Processing

Please wait...

Settings

Settings

Goto Application

1. WO2017058967 - CODE SIGNING SERVICE

Publication Number WO/2017/058967
Publication Date 06.04.2017
International Application No. PCT/US2016/054259
International Filing Date 29.09.2016
Chapter 2 Demand Filed 06.06.2017
IPC
H04L 9/32 2006.1
HELECTRICITY
04ELECTRIC COMMUNICATION TECHNIQUE
LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
9Arrangements for secret or secure communication
32including means for verifying the identity or authority of a user of the system
CPC
H04L 63/08
HELECTRICITY
04ELECTRIC COMMUNICATION TECHNIQUE
LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
63Network architectures or network communication protocols for network security
08for supporting authentication of entities communicating through a packet data network
H04L 9/0861
HELECTRICITY
04ELECTRIC COMMUNICATION TECHNIQUE
LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
9Cryptographic mechanisms or cryptographic; arrangements for secret or secure communication
08Key distribution ; or management, e.g. generation, sharing or updating, of cryptographic keys or passwords
0861Generation of secret information including derivation or calculation of cryptographic keys or passwords
H04L 9/0897
HELECTRICITY
04ELECTRIC COMMUNICATION TECHNIQUE
LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
9Cryptographic mechanisms or cryptographic; arrangements for secret or secure communication
08Key distribution ; or management, e.g. generation, sharing or updating, of cryptographic keys or passwords
0894Escrow, recovery or storing of secret information, e.g. secret key escrow or cryptographic key storage
0897involving additional devices, e.g. trusted platform module [TPM], smartcard or USB
H04L 9/321
HELECTRICITY
04ELECTRIC COMMUNICATION TECHNIQUE
LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
9Cryptographic mechanisms or cryptographic; arrangements for secret or secure communication
32including means for verifying the identity or authority of a user of the system ; or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
321involving a third party or a trusted authority
H04L 9/3247
HELECTRICITY
04ELECTRIC COMMUNICATION TECHNIQUE
LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
9Cryptographic mechanisms or cryptographic; arrangements for secret or secure communication
32including means for verifying the identity or authority of a user of the system ; or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
3247involving digital signatures
Applicants
  • MICROSOFT TECHNOLOGY LICENSING, LLC [US]/[US]
Inventors
  • RAJU, Prabu
  • LIU, Fengfen
  • WALSTAD, Christopher Leonard
  • BRODERICK, Levi P.
  • SONI, Himanshu
  • MOLBAK, Reed
  • LEJA, Klaudia
Agents
  • MINHAS, Sandip
  • CHEN, Wei-Chen Nicholas
  • DRAKOS, Katherine J.
  • KADOURA, Judy M.
  • HOLMES, Danielle J.
  • SWAIN, Cassandra T.
  • WONG, Thomas S.
  • CHOI, Daniel
  • HUANG Charles
Priority Data
14/871,74130.09.2015US
Publication Language English (en)
Filing Language English (EN)
Designated States
Title
(EN) CODE SIGNING SERVICE
(FR) SERVICE DE SIGNATURE PAR CODE
Abstract
(EN) A facility for enrolling a software implementer in a code signing. In one example facility, the facility receives information identifying the implementer, and credentials authenticating the implementer. The facility generates secret state for the implementer. Based on at least one or both of (1) at least a portion of the received credentials and (2) at least a portion of the generated secret state, the facility generates for the implementer a key pair comprising a private key and a public key, and persistently stores the secret state.
(FR) La présente invention concerne une fonction permettant d'inscrire un dispositif d'implémentation de logiciel dans une signature par code. Dans une fonction donnée à titre d'exemple, la fonction reçoit des informations identifiant le dispositif d'implémentation ainsi que des justificatifs authentifiant le dispositif d'implémentation. La fonction génère un état secret pour le dispositif d'implémentation. Sur la base (1) d'au moins une partie des justificatifs reçus et/ou (2) d'au moins une partie de l'état secret généré, la fonction génère pour le dispositif d'implémentation une paire de clés comprenant une clé privée et une clé publique et stocke sans cesse l'état secret.
Related patent documents
Latest bibliographic data on file with the International Bureau