 (de) 2009-12-09
WO2005029445A3 (en) 2005-07-28
US7840994B2 (en) 2010-11-23
DE602004024553D1 (de) 2010-01-21
EP1668617A2 (de) 2006-06-14

Similar Documents

Publication Publication Date Title
ATE451656T1 (de) Verfahren und vorrichtung zur effizienten zertifikatwiderrufung
EP1326368A3 (de) Widerrufung und Aktualisierung von Token in einer Infrastruktur mit öffentlichen Schlüsseln
DE602004012602D1 (de) Verfahren und vorrichtung zur personalisierung und identitätsverwaltung
DE602004004029D1 (de) Verfahren zur Verteilung von Konferenzschlüsseln, gemäss einem Identitätsbasierten Verschlüsselungssystem.
DE60308251D1 (de) Vorrichtung zur Bereitstellung von öffentlichen Schlüsselzertifikaten
DE60232165D1 (de) System und verfahren zur erzeugung und verwaltung von schnellwiederherstellungsvolumen
DE602004006571D1 (de) Verfahren und Gerät zur Beschleunigung der Echtheitsprüfung von öffentlichen Schlüsselzertifikaten
DE602004020521D1 (de) Atus von subschlüsseln
DE602004012485D1 (de) Vorrichtung, Verfahren und Rechnerprogramm zur Verwaltung von digitalen Zertifikaten
ATE370571T1 (de) System und verfahren zur erzeugung eines gesicherten netzes unter verwendung von beglaubigungen von verfahrensgruppen
DE602004018143D1 (de) Verfahren zur Teilung von Rechtsgegenständen zwischen Benutzern
DE60213419D1 (de) Client-server-modell zur synchronisation von dateien
ATE366010T1 (de) Verfahren und vorrichtung zur bereitstellung einer liste von öffentlichen schlüsseln in einem public-key-system
DE60328492D1 (de) Verfahren zur erzeugung von nanoteilchen
ATE527827T1 (de) Verfahren und vorrichtung zur hörgeräteanpassung
DE60308601D1 (de) Verfahren und System zur Authentifizierung von Kommunikationsendgeräten
EP1780938A3 (de) Infrastruktur für öffentliche Schlüssel und Zertifizierungsinstanz-System
EP1435718A3 (de) System und Verfahren zur Nachrichtenfilterung von einer anerkannten Autorität
TW200517971A (en) Methods and apparatus for providing application credentials
DE60128270D1 (de) Verfahren und System zur Erzeugung von Sprechererkennungsdaten, und Verfahren und System zur Sprechererkennung
DE60233918D1 (de) Verfahren and Vorrichtung zur gesicherten Netzwerkübertragung von kryptographischen Schlüsseln
EP1162780A3 (de) Vorrichtung und Verfahren zum Querauthentifizieren eines Verzeichnisses in einer Infrastruktur mit öffentlichen Schlüsseln
EP4415306A3 (de) Kryptografische verfahren und systeme mit aktivierungscodes für den widerruf digitaler zertifikate
DE602005026810D1 (de) Verfahren und Vorrichtung zur Verwaltung von heterogenen kryptographischen Operationen
ATE320126T1 (de) Verfahren zur digitalen unterschrift

Legal Events

Date Code Title Description
RER Ceased as to paragraph 5 lit. 3 law introducing patent treaties