Method and apparatus for a configurable online public key infrastructure (PKI) management system

Assignee

• General Instrument Corporation · US

Inventors

• Jiajing Liu · San Diego, US
• Thomas J. Barbour · San Diego, US
• Liqiang Chen · Beijing, CN
• Ying Chen · Hangzhou City, CN
• Wei Lin Chou · San Diego, US
• Christopher P. Gardner · San Diego, US
• Stuart P. Moskovics · San Diego, US
• Xin Qiu · San Diego, US
• Chia-Ling Tsai
• Ting Yao · Beijing, CN

Key dates

Classification

• Technology area (CPC H)Electricity
• CPC primaryH04L9/007
• WIPO fieldDigital communication
• WIPO sectorElectrical engineering

Abstract

A method and apparatus are provided for generating identity data to be provisioned in product devices that are a part of a project. The method includes establishing a template associated with each CA in a hierarchical chain of CAs having a root CA at a highest level in the chain and a signing CA at a lowest level in the chain. The template associated with the signing CA inherits mandatory attribute fields specified in the root CA and any intermediate CA in the hierarchical chain. The mandatory attribute fields are user-specifiable fields to be populated with PKI data. A configuration file is generated upon receipt of an order for digital certificates using PKI data provided by a user to populate the mandatory attribute fields of the template associated with the signing CA. The digital certificates requested in the order are generated using the PKI data in the configuration file.