CN105337735A - 数字证书处理及校验的方法和装置 - Google Patents
数字证书处理及校验的方法和装置 Download PDFInfo
- Publication number
- CN105337735A CN105337735A CN201410225581.9A CN201410225581A CN105337735A CN 105337735 A CN105337735 A CN 105337735A CN 201410225581 A CN201410225581 A CN 201410225581A CN 105337735 A CN105337735 A CN 105337735A
- Authority
- CN
- China
- Prior art keywords
- digital certificate
- user
- server
- service server
- verification
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Granted
Links
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/08—Network architectures or network communication protocols for network security for authentication of entities
- H04L63/0823—Network architectures or network communication protocols for network security for authentication of entities using certificates
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/30—Authentication, i.e. establishing the identity or authorisation of security principals
- G06F21/31—User authentication
- G06F21/33—User authentication using certificates
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L9/00—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
- H04L9/32—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
- H04L9/3236—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials using cryptographic hash functions
- H04L9/3239—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials using cryptographic hash functions involving non-keyed hash functions, e.g. modification detection codes [MDCs], MD5, SHA or RIPEMD
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L9/00—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
- H04L9/32—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
- H04L9/3263—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials involving certificates, e.g. public key certificate [PKC] or attribute certificate [AC]; Public key infrastructure [PKI] arrangements
- H04L9/3268—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials involving certificates, e.g. public key certificate [PKC] or attribute certificate [AC]; Public key infrastructure [PKI] arrangements using certificate validation, registration, distribution or revocation, e.g. certificate revocation list [CRL]
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/08—Network architectures or network communication protocols for network security for authentication of entities
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L67/00—Network arrangements or protocols for supporting network services or applications
- H04L67/01—Protocols
- H04L67/02—Protocols based on web technology, e.g. hypertext transfer protocol [HTTP]
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L67/00—Network arrangements or protocols for supporting network services or applications
- H04L67/50—Network services
- H04L67/56—Provisioning of proxy services
- H04L67/568—Storing data temporarily at an intermediate stage, e.g. caching
Landscapes
- Engineering & Computer Science (AREA)
- Computer Security & Cryptography (AREA)
- Computer Networks & Wireless Communication (AREA)
- Signal Processing (AREA)
- General Engineering & Computer Science (AREA)
- Computer Hardware Design (AREA)
- Theoretical Computer Science (AREA)
- Computing Systems (AREA)
- Physics & Mathematics (AREA)
- General Physics & Mathematics (AREA)
- Software Systems (AREA)
- Information Transfer Between Computers (AREA)
- Management, Administration, Business Operations System, And Electronic Commerce (AREA)
- Power Engineering (AREA)
Abstract
Description
Claims (18)
Priority Applications (6)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN201410225581.9A CN105337735B (zh) | 2014-05-26 | 2014-05-26 | 数字证书处理及校验的方法和装置 |
TW103133271A TWI670622B (zh) | 2014-05-26 | 2014-09-25 | 數位憑證處理及校驗的方法和裝置 |
PCT/US2015/032396 WO2015183790A1 (en) | 2014-05-26 | 2015-05-26 | Processing and verifying digital certificate |
EP15799786.7A EP3149888B1 (en) | 2014-05-26 | 2015-05-26 | Processing and verifying digital certificate |
JP2016566252A JP6533236B2 (ja) | 2014-05-26 | 2015-05-26 | デジタル証明書の処理及び検証 |
US14/721,484 US10362020B2 (en) | 2014-05-26 | 2015-05-26 | Processing and verifying digital certificate |
Applications Claiming Priority (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN201410225581.9A CN105337735B (zh) | 2014-05-26 | 2014-05-26 | 数字证书处理及校验的方法和装置 |
Publications (2)
Publication Number | Publication Date |
---|---|
CN105337735A true CN105337735A (zh) | 2016-02-17 |
CN105337735B CN105337735B (zh) | 2019-06-07 |
Family
ID=54556905
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
CN201410225581.9A Active CN105337735B (zh) | 2014-05-26 | 2014-05-26 | 数字证书处理及校验的方法和装置 |
Country Status (6)
Country | Link |
---|---|
US (1) | US10362020B2 (zh) |
EP (1) | EP3149888B1 (zh) |
JP (1) | JP6533236B2 (zh) |
CN (1) | CN105337735B (zh) |
TW (1) | TWI670622B (zh) |
WO (1) | WO2015183790A1 (zh) |
Cited By (4)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN109493098A (zh) * | 2018-11-28 | 2019-03-19 | 上海中信信息发展股份有限公司 | 禽类产品数字证书校验方法及装置 |
CN110069729A (zh) * | 2017-11-15 | 2019-07-30 | 百度在线网络技术(北京)有限公司 | 一种应用的离线缓存方法和系统 |
TWI697802B (zh) * | 2018-11-12 | 2020-07-01 | 臺灣網路認證股份有限公司 | 依客戶環境選擇資料傳遞方式以進行憑證作業之系統及方法 |
CN112291067A (zh) * | 2020-11-02 | 2021-01-29 | 路玉太 | 一种业务操作记录及操作验证方法、装置 |
Families Citing this family (7)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN106302308B (zh) * | 2015-05-12 | 2019-12-24 | 阿里巴巴集团控股有限公司 | 一种信任登录方法和装置 |
KR101642223B1 (ko) * | 2015-05-12 | 2016-07-22 | 주식회사 수산아이앤티 | 사설 인증서의 설치를 유도하는 방법 |
US10771260B2 (en) * | 2015-06-16 | 2020-09-08 | Vellitas Llc | Systems and methods for digital certificate security |
JP6728706B2 (ja) * | 2016-01-21 | 2020-07-22 | 富士ゼロックス株式会社 | 情報処理システム、情報処理装置及び情報処理プログラム |
US10769267B1 (en) * | 2016-09-14 | 2020-09-08 | Ca, Inc. | Systems and methods for controlling access to credentials |
EP3461073A1 (en) | 2017-09-21 | 2019-03-27 | Lleidanetworks Serveis Telemàtics S.A. | Platform and method of certification of an electronic notice for electronic identification and trust services (eidas) |
US10841305B2 (en) * | 2017-10-02 | 2020-11-17 | Blackberry Limited | Authenticating for a software service |
Citations (4)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN101437228A (zh) * | 2008-12-17 | 2009-05-20 | 北京握奇数据系统有限公司 | 基于智能卡的无线业务的实现方法、装置和系统 |
CN102024102A (zh) * | 2010-06-07 | 2011-04-20 | 无敌科技(西安)有限公司 | 一种嵌入式设备中离线drm证书管控的方法 |
CN102026180A (zh) * | 2009-09-15 | 2011-04-20 | 中国移动通信集团公司 | M2m传输控制方法、装置及系统 |
CN102202047A (zh) * | 2010-03-24 | 2011-09-28 | 通用汽车环球科技运作有限责任公司 | 使用可变证书间更新周期的车辆网络中的适应性证书分配机制 |
Family Cites Families (27)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
AU3712300A (en) * | 1999-06-11 | 2001-01-02 | Liberate Technologies | Hierarchical open security information delegation and acquisition |
WO2001011843A1 (en) * | 1999-08-06 | 2001-02-15 | Sudia Frank W | Blocked tree authorization and status systems |
US7073055B1 (en) | 2001-02-22 | 2006-07-04 | 3Com Corporation | System and method for providing distributed and dynamic network services for remote access server users |
JP2003304240A (ja) | 2002-04-10 | 2003-10-24 | Hitachi Ltd | 電子データ署名方法及び情報処理システム |
US20040030887A1 (en) | 2002-08-07 | 2004-02-12 | Harrisville-Wolff Carol L. | System and method for providing secure communications between clients and service providers |
US7461260B2 (en) | 2002-12-31 | 2008-12-02 | Intel Corporation | Methods and apparatus for finding a shared secret without compromising non-shared secrets |
US7389530B2 (en) * | 2003-09-12 | 2008-06-17 | International Business Machines Corporation | Portable electronic door opener device and method for secure door opening |
US7546373B2 (en) | 2003-11-14 | 2009-06-09 | Microsoft Corporation | Secure dynamic credential distribution over a network |
US20060059346A1 (en) | 2004-09-14 | 2006-03-16 | Andrew Sherman | Authentication with expiring binding digital certificates |
US8701168B2 (en) * | 2005-11-21 | 2014-04-15 | Oracle International Corporation | Method and apparatus for associating a digital certificate with an enterprise profile |
JP2007274403A (ja) | 2006-03-31 | 2007-10-18 | Canon Inc | 画像処理装置におけるユーザ証明書登録方法及びユーザ署名付き送信方法 |
US20090292599A1 (en) * | 2006-07-28 | 2009-11-26 | Alastair Rampell | Transactional advertising |
US20080046739A1 (en) * | 2006-08-16 | 2008-02-21 | Research In Motion Limited | Hash of a Certificate Imported from a Smart Card |
JP2008079091A (ja) | 2006-09-22 | 2008-04-03 | Fujitsu Ltd | 電子証明書を用いる認証システム |
ATE552685T1 (de) * | 2006-11-15 | 2012-04-15 | Research In Motion Ltd | Sicheres, auf kundenberechtigungsnachweis basierendes sitzungsauthentifizierungsverfahren und vorrichtung |
US10015158B2 (en) | 2008-02-29 | 2018-07-03 | Blackberry Limited | Methods and apparatus for use in enabling a mobile communication device with a digital certificate |
US8386785B2 (en) * | 2008-06-18 | 2013-02-26 | Igt | Gaming machine certificate creation and management |
US10270602B2 (en) * | 2008-10-01 | 2019-04-23 | International Business Machines Corporation | Verifying and enforcing certificate use |
JP2010283575A (ja) | 2009-06-04 | 2010-12-16 | Konica Minolta Business Technologies Inc | 認証用プログラム、認証用装置および認証方法 |
US8237457B2 (en) * | 2009-07-15 | 2012-08-07 | International Business Machines Corporation | Replacement-gate-compatible programmable electrical antifuse |
WO2011055486A1 (ja) | 2009-11-09 | 2011-05-12 | 日本電気株式会社 | アクセス制御システム、通信端末、サーバ、およびアクセス制御方法 |
US8613067B2 (en) * | 2009-11-17 | 2013-12-17 | Secureauth Corporation | Single sign on with multiple authentication factors |
US8819848B2 (en) * | 2009-11-24 | 2014-08-26 | Comcast Interactive Media, Llc | Method for scalable access control decisions |
US8645699B2 (en) | 2010-03-15 | 2014-02-04 | Blackberry Limited | Use of certificate authority to control a device's access to services |
US9369458B2 (en) | 2012-05-18 | 2016-06-14 | Red Hat, Inc. | Web-centric authentication protocol |
US9276749B2 (en) * | 2012-07-31 | 2016-03-01 | Adobe Systems Incorporated | Distributed validation of digitally signed electronic documents |
US9332002B1 (en) * | 2013-03-14 | 2016-05-03 | Amazon Technologies, Inc. | Authenticating and authorizing a user by way of a digital certificate |
-
2014
- 2014-05-26 CN CN201410225581.9A patent/CN105337735B/zh active Active
- 2014-09-25 TW TW103133271A patent/TWI670622B/zh active
-
2015
- 2015-05-26 EP EP15799786.7A patent/EP3149888B1/en active Active
- 2015-05-26 JP JP2016566252A patent/JP6533236B2/ja active Active
- 2015-05-26 WO PCT/US2015/032396 patent/WO2015183790A1/en active Application Filing
- 2015-05-26 US US14/721,484 patent/US10362020B2/en active Active
Patent Citations (4)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN101437228A (zh) * | 2008-12-17 | 2009-05-20 | 北京握奇数据系统有限公司 | 基于智能卡的无线业务的实现方法、装置和系统 |
CN102026180A (zh) * | 2009-09-15 | 2011-04-20 | 中国移动通信集团公司 | M2m传输控制方法、装置及系统 |
CN102202047A (zh) * | 2010-03-24 | 2011-09-28 | 通用汽车环球科技运作有限责任公司 | 使用可变证书间更新周期的车辆网络中的适应性证书分配机制 |
CN102024102A (zh) * | 2010-06-07 | 2011-04-20 | 无敌科技(西安)有限公司 | 一种嵌入式设备中离线drm证书管控的方法 |
Cited By (5)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN110069729A (zh) * | 2017-11-15 | 2019-07-30 | 百度在线网络技术(北京)有限公司 | 一种应用的离线缓存方法和系统 |
TWI697802B (zh) * | 2018-11-12 | 2020-07-01 | 臺灣網路認證股份有限公司 | 依客戶環境選擇資料傳遞方式以進行憑證作業之系統及方法 |
CN109493098A (zh) * | 2018-11-28 | 2019-03-19 | 上海中信信息发展股份有限公司 | 禽类产品数字证书校验方法及装置 |
CN112291067A (zh) * | 2020-11-02 | 2021-01-29 | 路玉太 | 一种业务操作记录及操作验证方法、装置 |
CN112291067B (zh) * | 2020-11-02 | 2023-02-07 | 路玉太 | 一种业务操作记录及操作验证方法、装置 |
Also Published As
Publication number | Publication date |
---|---|
CN105337735B (zh) | 2019-06-07 |
US10362020B2 (en) | 2019-07-23 |
JP2017517956A (ja) | 2017-06-29 |
TWI670622B (zh) | 2019-09-01 |
EP3149888A1 (en) | 2017-04-05 |
EP3149888A4 (en) | 2018-01-10 |
EP3149888B1 (en) | 2019-07-24 |
WO2015183790A1 (en) | 2015-12-03 |
TW201544987A (zh) | 2015-12-01 |
US20150341353A1 (en) | 2015-11-26 |
JP6533236B2 (ja) | 2019-06-19 |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
CN105337735A (zh) | 数字证书处理及校验的方法和装置 | |
US11080691B2 (en) | Fork-tolerant consensus protocol | |
US9471436B2 (en) | Use of incremental checkpoints to restore user data stream processes | |
US8219687B2 (en) | Implementing browser based hypertext transfer protocol session storage | |
EP3559874A2 (en) | Event-driven blockchain workflow processing | |
US8433906B2 (en) | Method and system for microlocking web content | |
CN104270395A (zh) | 一种输入数据校验的方法、装置及系统 | |
CN114616795B (zh) | 用于防止重试或重放攻击的安全机制 | |
CN105635229B (zh) | 数据回填方法及装置 | |
CN106897053A (zh) | 一种代码发布方法与装置 | |
CN106874315A (zh) | 用于提供对内容资源的访问的方法和装置 | |
CN110753045A (zh) | 不同域之间单点登录的方法 | |
CN106657310B (zh) | 表单的提交方法及装置 | |
CN106921645A (zh) | 信息发布方法、客户端及服务端 | |
CN113362173A (zh) | 防重机制验证方法、验证系统、电子设备及存储介质 | |
Pan et al. | Gray computing: A framework for computing with background javascript tasks | |
US12079787B2 (en) | Generating transaction vectors for facilitating network transactions | |
CN115374098A (zh) | 高并发支付订单防重方法、装置、系统、设备、介质和程序产品 | |
US20170134389A1 (en) | Third Party Paywall Authentication System | |
US8886938B1 (en) | System and method for cross-site reference forgery attack prevention using double validated tokens with time sensitivity | |
CN113179273A (zh) | 基于区块链侧链的区块头验证方法、装置和计算机可读存储介质 | |
US8667563B1 (en) | Systems and methods for displaying personalized content | |
CN110598457B (zh) | 一种票据处理方法、装置、处理设备及计算机存储介质 | |
US20230196185A1 (en) | Generating and maintaining a feature family repository of machine learning features | |
CN115037507B (zh) | 用户访问管理的方法、装置和系统 |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
C06 | Publication | ||
PB01 | Publication | ||
C10 | Entry into substantive examination | ||
SE01 | Entry into force of request for substantive examination | ||
REG | Reference to a national code |
Ref country code: HK Ref legal event code: DE Ref document number: 1219005 Country of ref document: HK |
|
GR01 | Patent grant | ||
GR01 | Patent grant | ||
TR01 | Transfer of patent right |
Effective date of registration: 20191206 Address after: P.O. Box 31119, grand exhibition hall, hibiscus street, 802 West Bay Road, Grand Cayman, Cayman Islands Patentee after: Innovative advanced technology Co., Ltd Address before: A four-storey 847 mailbox in Grand Cayman Capital Building, British Cayman Islands Patentee before: Alibaba Group Holding Co., Ltd. |
|
TR01 | Transfer of patent right |