CPC H04L 9/3247 (2013.01) [H04L 9/0836 (2013.01); H04L 9/0841 (2013.01)] | 19 Claims |
1. A computer-implemented method comprising:
obtaining an indication at a first computer system that a request digital signature matches a request, the indication obtained from an authentication system with access to cryptographic material that is inaccessible to the first computer system and used to derive a cryptographic key obtained in response to the indication; generating a digital signature for a response to the request and the request digital signature that matches the request based at least in part on an ordered plurality of derivation parameters and by performing one or more cryptographic operations;
and using a second cryptographic key different from and associated with the cryptographic key obtained in response to the indication, to verify the request digital signature, the second cryptographic key being derived from the cryptographic material, the cryptographic key is operable to sign the second cryptographic key.
|