Looking for breakthrough ideas for innovation challenges? Try Patsnap Eureka!

X509 digital certificate quick analyzing and verifying method

A digital certificate and verification method technology, which is applied in user identity/authority verification, data processing applications, business, etc., can solve the problems of using the structural characteristics of X509 digital certificates, reducing the speed of security transaction processing, and consuming CPU system time, etc., to achieve saving Effects of certificate analysis work, work efficiency improvement, and faster response time

Active Publication Date: 2008-09-03
ARRAY NETWORKS BEIJING
View PDF0 Cites 4 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

The advantage of this is that it can be realized by using the ready-made general ASN.1 encoding method and program, but the structural characteristics of the X509 digital certificate itself are not used enough, and the analysis can only be compared according to the identifier defined in ASN.1, and then Determine the content
This method usually uses a recursive call method, so it consumes a lot of CPU and other system time, and at the same time, the speed of security transaction processing will be greatly reduced, and many customers' security transaction requests will respond very slowly.

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • X509 digital certificate quick analyzing and verifying method
  • X509 digital certificate quick analyzing and verifying method
  • X509 digital certificate quick analyzing and verifying method

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0012] The present invention will be described in detail below in conjunction with the accompanying drawings and embodiments.

[0013] Such as figure 1 As shown, the structure of an X509 digital certificate includes a certificate subject (TBSCertificate), a certificate signature algorithm identifier (signatureAlgorithm) and a certificate signature value (signatureValue). Among them, the TBSCertificate part is the key part, which contains many key fields of the certificate. Such as figure 2 As shown, for example: subject name (subject), issuer name (issuer), subject public key (subjectPublicKeyInfo), certificate validity period (validity) and other related information, these key fields are exactly what is required in the handshake protocol data.

[0014] Since the X509 digital certificate file structure is very clear, when parsing the X509 digital certificate, it is not necessary to perform a complete and cumbersome parsing in accordance with the ASN.1 encoding format. The...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

PUM

No PUM Login to View More

Abstract

The invention relates to a fast analysis and verification method of X509 digital certificate, which comprises following steps: 1) on the basis of structure characteristics, dismantling the X509 digital certificate into a certificate main body, a certificate signature algorithm identification and a certificate signature value; 2) on the basis of coding format of X509 digital certificate, locating and analyzing the respective primary key from the certificate main body; 3) establishing an index list on the basis the location information of all of the analyzed primary key, and storing the location information of all of the primary key in the index list; when reusing the certificate primary key information, directly reading the index list established in step 3. The invention improves the security transaction processing efficiency and reduces the consumption of the system resource and then provides a huge convenience to the follow-up access.

Description

technical field [0001] The invention relates to a fast parsing and verification method of an X509 digital certificate used in the Internet to verify the identity of both parties conducting electronic transactions. Background technique [0002] With the development of the Internet, people rely more and more on the Internet to complete transaction processing of some sensitive data, such as: electronic banking, e-commerce and so on. The electronicization of these sensitive data transactions has resulted in very important and private data being frequently transmitted across the network. To this end, people have invented many new technologies to ensure that these important and private data can be transmitted safely and reliably in the network. More and more users use SSL (Secure Socket Layer, Secure Socket Layer) and TLS (Transport Layer Security , Transport Layer Security) and other encryption mechanisms, they can construct a secure channel between the client / browser and the se...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

Application Information

Patent Timeline
no application Login to View More
IPC IPC(8): H04L9/32H04L29/06G06Q30/00
Inventor 林桂贤汪宗斌陈永亮
Owner ARRAY NETWORKS BEIJING
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Patsnap Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Patsnap Eureka Blog
Learn More
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic, Popular Technical Reports.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap|About US| Contact US: help@patsnap.com