公开(公告)号：US20090287933A1

公开(公告)日：2009-11-19

申请号：US12122352

申请日：2008-05-16

申请人： R. William Beckwith ,  Jeffrey G. Marshall ,  Jeffrey W. Chilton

发明人： R. William Beckwith ,  Jeffrey G. Marshall ,  Jeffrey W. Chilton

IPC分类号： H04L9/00

CPC分类号： G06F21/602 ,  H04L9/3255 ,  H04L9/3263

摘要： A system and method for issuing a cryptographic certificate comprises describing one or more prerequisite condition on the cryptographic certificate. The one or more prerequisite conditions comprise membership in one or more prerequisite group of entities. An entity may be a participant, a resource or a privilege, etc. The present invention also requires naming one or more target groups of entities on the cryptographic certificate. One or more prerequisite group stakeholder that authorizes an entity in the one or more prerequisite group of entities to be added as members in another group of entities sign the cryptographic certificate. The cryptographic certificate is also signed by one or more target group stakeholders that authorizes an entity to be added as a member of the one or more target groups. Exemplary prerequisite conditions relate to one or more of a membership in another group of entities, a physical characteristic, a temporal characteristic, a location characteristic or a position characteristic, among others.

摘要翻译： 用于发布加密证书的系统和方法包括描述加密证书上的一个或多个先决条件。 一个或多个先决条件包括在一个或多个先决条件组的实体中的成员资格。 实体可以是参与者，资源或特权等。本发明还要求在加密证书上命名一个或多个目标实体组。 一个或多个先决条件组利益相关者授权一个或多个实体组中的实体在另一组实体中添加为成员，以签署加密证书。 加密证书还由一个或多个目标组利益相关者签署，授权一个实体作为一个或多个目标组的成员添加。 示例性先决条件涉及另一组实体中的成员资格，物理特征，时间特征，位置特征或位置特征等中的一个或多个。

公开(公告)号：US20080250253A1

公开(公告)日：2008-10-09

申请号：US11783359

申请日：2007-04-09

申请人： Reynolds William Beckwith ,  Jeffrey G. Marshall ,  Jeffrey W. Chilton

发明人： Reynolds William Beckwith ,  Jeffrey G. Marshall ,  Jeffrey W. Chilton

IPC分类号： H04L9/32

CPC分类号： H04L9/3294 ,  H04L9/006 ,  H04L9/3215 ,  H04L9/3247 ,  H04L9/3263

摘要： A system and method for securing information associates a party with a node that communicates messages over one or more channels based on a channel access privilege. One or more authorities sign a cryptographic authorization permit (CAP) to authorize the channel access privilege, which can be a write privilege or a read privilege. In one embodiment, the authorization for the channel access privilege is based on a public key issued by an authority and the CAP comprises a cryptographic certificate digitally signed by the authority.

摘要翻译： 用于保护信息的系统和方法基于信道访问特权将一方与通过一个或多个信道传送消息的节点相关联。 一个或多个当局签署加密授权许可证（CAP）以授权通道访问权限，这可以是写权限或读权限。 在一个实施例中，信道访问特权的授权基于由主管机构发布的公共密钥，并且CAP包括由机构数字签名的密码证书。