Using multiple certificates to distribute public keys
US8214638B1 · kind B1 · utility
Assignee
Inventors
Key dates
| Filing date | Sep 26, 2006 |
| Grant date | Jul 3, 2012 |
| Priority date | — |
| Expiry date | Jan 9, 2031 |
Classification
- Technology area (CPC H)Electricity
- CPC primaryH04L9/3263
- WIPO fieldDigital communication
- WIPO sectorElectrical engineering
Abstract
A source computer is associated with multiple certificates. The source signs each certificate with a separate private key. From time to time, the source generates (a) new key pair(s) to replace (an) old one(s). The source uses the new private key(s) to sign the associated certificate(s). The source then requests a connection to a destination computer, the request being associated with the multiple certificates which identify the source. The source also transmits the new public key(s). The destination receives the request, and checks the certificates for validity. If less than all but at least a threshold number of the certificates are valid, the destination notes that one or more new public keys are being distributed. The destination accepts the connection, receives the new public key(s) associated with the invalid certificate(s), and replaces the corresponding old public key(s).
Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.