Automatic certificate enrollment in a special-purpose appliance
US9674173B2 · kind B2 · utility
Assignee
Inventor
Key dates
| Filing date | Apr 10, 2015 |
| Grant date | Jun 6, 2017 |
| Priority date | — |
| Expiry date | Apr 10, 2035 |
Classification
- Technology area (CPC H)Electricity
- CPC primaryH04L63/029
- WIPO fieldDigital communication
- WIPO sectorElectrical engineering
Abstract
A digital certificate is created transparently on a mobile device. A VPN appliance receives user credentials from an app, the credentials familiar to the user and associated with an enterprise authentication service. The credentials are validated, comprising the first user authentication in a two-factor authentication method. The user is then presented with a display in the app asking for a PIN. The appliance generates a PIN and sends it to the user via the user enterprise email. The user enters the PIN in the app display. This is the second factor in the two-factor authentication. Once the user is authenticated, the appliance sends data for generating a Certificate Signing Request (CSR) to the app. The app generates a CSR and the appliance sends the CSR to an enterprise CA. A certificate is signed and enrolled. The signed digital certificate is then sent to the wrapped app.
Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.