主权项 |
1. A method for cross enterprise communication at a first sending enterprise, the method comprising:
receiving from a sender a message that is encrypted with a first enterprise public key and signed with a sender private key, wherein the first enterprise public key is associated with a first enterprise, and wherein the sender private key is associated with the sender; validating the message using a sender public key, wherein the sender public key is associated with the sender; decrypting the message using a first enterprise private key, wherein the first enterprise private key is associated with the first enterprise; removing a sender's name associated with the sender from the message; encrypting the message using a second enterprise public key for receipt by a second enterprise, wherein the second enterprise public key is associated with the second enterprise, wherein encrypting the message further comprises replacing, the sender's name with a distinguished name of the first enterprise, wherein the distinguished name of the first enterprise indicates that the encrypted signed message is sent from the first enterprise; signing the message by the first enterprise using the first enterprise private key to create a re-signed and re-encrypted message; sending the re-signed and re-encrypted message signed by the first enterprise to the second enterprise; maintaining a first list of authorized senders at the first enterprise, wherein the first list of authorized senders identifies an enterprise distinguished name for each sender of a plurality of senders of the first enterprise; and maintaining a second list of other enterprises with which the first enterprise communicates; wherein at least one of the first list and the second list provides one or more distinguished names. |