JP7297861B2 - 拡張可能な証明書管理システムアーキテクチャ - Google Patents

拡張可能な証明書管理システムアーキテクチャ Download PDF

Info

Publication number
JP7297861B2
JP7297861B2 JP2021500186A JP2021500186A JP7297861B2 JP 7297861 B2 JP7297861 B2 JP 7297861B2 JP 2021500186 A JP2021500186 A JP 2021500186A JP 2021500186 A JP2021500186 A JP 2021500186A JP 7297861 B2 JP7297861 B2 JP 7297861B2
Authority
JP
Japan
Prior art keywords
certificate
application
authority application
engines
pseudonym
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Active
Application number
JP2021500186A
Other languages
English (en)
Japanese (ja)
Other versions
JP2021530169A (ja
JPWO2020014024A5 (https=
JP2021530169A5 (https=
Inventor
アラン ティー. マイヤー
グレゴリー エー. パウエル
Original Assignee
インテグリティ セキュリティ サービシーズ エルエルシー
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Priority claimed from US16/029,559 external-priority patent/US10581620B2/en
Application filed by インテグリティ セキュリティ サービシーズ エルエルシー filed Critical インテグリティ セキュリティ サービシーズ エルエルシー
Publication of JP2021530169A publication Critical patent/JP2021530169A/ja
Publication of JPWO2020014024A5 publication Critical patent/JPWO2020014024A5/ja
Publication of JP2021530169A5 publication Critical patent/JP2021530169A5/ja
Priority to JP2023097452A priority Critical patent/JP2023120287A/ja
Application granted granted Critical
Publication of JP7297861B2 publication Critical patent/JP7297861B2/ja
Priority to JP2025049185A priority patent/JP2025094191A/ja
Active legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Images

Classifications

    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/30Authentication, i.e. establishing the identity or authorisation of security principals
    • G06F21/44Program or device authentication
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/06Network architectures or network communication protocols for network security for supporting key management in a packet data network
    • H04L63/062Network architectures or network communication protocols for network security for supporting key management in a packet data network for key distribution, e.g. centrally by trusted party
    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/30Authentication, i.e. establishing the identity or authorisation of security principals
    • G06F21/45Structures or tools for the administration of authentication
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/04Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks
    • H04L63/0407Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks wherein the identity of one or more communicating identities is hidden
    • H04L63/0414Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks wherein the identity of one or more communicating identities is hidden during transmission, i.e. party's identity is protected against eavesdropping, e.g. by using temporary identifiers, but is known to the other party or parties involved in the communication
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/32Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
    • H04L9/3263Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials involving certificates, e.g. public key certificate [PKC] or attribute certificate [AC]; Public key infrastructure [PKI] arrangements
    • H04L9/3268Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials involving certificates, e.g. public key certificate [PKC] or attribute certificate [AC]; Public key infrastructure [PKI] arrangements using certificate validation, registration, distribution or revocation, e.g. certificate revocation list [CRL]
    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F2221/00Indexing scheme relating to security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F2221/21Indexing scheme relating to G06F21/00 and subgroups addressing additional information or applications relating to security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F2221/2129Authenticate client device independently of the user
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L2209/00Additional information or applications relating to cryptographic mechanisms or cryptographic arrangements for secret or secure communication H04L9/00
    • H04L2209/42Anonymization, e.g. involving pseudonyms
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/08Network architectures or network communication protocols for network security for authentication of entities
    • H04L63/0823Network architectures or network communication protocols for network security for authentication of entities using certificates

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Security & Cryptography (AREA)
  • Computer Hardware Design (AREA)
  • General Engineering & Computer Science (AREA)
  • Theoretical Computer Science (AREA)
  • Signal Processing (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Computing Systems (AREA)
  • Software Systems (AREA)
  • General Physics & Mathematics (AREA)
  • Physics & Mathematics (AREA)
  • Management, Administration, Business Operations System, And Electronic Commerce (AREA)
  • Storage Device Security (AREA)
JP2021500186A 2018-07-07 2019-07-01 拡張可能な証明書管理システムアーキテクチャ Active JP7297861B2 (ja)

Priority Applications (2)

Application Number Priority Date Filing Date Title
JP2023097452A JP2023120287A (ja) 2018-07-07 2023-06-14 拡張可能な証明書管理システムアーキテクチャ
JP2025049185A JP2025094191A (ja) 2018-07-07 2025-03-25 拡張可能な証明書管理システムアーキテクチャ

Applications Claiming Priority (3)

Application Number Priority Date Filing Date Title
US16/029,559 US10581620B2 (en) 2016-11-14 2018-07-07 Scalable certificate management system architectures
US16/029,559 2018-07-07
PCT/US2019/040064 WO2020014024A1 (en) 2018-07-07 2019-07-01 Scalable certificate management system architectures

Related Child Applications (1)

Application Number Title Priority Date Filing Date
JP2023097452A Division JP2023120287A (ja) 2018-07-07 2023-06-14 拡張可能な証明書管理システムアーキテクチャ

Publications (4)

Publication Number Publication Date
JP2021530169A JP2021530169A (ja) 2021-11-04
JPWO2020014024A5 JPWO2020014024A5 (https=) 2022-06-30
JP2021530169A5 JP2021530169A5 (https=) 2022-06-30
JP7297861B2 true JP7297861B2 (ja) 2023-06-26

Family

ID=69142492

Family Applications (3)

Application Number Title Priority Date Filing Date
JP2021500186A Active JP7297861B2 (ja) 2018-07-07 2019-07-01 拡張可能な証明書管理システムアーキテクチャ
JP2023097452A Pending JP2023120287A (ja) 2018-07-07 2023-06-14 拡張可能な証明書管理システムアーキテクチャ
JP2025049185A Pending JP2025094191A (ja) 2018-07-07 2025-03-25 拡張可能な証明書管理システムアーキテクチャ

Family Applications After (2)

Application Number Title Priority Date Filing Date
JP2023097452A Pending JP2023120287A (ja) 2018-07-07 2023-06-14 拡張可能な証明書管理システムアーキテクチャ
JP2025049185A Pending JP2025094191A (ja) 2018-07-07 2025-03-25 拡張可能な証明書管理システムアーキテクチャ

Country Status (6)

Country Link
EP (1) EP3818457B1 (https=)
JP (3) JP7297861B2 (https=)
KR (2) KR102766157B1 (https=)
CN (2) CN112513840B (https=)
AU (2) AU2019300777B2 (https=)
WO (1) WO2020014024A1 (https=)

Families Citing this family (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
KR102766157B1 (ko) * 2018-07-07 2025-02-10 인테그리티 시큐리티 서비시즈 엘엘씨 확장 가능한 인증서 관리 시스템 구축물
FR3105703A1 (fr) * 2019-12-20 2021-06-25 Orange Technique d’administration d’un profil d’accès à un réseau de communication
US12250326B2 (en) 2022-08-26 2025-03-11 Motorola Solutions, Inc. Certificate entitlement licenses for authenticating public key infrastructure certificate enrollment
DE102023119507A1 (de) * 2023-07-24 2025-01-30 Krone Agriculture Se Verfahren zur Datenbehandlung betreffend eine Landmaschine
US20260010614A1 (en) * 2024-07-05 2026-01-08 Integrity Security Services Llc Offline digital asset generation and provisioning

Citations (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
JP2016518081A (ja) 2013-04-16 2016-06-20 アマゾン・テクノロジーズ・インコーポレーテッド 分散型ロードバランサ
WO2018089990A1 (en) 2016-11-14 2018-05-17 INTEGRITY Security Services, Inc. Secure provisioning and management of devices

Family Cites Families (16)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US7426750B2 (en) * 2000-02-18 2008-09-16 Verimatrix, Inc. Network-based content distribution system
US20020071563A1 (en) * 2000-12-12 2002-06-13 Kurn David Michael Method and apparatus for cryptographic key rollover during operation
US7328344B2 (en) * 2001-09-28 2008-02-05 Imagitas, Inc. Authority-neutral certification for multiple-authority PKI environments
JP4252620B1 (ja) * 2008-08-27 2009-04-08 グローバルサイン株式会社 サーバ証明書発行システム
CN101873301B (zh) * 2009-04-22 2015-10-21 索尼株式会社 匿名注册系统以及方法
US8627063B2 (en) 2009-12-23 2014-01-07 Citrix Systems, Inc. Systems and methods for flash crowd control and batching OCSP requests via online certificate status protocol
EP2715601A1 (en) * 2011-06-01 2014-04-09 Security First Corp. Systems and methods for secure distributed storage
CN102333111A (zh) * 2011-07-21 2012-01-25 上海互联网软件有限公司 一种基于云计算的电子政务服务系统
US20130339740A1 (en) * 2012-03-08 2013-12-19 Omer Ben-Shalom Multi-factor certificate authority
US20140280595A1 (en) * 2013-03-15 2014-09-18 Polycom, Inc. Cloud Based Elastic Load Allocation for Multi-media Conferencing
CN103501229B (zh) * 2013-09-27 2017-02-01 武钢集团昆明钢铁股份有限公司 一种基于供应链管理的电子商务平台安全认证系统进行安全认证的方法
WO2016118979A2 (en) * 2015-01-23 2016-07-28 C3, Inc. Systems, methods, and devices for an enterprise internet-of-things application development platform
US10484351B2 (en) * 2016-01-28 2019-11-19 Etas Embedded Systems Canada Inc. System and method for certificate selection in vehicle-to-vehicle applications to enhance privacy
US10826905B2 (en) * 2016-12-05 2020-11-03 Citrix Systems, Inc. Secure access to on-premises web services from multi-tenant cloud services
CN107749836B (zh) * 2017-09-15 2020-07-31 江苏大学 面向用户隐私保护与数据可靠性的移动感知系统及其移动感知方法
KR102766157B1 (ko) * 2018-07-07 2025-02-10 인테그리티 시큐리티 서비시즈 엘엘씨 확장 가능한 인증서 관리 시스템 구축물

Patent Citations (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
JP2016518081A (ja) 2013-04-16 2016-06-20 アマゾン・テクノロジーズ・インコーポレーテッド 分散型ロードバランサ
WO2018089990A1 (en) 2016-11-14 2018-05-17 INTEGRITY Security Services, Inc. Secure provisioning and management of devices

Also Published As

Publication number Publication date
AU2019300777B2 (en) 2024-08-22
KR20250022904A (ko) 2025-02-17
CN112513840A (zh) 2021-03-16
EP3818457A4 (en) 2022-03-30
EP3818457B1 (en) 2026-04-22
EP3818457A1 (en) 2021-05-12
KR20210028637A (ko) 2021-03-12
AU2024259790A1 (en) 2024-11-28
CN112513840B (zh) 2025-01-24
CN119814456A (zh) 2025-04-11
JP2021530169A (ja) 2021-11-04
WO2020014024A1 (en) 2020-01-16
JP2023120287A (ja) 2023-08-29
JP2025094191A (ja) 2025-06-24
AU2019300777A1 (en) 2021-01-07
KR102766157B1 (ko) 2025-02-10

Similar Documents

Publication Publication Date Title
US11997220B2 (en) Scalable certificate management system architectures
JP7714743B2 (ja) 機器の安全なプロビジョニングと管理
JP7297861B2 (ja) 拡張可能な証明書管理システムアーキテクチャ

Legal Events

Date Code Title Description
A521 Request for written amendment filed

Free format text: JAPANESE INTERMEDIATE CODE: A523

Effective date: 20220622

A621 Written request for application examination

Free format text: JAPANESE INTERMEDIATE CODE: A621

Effective date: 20220622

A871 Explanation of circumstances concerning accelerated examination

Free format text: JAPANESE INTERMEDIATE CODE: A871

Effective date: 20220622

A131 Notification of reasons for refusal

Free format text: JAPANESE INTERMEDIATE CODE: A131

Effective date: 20220712

A521 Request for written amendment filed

Free format text: JAPANESE INTERMEDIATE CODE: A523

Effective date: 20221011

A131 Notification of reasons for refusal

Free format text: JAPANESE INTERMEDIATE CODE: A131

Effective date: 20221221

A521 Request for written amendment filed

Free format text: JAPANESE INTERMEDIATE CODE: A523

Effective date: 20230314

TRDD Decision of grant or rejection written
A01 Written decision to grant a patent or to grant a registration (utility model)

Free format text: JAPANESE INTERMEDIATE CODE: A01

Effective date: 20230516

A61 First payment of annual fees (during grant procedure)

Free format text: JAPANESE INTERMEDIATE CODE: A61

Effective date: 20230614

R150 Certificate of patent or registration of utility model

Ref document number: 7297861

Country of ref document: JP

Free format text: JAPANESE INTERMEDIATE CODE: R150