Patent · US Expired

Method, apparatus, and program for automated trust zone partitioning

US7272714B2 · kind B2 · utility

10Cited by

4References

33Claims

0Family size

Assignee

International Business Machines Corporation · US

Inventors

Nataraj Nagaratnam · Cary, US
Brian K. Smith · Wellington, US

Key dates

Filing date	May 31, 2002
Grant date	Sep 18, 2007
Priority date	—
Expiry date	Oct 15, 2024

Classification

Technology area (CPC H)Electricity
CPC primaryH04L63/0823
WIPO fieldDigital communication
WIPO sectorElectrical engineering

Abstract

An automated mechanism is provided for generating and distributing appropriate certificates for end entities in a distributed public key infrastructure environment based on trust relationships between the endpoints. Policies between trust zones are specified as an arbitrary graph, referred to as a trust graph. A password is assigned to a trust zone or an individual endpoint by the Certificate Authority. When an endpoint requests a certificate using the appropriate password, the certificate authority uses this graph to generate the appropriate certificates for the endpoint. The distribution of certificates is automated using the Certificate Management Protocol.

Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.