Method and system for updating and using digital certificates

摘要

A method and system for updating and using a digital certificate, and the method comprises: a first terminal establishing a secure link with an access point and using the secure link to send a certificate updating request to the access point, where the certificate updating request includes a digital certificate to be updated which is currently used by the first terminal; and the access point sending the digital certificate to be updated to a local Authentication Service Unit which issues the certificate to be updated; and the local Authentication Service Unit which issues the digital certificate to be updated verifying the digital certificate to be updated, and after the digital certificate is verified to be valid, a local Authentication Service Unit corresponding to the access point generating a new digital certificate of the first terminal and sending the new digital certificate to the first terminal through the access point.

主权项

1. A method for updating and using a digital certificate in establishing an ad hoc network communication between two terminals, the method comprising:
a first terminal having a wireless local area network (WLAN) Authentication and Privacy Infrastructure (WAPI) function sending a beacon probe frame to a second terminal having said WAPI function; after receiving said beacon probe frame from said first terminal, said second terminal sending a beacon probe response frame including digital certificate format information of said second terminal to said first terminal; after receiving said beacon probe response frame, said first terminal checking whether a digital certificate format of said second terminal is different from a digital certificate format of said first terminal; after said first terminal checking confirms that said digital certificate format of said second terminal is different from said digital certificate format of said first terminal, said first terminal establishing a secure link with an access point; and said first terminal using said secure link to send a certificate updating request to said access point, where said certificate updating request includes a digital certificate to be updated which is currently used by said first terminal and said digital certificate format information of said second terminal; said access point sending said digital certificate to be updated to a local Authentication Service Unit which issues the certificate to be updated; the local Authentication Service Unit which issues said digital certificate to be updated verifying said digital certificate to be updated, and after said digital certificate is verified to be valid, a local Authentication Service Unit corresponding to said access point generating a new digital certificate of said first terminal, and sending said new digital certificate to said first terminal through said access point so that a digital certificate format of said new digital certificate of said first terminal matches said digital certificate format of said second terminal; and after receiving said new digital certificate, said first terminal performing WAPI ad hoc network communication with said second terminal by using said new digital certificate.