Certifying authorization in computer networks
DC
First Claim
Patent Images
1. A system for certifying authorizations, comprising:
- an authorizing computer; and
an authorized computer;
the authorizing computer and the authorized computer being interconnected by a computer network;
the authorizing computer being programmed to create a public key pair comprising a new public key and a new private key, to create an authorization certificate that certifies that a holder of the authorization certificate is authorized to perform an action referred to in the authorization certificate, the authorization certificate comprising the new public key, and to cause the authorization certificate and the new private key to be transmitted to the authorized computer;
the authorized computer being programmed to receive the authorization certificate and the new private key and to decrypt messages using the new private key as evidence that the authorized computer has obtained the authorization certificate legitimately;
wherein the action referred to in the authorization certificate that the holder of the authorization certificate is authorized to perform is operation of a program at the authorized computer, and the authorization certificate comprises a program fragment that enables the program at the authorized computer to function.
11 Assignments
Litigations
0 Petitions
Accused Products
Abstract
A system for certifying authorizations includes an authorizing computer and an authorized computer interconnected by a computer network. The authorizing computer creates a public key pair comprising a new public key and a new private key, and creates an authorization certificate that certifies that a holder of the authorization certificate is authorized to perform an action referred to in the authorization certificate. The authorization certificate includes the new public key. The authorizing computer causes the authorization certificate and the new private key to be transmitted to the authorized computer. The authorized computer receives the authorization certificate and the new private key and decrypts messages using the new private key as evidence that the authorized computer has obtained the authorization certificate legitimately.
255 Citations
4 Claims
-
1. A system for certifying authorizations, comprising:
-
an authorizing computer; and
an authorized computer;
the authorizing computer and the authorized computer being interconnected by a computer network;
the authorizing computer being programmed to create a public key pair comprising a new public key and a new private key, to create an authorization certificate that certifies that a holder of the authorization certificate is authorized to perform an action referred to in the authorization certificate, the authorization certificate comprising the new public key, and to cause the authorization certificate and the new private key to be transmitted to the authorized computer;
the authorized computer being programmed to receive the authorization certificate and the new private key and to decrypt messages using the new private key as evidence that the authorized computer has obtained the authorization certificate legitimately;
wherein the action referred to in the authorization certificate that the holder of the authorization certificate is authorized to perform is operation of a program at the authorized computer, and the authorization certificate comprises a program fragment that enables the program at the authorized computer to function.
-
-
2. A system for certifying authorizations, comprising:
-
an authorizing computer; and
an authorized computer;
the authorizing computer and the authorized computer being interconnected by a computer network;
the authorizing computer being programmed to create a public key pair comprising a new public key and a new private key, to create an authorization certificate that certifies that a holder of the authorization certificate is authorized to perform an action referred to in the authorization certificate, the authorization certificate comprising the new public key, and to cause the authorization certificate and the new private key to be transmitted to the authorized computer;
the authorized computer being programmed to receive the authorization certificate and the new private key and to decrypt messages using the new private key as evidence that the authorized computer has obtained the authorization certificate legitimately;
wherein the action referred to in the authorization certificate that the holder of the authorization certificate is authorized to perform is operation of a program at the authorized computer, and the authorization certificate comprises a license that the program at the authorized computer requires to be present at the authorized computer for the program to function.
-
-
3. A system for certifying authorizations, comprising:
-
an authorizing computer; and
an authorized computer;
the authorizing computer and the authorized computer being interconnected by a computer network;
the authorizing computer being programmed to create an authorization certificate that certifies that a holder of the authorization certificate is authorized to perform a particular action specified in the authorization certificate, and to cause the authorization certificate to be transmitted to the authorized computer;
the authorization certificate having a file structure that supports critical components and extension components;
the authorized computer being programmed to accept certificates having file structures that support critical components and extension components when the authorized computer is programmed to accept the critical components but to reject certificates having file structures that support critical components and extension components when the authorized computer is not programmed to accept the critical components;
the authorizing computer being programmed to include information unique to the particular action specified in the authorization certificate as at least one critical component of the authorization certificate, the unique information preventing the authorization certificate from being accepted by computers that are not programmed to accept the information unique to the action referred to in the authorization certificate.
-
-
4. A method for certifying authorizations in a system comprising an authorizing computer and an authorized computer interconnected by a computer network, the method comprising the steps of:
-
creating, at the authorizing computer, an authorization certificate that certifies that a holder of the authorization certificate is authorized to perform a particular action specified in the authorization certificate, the authorization certificate having a file structure that supports critical components and extension components;
causing the authorization certificate to be transmitted to the authorized computer, the authorized computer being programmed to accept certificates having file structures that support critical components and extension components when the authorized computer is programmed to accept the critical components but to reject certificates having file structures that support critical components and extension components when the authorized computer is not programmed to accept the critical components; and
including information unique to the particular action specified in the authorization certificate as at least one critical component of the authorization certificate in order to prevent the authorization certificate from being accepted by computers that are not programmed to accept the information unique to the action referred to in the authorization certificate.
-
Specification
-
- Resources
Litigation Campaign Assessment
Thank you for your request. You will receive a custom alert email when the Litigation Campaign Assessment is available.
×
Litigation Data
-
Current AssigneeSoverain IP, LLC
-
Original AssigneeOpen Market, Inc. (Divine Technology Ventures)
-
InventorsGeer, Jr., Daniel E., Tumblin, Henry R.
-
Primary Examiner(s)Laufer, Pinchus M.
-
Application NumberUS08/749,420Time in Patent Office1,600 DaysField of Search380/30, 380/25, 380/21, 380/49, 380/23, 380/24, 380/277, 380/280, 395/186, 395/188.01, 395/187.01, 705/26, 705/71, 705/76, 713/200, 713/201, 713/202, 713/156, 713/176US Class Current713/156CPC Class CodesG06Q 20/3821 Electronic credentialsH04L 2209/42 Anonymization, e.g. involvi...H04L 2209/56 Financial cryptography, e.g...H04L 2209/80 Wireless network architectu...H04L 63/0435 wherein the sending and rec...H04L 63/0442 wherein the sending and rec...H04L 63/0823 using certificates cryptogr...H04L 63/0853 using an additional device,...H04L 63/12 Applying verification of th...H04L 9/3234 involving additional secure...H04L 9/3263 involving certificates, e.g...
