摘要 |
Certain embodiments of the present invention provide a cryptographic system that enables updates with digital signatures, the signatures being created using an improved digital signature scheme, or using a conventional digital signature scheme that uses a one-way hash function algorithm during digital signature creation and verification, the updates being digitally-signed by a customer in addition to potentially being digitally-signed by a vendor. The updates being either programming instructions or a cryptographic key. The digital signatures associated with the updates being stored in a customer signature repository. The updates being delivered to a customer host along with the associated digital signature retrieved from a customer signature repository. Digital signatures being verified on the customer host using a customer public key. Acceptance of the updates being dependent on successful digital signature verification.
|