Looking for breakthrough ideas for innovation challenges? Try Patsnap Eureka!

Method, device and system for certificate renewal

A certificate signature request and certificate technology, which is applied in the Internet field, can solve the problems of unable to renew certificates, certificate invalidation, and high processing pressure of central CA, so as to achieve fast and effective certificate renewal and realize the effect of certificate renewal

Active Publication Date: 2020-05-08
BEIJING BAISHANCLOUD TECH CO LTD
View PDF5 Cites 0 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

[0008] 1. Due to the wide geographical distribution of IoT devices, the certificate cannot be renewed in time, resulting in the invalidation of the certificate
[0009] Second, the certificate renewal is implemented in a centralized manner, that is, only one central CA is set up for certificate renewal, and all IoT devices are renewed by this central CA, which leads to a greater processing pressure on the central CA, especially when the number of IoT devices is rapidly increasing. In the context of growth, the central CA is prone to failure under processing pressure, which affects the user experience of certificate renewal
[0010] 3. Manually apply for renewal to the central CA, and the renewal efficiency is slow
The certificate issued by the secondary private key is generally not allowed to continue to perform the issuance function, for example: the IoT device certificate can only be used for its own business, and cannot continue to issue other certificates

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Method, device and system for certificate renewal
  • Method, device and system for certificate renewal
  • Method, device and system for certificate renewal

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0070] In order to make the purpose, technical solutions and advantages of the embodiments of the present invention clearer, the technical solutions in the embodiments of the present invention will be clearly and completely described below in conjunction with the drawings in the embodiments of the present invention. Obviously, the described embodiments It is a part of embodiments of the present invention, but not all embodiments. Based on the embodiments of the present invention, all other embodiments obtained by persons of ordinary skill in the art without making creative efforts belong to the protection scope of the present invention. It should be noted that, in the case of no conflict, the embodiments in the present application and the features in the embodiments can be combined arbitrarily with each other.

[0071] The devices involved in this document may typically be IoT devices, which are simply referred to as devices in this document.

[0072] like figure 1 As shown,...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

PUM

No PUM Login to View More

Abstract

This paper discloses a method, device and system for certificate renewal. The method includes: the satellite CA receives permission setting information from the central CA, and the permission setting information includes permission information for indicating that only renewal processing is performed; the satellite CA receiving device sends the renewal request; determine whether the renewal conditions are met; determine that the renewal conditions are met, and generate a new device certificate, the new device certificate is generated by signing with the private key corresponding to the third-level certificate of the satellite CA; the generated A new device certificate is sent to the device. The present invention sets a distributed CA structure, sets a satellite CA with limited functions, and the satellite CA with limited functions shares the processing pressure of the central CA, and enables IoT devices to access the satellite CA nearby to quickly and effectively realize certificate renewal.

Description

technical field [0001] The present invention relates to the technical field of the Internet, in particular to a certificate renewal method, device and system. Background technique [0002] With the rapid increase of the Internet of Things (Internet of Things, IoT) scale, the number of IoT devices also increases rapidly, which causes people to pay great attention to the security of IoT devices. [0003] At present, the security issues of IoT devices mainly focus on data encryption and identity authentication. Data encryption and identity authentication are currently implemented based on a public key cryptographic infrastructure (Public Key Infrastructure, PKI for short) system. In the existing PKI security system, each IoT device obtains a certificate issued by a CA from a Certification Authority (CA for short), and also obtains a private key corresponding to this certificate, where the certificate is used to identify the IoT device. identity. In the subsequent processing,...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

Application Information

Patent Timeline
no application Login to View More
Patent Type & Authority Patents(China)
IPC IPC(8): H04L9/32H04L9/08H04L29/06
CPCH04L9/3263H04L9/3268H04L63/0823H04L9/0825H04L9/3247H04L9/40H04L9/083H04L9/0891H04L9/3265
Inventor 杨洋苗辉
Owner BEIJING BAISHANCLOUD TECH CO LTD
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Patsnap Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Patsnap Eureka Blog
Learn More
PatSnap group products