公开(公告)号：US06715073B1

公开(公告)日：2004-03-30

申请号：US09223766

申请日：1998-12-31

申请人： Larry An ,  Hamid Bacha ,  Robert Briggs ,  Robert Burns ,  Robert B. Carroll ,  Mark Fisk ,  Hatem Ghafir ,  Raymond Good ,  Srinivasa Kasturi ,  Ku Lee ,  Drew Kittel ,  Lolo Lasida ,  Hiroshi Maruyama ,  Amit Pamecha ,  Paresh Patel ,  Dieter Poetzschke ,  Roger Reider ,  Khalid Asad

发明人： Larry An ,  Hamid Bacha ,  Robert Briggs ,  Robert Burns ,  Robert B. Carroll ,  Mark Fisk ,  Hatem Ghafir ,  Raymond Good ,  Srinivasa Kasturi ,  Ku Lee ,  Drew Kittel ,  Lolo Lasida ,  Hiroshi Maruyama ,  Amit Pamecha ,  Paresh Patel ,  Dieter Poetzschke ,  Roger Reider ,  Khalid Asad

IPC分类号： H04L900

CPC分类号： H04L63/0823 ,  G06F21/33 ,  H04L63/10

摘要： A secure-end-to-end communication system for electronic business system and method of operation, e.g., the Internet, includes a web server—vault controller having personal storage vaults in the controller for users, registration and certification authorities. Each personal vault runs programs on the controller under a unique UNIX user ID. Data storage is provided by the controller wherein the storage is owned by the same user ID assigned to the vault. A registration authority running as a software application in the controller processes requests to issue, renew and revoke digital certificates issued by a certification authority using two pairs of public-private keys. The registration authority interacts with the vault controller to decide whether an applicant qualifies to receive a digital certificate. The certification authority running as software application in the controller includes a certificate management system that provides services such as issuing, revoking, suspending, resuming, and renewing a user's right to digital certificates.

摘要翻译： 用于电子商务系统和操作方法（例如因特网）的安全端到端通信系统包括在用于用户，注册和认证机构的控制器中具有个人存储库的web服务器 - 保管库控制器。 每个个人保管库在独特的UNIX用户标识下，在控制器上运行程序。 数据存储由控制器提供，其中存储器由分配给保险库的相同用户ID拥有。 在控制器中作为软件应用程序运行的注册机构处理使用两对公私钥发出，更新和撤销由证书颁发机构颁发的数字证书的请求。 注册机构与文件库控制器进行交互，以决定申请人是否有资格接收数字证书。 在控制器中作为软件应用程序运行的认证机构包括提供诸如颁发，撤销，暂停，恢复和更新用户数字证书权限等服务的证书管理系统。

公开(公告)号：US06438690B1

公开(公告)日：2002-08-20

申请号：US09223834

申请日：1998-12-31

申请人： Paresh Patel ,  Ku Lee ,  Roger Reider ,  Drew Kittel ,  Lolo Lasida

发明人： Paresh Patel ,  Ku Lee ,  Roger Reider ,  Drew Kittel ,  Lolo Lasida

IPC分类号： H04L900

CPC分类号： G06Q20/3829 ,  G06F2221/2117 ,  G06Q20/02 ,  G06Q20/38215 ,  G06Q20/40 ,  H04L63/0823 ,  H04L2463/102

摘要： A secure end-to-end communications system includes a vault controller based registration application for managing the issuance and administration of digital certificates for use in conducting electronic commerce in the system. The system includes an end user terminal and a registration authority terminal coupled to a vault controller through the system. A registration application executable in the controller utilizes SSL and dedicated vaults to process requests for digital certificates from end users on an automated or manual basis. The registration application includes an enrollment module which implements the process of applying for and receiving certificates; an RA desk top module which allows an administrator to review certificate requests and manage certificates; a master Registration Authority (RA) module which conducts the processing of requests and the generation of certificates; and an RA (Registration Authority) database serves as a repository of information about applicants, certificate requests, and their processing history.

摘要翻译： 一种安全的端对端通信系统包括基于保险库控制器的注册应用程序，用于管理用于在系统中进行电子商务的数字证书的发行和管理。 该系统包括终端用户终端和通过系统耦合到保管库控制器的注册授权终端。 在控制器中可执行的注册应用程序利用SSL和专用保管库以自动或手动方式处理终端用户的数字证书请求。 注册申请包括实施申请和接收证书的过程的注册模块; RA桌面模块，允许管理员查看证书请求和管理证书; 主要注册机构（RA）模块，负责处理请求和生成证书; 并且RA（注册机构）数据库用作关于申请人，证书请求及其处理历史的信息的存储库。