主权项 |
1. A computing device comprising:
one or more computer-readable storage media embodying computer-readable instructions; and a processor configured to utilize the computer-readable instructions to cause the computing device to implement a method comprising:
receiving a request from a client device to add extended data to a single digital certificate generated by a certificate authority, the single digital certificate including a signed first portion and an unsigned second portion, the unsigned second portion of the digital certificate including reserved empty spaces that are reserved for the extended data, the single digital certificate including a public key of an extended data signing key pair associated with the computing device that is to subsequently sign the single digital certificate, the public key being embedded in the signed first portion by the certificate authority when the single digital certificate is generated;responsive to receiving the request to add the extended data to the digital certificate, adding the extended data to the unsigned second portion of the digital certificate, the extended data including a client ID associated with the client device; andafter adding the extended data to the unsigned portion of the digital certificate, signing, by the computing device, the unsigned portion of the digital certificate using a private key that corresponds to the public key of the extended data signing key pair. |