公开(公告)号：US12238085B1

公开(公告)日：2025-02-25

申请号：US16588980

申请日：2019-09-30

Applicant: Amazon Technologies, Inc.

Inventor： Justin Paul Yancey ,  Jack A. Drooger ,  Sanjay Dey

IPC: H04L9/40

Abstract: A device management service may enforce compliance of remote devices with device specifications by disabling or enabling use of client certificates by applications installed on the devices. The device management service receives configuration data from an agent installed on the remote device. If the device management service determines that the device is no longer compliant with specifications for the device, then the device management service may prevent subsequent use of client certificate(s) by applications on the device to establish certificate-based connections. For example, the device management service may disable or revoke a client certificate or may instruct the device to disable or remove the client certificate. If the device becomes compliant at a subsequent time, then the device management service may enable the client certificate or cause a new client certificate to be sent to the device.