发明名称 |
MECHANISMS FOR CERTIFICATE REVOCATION STATUS VERIFICATION ON CONSTRAINED DEVICES |
摘要 |
A process is provided for communication security certificate revocation status verification by using the client device as a proxy in online status verification protocol. The process utilizes a nonce of an authentication protocol request message (nonce_A) to derive the nonce for the revocation status protocol request (nonce_S) to reduce the number of message exchanges needed between the client and the verifier devices, and a mechanism to send the nonce (nonce_S) prior to actual authentication protocol execution to ease the connectivity requirement of client device from on-demand connectivity to periodic connectivity. Similar functionality is achieved using a random seed established between the verifier and client. The verifier picks a seed for random number generation and sends that seed to the client. The client derives the nonce_S from the seed before status protocol execution, and the verifier derives the nonce_S from the seed before proxied status response verification. |
申请公布号 |
EP2873191(A4) |
申请公布日期 |
2016.04.20 |
申请号 |
EP20130804935 |
申请日期 |
2013.06.10 |
申请人 |
NOKIA TECHNOLOGIES OY |
发明人 |
KOSTIAINEN, KARI;ASOKAN, NADARAJAH |
分类号 |
H04L9/32;H04L9/08;H04W12/08 |
主分类号 |
H04L9/32 |
代理机构 |
|
代理人 |
|
主权项 |
|
地址 |
|