Authenticating digitally encoded products without private key sharing
US8788808B2 · kind B2 · utility
Assignee
Inventors
Key dates
| Filing date | May 22, 2012 |
| Grant date | Jul 22, 2014 |
| Priority date | — |
| Expiry date | May 22, 2032 |
Classification
- Technology area (CPC G)Physics
- CPC primaryG06F2221/2115
- WIPO fieldComputer technology
- WIPO sectorElectrical engineering
Abstract
A method and a corresponding system for authenticating software products are proposed. A digital certificate and a corresponding private key required to sign each product are stored on a server computer. Whenever a user needs to sign a product, he/she logs on a client computer and transmits a corresponding request to the server computer. The server computer verifies whether the request has been received from an authorized subject; for example, an address of the client computer and an identifier of the user are compared with a predefined list. If the result of the verification is positive, the product is signed and returned to the client computer. For this purpose, a script called on the server computer includes either an instruction passing the access password to a signing tool as a parameter or an instruction causing the signing tool to import the access password from a registry of the server computer.
Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.