| CPC H04L 9/3268 (2013.01) [H04L 9/3247 (2013.01)] | 18 Claims |
|
1. A method for data processing, comprising:
receiving, at a first service executing on a datacenter and from a second service, a request to establish a secure connection, wherein the datacenter is provisioned, prior to the request, with an indication of a plurality of certificates that have been revoked by a certificate authority;
receiving, from the second service based at least in part on receiving the request, an indication of a certificate associated with the second service, wherein the indication includes a web token that is digitally signed by the certificate using a private key;
validating, at the first service and based at least in part on validating that the web token is validly signed at the first service, a certificate chain associated with the certificate based at least in part on the indication of the plurality of certificates that have been revoked by the certificate authority; and
communicating with the second service in accordance with validating the certificate chain.
|