| 发明名称 |
Rule-based Validity of Cryptographic Key Material |
| 摘要 |
In representative embodiments, a rule-based certificate cryptographic key material comprising containing a rule set defining validity conditions is associated with cryptographic key material assigned to an entity for use in authenticated communications. The validity of the cryptographic material changes state based on whether the entity is compliant or non-compliant with the rule set. This is accomplished in a representative embodiment by suspending the validity of the cryptographic key material when the entity is non-compliant with the rules and reinstating the validity of the cryptographic key material when the entity becomes compliant. A rules compliance service determines the validity of the cryptographic material in part using updates sent by the entity. Entities can delegate the update to a delegate device. Encryption can be used to preserve privacy. |
| 申请公布号 |
US2015271157(A1) |
申请公布日期 |
2015.09.24 |
| 申请号 |
US201414255710 |
申请日期 |
2014.04.17 |
| 申请人 |
Venafi, Inc. |
发明人 |
Ronca Remo |
| 分类号 |
H04L29/06;H04L9/08 |
主分类号 |
H04L29/06 |
| 代理机构 |
|
代理人 |
|
| 主权项 |
1. A method for altering the validity status of cryptographic key material, the method comprising:
storing a rules based attribute set comprising a rule set defining conditions under which cryptographic key material will be honored for authenticated communications, the rule set comprising at least one of:
times at which the cryptographic key material should be valid and/or invalid;quorum information; andgeo-fence information; associating the rules based attribute set with cryptographic key material used for authenticated communications; creating a rules evaluation message comprising information allowing compliance with the rule set to be determined; and sending the rules evaluation message to a rules compliance service. |
| 地址 |
Salt Lake City UT US |
