Updating certificate status in a system and method for processing certificates located in a certificate search

摘要

A system and method for processing certificates located in a certificate search. Certificates located in a certificate search are processed at a data server (e.g. a mobile data server) coupled to a computing device (e.g. a mobile device) to determine status data that can be used to indicate the status of those certificates to a user of the computing device. Selected certificates may be downloaded to the computing device for storage, and the downloaded certificates are tracked by the data server. This facilitates the automatic updating of the status of one or more certificates stored on the computing device by the data server, in which updated status data is pushed from the data server to the computing device.

主权项

1. A data server comprising a processor and a memory, the processor configured to execute instructions of one or more application modules, the execution of the one or more application modules causing the processor to:
receive a certificate search request from a wireless communication device; initiate a certificate search on one or more certificate servers remote from the wireless communication device, wherein at least one query is submitted to the one or more certificate servers to request retrieval of certificates satisfying the certificate search request; retrieve one or more certificates from the one or more certificate servers; for each of the one or more retrieved certificates,
process the certificate to determine data comprising certificate data identifying the certificate, and status data by verifying at least one status property of the certificate, wherein the at least one status property is at least one of certificate validity, revocation status, encryption key strength, or trust status; for at least one of the one or more retrieved certificates,
transmit data comprising the certificate data and the status data to the wireless communication device; maintain, on the data server, a copy of at least one certificate stored on the wireless communication device; automatically re-verify, periodically, at least one status property of the at least one certificate stored on the wireless communication device for which a copy is maintained on the data server, to determine updated status data for the at least one certificate stored on the wireless communication device for which a copy is maintained on the data server, wherein the re-verifying is not initiated by the wireless communication device; and for each of the at least one certificate stored on the wireless communication device for which a copy is maintained on the data server,
maintain, on the data server, a copy of the status data determined at the processing for that certificate,compare the updated status data for that certificate to the copy of the status data maintained on the data server for that certificate, andif the updated status data for that certificate differs from the copy of the status data maintained on the data server for that certificate,
transmit the updated status data for that certificate to the wireless communication device, wherein transmission of the updated status data is not initiated by the wireless communication device.