| 发明名称 |
Revocation of Public Key Infrastructure Signatures |
| 摘要 |
In one implementation, a public key infrastructure utilizes a two stage revocation process for a set of data. One stage authenticates or revokes the set of data based on the status of the digital signature and another stage authenticates or revokes the set of data based on the status of an individual signature by the digital certificate. For example, a digital certificate based is assigned a certificate number. A serial number is assigned for a signature for the set of data as signed by the digital certificate. A data transmission, data packet, or install package includes the set of data, the certificate number and the serial number. Therefore, individual instances of the signature may be revoked according to serial number. |
| 申请公布号 |
US2015381375(A1) |
申请公布日期 |
2015.12.31 |
| 申请号 |
US201514816206 |
申请日期 |
2015.08.03 |
| 申请人 |
Cisco Technology, Inc. |
发明人 |
Pritikin Max |
| 分类号 |
H04L9/32;H04L9/00 |
主分类号 |
H04L9/32 |
| 代理机构 |
|
代理人 |
|
| 主权项 |
1. A method comprising:
identifying, using a processor of a client device, a set of data signed with a digital certificate, wherein the digital certificate includes a certificate number assigned to the digital certificate; extracting, using a processor, a signature from the digital certificate, wherein the signature is associated with a serial number for the set of data; and authenticating the signature based on the serial number. |
| 地址 |
San Jose CA US |
