US 11,930,123 B2
Cryptographic methods and systems for managing digital certificates
Marcos A. Simplicio, Jr., Sao Paulo (BR); Eduardo Lopes Cominetti, Sao Paulo (BR); Harsh Kupwade Patil, Fremont, CA (US); Jefferson E. Ricardini Fernandez, Sao Paulo (BR); and Marcos Vinicius M. Silva, Sao Paulo (BR)
Assigned to LG Electronics Inc., Seoul (KR); and University of Sao Paulo, Sao Paulo (BR)
Filed by LG Electronics Inc., Seoul (KR); and University of Sao Paulo, Sao Paulo (BR)
Filed on Apr. 30, 2021, as Appl. No. 17/245,647.
Application 17/245,647 is a continuation of application No. 16/702,356, filed on Dec. 3, 2019, granted, now 11,018,877.
Application 16/702,356 is a continuation of application No. 16/165,871, filed on Oct. 19, 2018, granted, now 10,536,279, issued on Jan. 14, 2020.
Claims priority of provisional application 62/575,514, filed on Oct. 22, 2017.
Prior Publication US 2021/0250184 A1, Aug. 12, 2021
This patent is subject to a terminal disclaimer.
Int. Cl. H04L 9/32 (2006.01); H04L 9/14 (2006.01); H04L 9/30 (2006.01); H04L 9/40 (2022.01); H04L 67/12 (2022.01); H04W 4/40 (2018.01); H04W 12/041 (2021.01); H04W 12/069 (2021.01)
CPC H04L 9/3268 (2013.01) [H04L 9/14 (2013.01); H04L 9/30 (2013.01); H04L 63/0823 (2013.01); H04L 67/12 (2013.01); H04W 4/40 (2018.02); H04W 12/041 (2021.01); H04W 12/069 (2021.01); H04L 2209/42 (2013.01)] 26 Claims
OG exemplary drawing
 
1. In an environment where a device, which is one of a plurality of entities, can communicate with one or more other entities through the exchange of messages, each message verifiable with a respective certificate, a method comprising:
sending, by the device, a certificate request, the certificate request including a caterpillar key, wherein the caterpillar key can be expanded to generate a plurality of cocoon keys, wherein each cocoon key can be used to generate both a respective signature key and a respective encryption key according to the same expansion function, wherein each encryption key for encrypting a respective certificate;
in response to the certificate request, receiving by the device one or more encrypted certificate responses, wherein each encrypted certificate response comprises a respective certificate and is encrypted using a respective encryption key;
for each encrypted certificate response:
generating, by the device, an associated decryption key as a function of a private key for the device; and
decrypting, by the device using the associated decryption key, the encrypted certificate response to recover the respective certificate.