System and method for safely verifying domain name ownership during years of SSL certificate application

A technology of security verification and verification method, which is applied in the system field of securely verifying domain name ownership when applying for multi-year SSL certificates. Realize the effect of security verification

A technology of security verification and verification method, which is applied in the system field of securely verifying domain name ownership when applying for multi-year SSL certificates. Realize the effect of security verification

CN114244516AActive Publication Date: 2022-03-25TRUSTASIA TECH INC
5 Cites 1 Cited by

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • System and method for safely verifying domain name ownership during years of SSL certificate application
  • System and method for safely verifying domain name ownership during years of SSL certificate application
  • System and method for safely verifying domain name ownership during years of SSL certificate application

Examples

Experimental program
Comparison scheme
Effect test

Embodiment 1

[0094] In this example, the first verification method is given, such as figure 2 As shown, it specifically includes the following steps:

[0095] 1. The applicant submits [domain name to be verified 1] to the order module and selects the DCV method as email verification, and initiates a certificate application;

[0096] 2. The order module stores [domain name to be verified 1] and generates [order number 1] associated with it, and obtains the specified unique email address from the mail service module and returns it to the applicant. In this example, [order number 1] + [ [Random value] is encrypted to obtain [ciphertext unique value] to generate a specified unique email address, and its format is as follows:

[0097] The unique value of ciphertext @dcv.httpsauto.com (agent verification domain name);

[0098] 3. The applicant sets the mailbox used to receive the verification email as the above-mentioned unique email address through the DNS TXT record, and notifies...

Embodiment 2

[0117] In this example, the second verification method is given, such as image 3 As shown, it specifically includes the following steps:

[0118] 1. The applicant submits [domain name to be verified 1] to the order module and selects the DCV method as email verification, and initiates a certificate application;

[0119] 2. The order module stores [domain name to be verified 1] and generates [order number 1] associated with it, and obtains the specified unique email address from the mail service module and returns it to the applicant. In this example, [order number 1] + [ [Random value] is encrypted to obtain [ciphertext unique value] to generate a specified unique email address, and its format is as follows:

[0120] The unique value of ciphertext @dcv.httpsauto.com (agent verification domain name);

[0121] 3. The applicant sets the email address for receiving DCV emails as the specified unique email address through the DNS TXT record, and notifies the above ord...

Embodiment 3

[0138] In this example, the third verification method is given, such as Figure 4 As shown, it specifically includes the following steps:

[0139] 1. The applicant submits [domain name to be verified 1] to the order module and selects the DCV method as email verification, and initiates a certificate application;

[0140] 2. The order module stores [domain name to be verified 1] and generates [order number 1] associated with it, and obtains the specified unique email address from the mail service module and returns it to the applicant. In this example, [order number 1] + [ [Random value] is encrypted to obtain [ciphertext unique value] to generate a specified unique email address, and its format is as follows:

[0141] The unique value of ciphertext @dcv.httpsauto.com (agent verification domain name);

[0142] 3. The applicant will set up any one of the 8 mailboxes used to receive DCV mails to be automatically forwarded, and forward the verification mail from the C...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

PUM

No PUM Login to View More

Abstract

The invention relates to a system and a method for safely verifying domain name ownership during years of SSL certificate application, and the system comprises an order module which is used for receiving a certificate request of an applicant and agenting the applicant to send an application to a CA mechanism; the mail service module is used for providing an appointed unique mailbox for receiving the verification mail for the applicant and receiving the verification mail sent by the CA; and the automatic verification module is used for automatically analyzing the verification mail received by the verification mail service module. Compared with the prior art, the method has the advantages of automatic verification, simplicity in operation, safety in verification, guarantee of safety of cross-account verification and the like.

Description

technical field [0001] The invention relates to the technical field of digital certificate security verification, in particular to a system and method for securely verifying domain name ownership when applying for a multi-year SSL certificate. Background technique [0002] As a common digital certificate, the SSL certificate is issued by a trusted digital certificate authority CA and is used to establish an encrypted connection between the applicant's browser and the website to protect the security and privacy of data in the communication network. Nowadays, manufacturers of major mainstream browsers will prompt "unsafe or dangerous" for websites without SSL certificates installed, while website browsers with SSL certificates installed will display security signs, indicating that the connection is safe. [0003] When applying for an SSL certificate, an enterprise or individual webmaster must cooperate with a CA review agency to complete DCV (Domain Control Verification) to pr...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

Application Information

Patent Timeline
25 Mar 2022
Publication
CN114244516A
IPC
H04L9/32; H04L9/40; H04L61/4511
CPC
H04L9/3268; H04L63/18; H04L63/0807
Inventors
厚建勇; 程锦