CPC H04L 9/3268 (2013.01) [H04L 9/3247 (2013.01)] | 20 Claims |
1. A computer-implemented method comprising:
receiving a request to generate a to-be-signed (TBS) certificate for a digital certificate, the request comprising a first application programming interface (API) request that includes a public key, a validity period, and a serial number;
generating the TBS certificate, the TBS certificate including information to be included in the digital certificate without a digital signature;
returning a reference to the TBS certificate after generating the TBS certificate;
providing the TBS certificate to a certificate pre-issuance validation service to perform one or more validations on the TBS certificate based on one or more validation rules, comprising:
receiving a request for the TBS certificate from a requestor, the request comprising a second API request that includes the reference to the TBS certificate, and
returning the TBS certificate to the requestor, wherein the requestor provides the TBS certificate to the certificate pre-issuance validation service for validation; and
receiving a request to issue a signed certificate based on the TBS certificate following validation of the TBS certificate by the certificate pre-issuance validation service.
|