US 12,267,426 B2
Systems and methods for implementing indirect certificate pinning
Maximilian Alastair Buchan, Slough (GB); Dzmitry Maskaliou, Slough (GB); Michael Antipin, Slough (GB); and Yann Golanski, Slough (GB)
Filed by WORLDR TECHNOLOGIES LIMITED, Slough (GB)
Filed on Jul. 5, 2022, as Appl. No. 17/857,774.
Claims priority of application No. 2109574 (GB), filed on Jul. 2, 2021.
Prior Publication US 2023/0082949 A1, Mar. 16, 2023
Int. Cl. H04L 9/30 (2006.01); H04L 9/32 (2006.01)
CPC H04L 9/30 (2013.01) [H04L 9/3263 (2013.01)] 16 Claims
OG exemplary drawing
 
1. A system for implementing indirect certificate pinning, the system comprising:
a client device configured to execute a client application, the client application having a public signing key pinned thereto; and
a certificate information server communicably coupled with the client device,
wherein, upon execution, the client application is configured to:
send, to the certificate information server, a connection request for connecting to the certificate information server;
receive, from the certificate information server, a security certificate of the certificate information server and signing information pertaining to the security certificate, wherein the signing information comprises: signatures of the security certificate for at least one signing key pair that is valid at a time of receiving the connection request at the certificate information server, a version number of the at least one signing key pair, expiration details of the at least one signing key pair; and
validate the signatures using the security certificate and the public signing key, for enabling connection of the client device with the certificate information server.