&#xfeff;<html>
  <head>
    <META http-equiv="Content-Type" content="text/html; charset=utf-8">
<link rel="stylesheet" type="text/css" href="html_style_eog.css"/>
<script type="text/javascript">
          function printpage()
          {
          window.print()
          }
        </script>
<script type="text/javascript" src="https://components.uspto.gov/js/ais/40-patentsgazette.js"></script></head>
  <body bgcolor='#FFFFFF' onload='javascript: if ((navigator.appName.indexOf("Netscape")!=-1) && parent.leftFrame!=null) parent.leftFrame.location.reload();'>
    <basefont face="Times New Roman, Times New Roman, Times New Roman " size="2">
      <div style="margin-left: +10pt">
        <table width="90%" border="0" rules="none" align="center">
          <tr align="center">
            <td width="20%" colspan="1" rowspan="2" align="left" valign="top"><a href="https://ppubs.uspto.gov/pubwebapp/external.html?q=12463994.pn.&amp;db=USPAT" target="popup"><input type="button" class="button" value="   Full Text   "></a></td>
            <td class="table_data"><b>US 12,463,994 B1</b></td>
            <td width="20%" colspan="1" rowspan="2" align="right" valign="top">
              <form><input type="button" value="Print this page" onclick="printpage()"></form>
            </td>
          </tr>
          <tr align="center">
            <td colspan="1" class="table_data" style="text-transform: uppercase"><b>Handling of certificates by intermediate actors</b></td>
          </tr>
          <tr align="center">
            <td colspan="3" class="table_data"><b> Theron Tock,  Mountain View, CA (US);  Vimalkumar Jeyakumar,  Los Altos, CA (US);  Harish Kumar Bharat Singh,  Pleasanton, CA (US);  Ying Xie,  Cupertino, CA (US);  Vikram Kapoor,  Cupertino, CA (US); and  Yijou Chen,  Cupertino, CA (US)</b></td>
          </tr>
          <tr align="center">
            <td colspan="3" class="table_data"><b>Assigned to  Fortinet, Inc.,  Sunnyvale, CA (US)</b></td>
          </tr>
          <tr align="center">
            <td colspan="3" class="table_data"><b>Filed by  LACEWORK, INC.,  Mountain View, CA (US)</b></td>
          </tr>
          <tr align="center">
            <td colspan="3" class="table_data"><b>Filed on Jan.  26, 2023, as Appl. No. 18/160,213.</b></td>
          </tr>
          <tr>
            <td colspan="3" class="table_data" align="center"><b>Application 18/160,213 is a continuation in part of application No. 17/810,946, filed on Jul.  6, 2022, granted, now 11,895,135.</b></td>
          </tr>
          <tr>
            <td colspan="3" class="table_data" align="center"><b>Application 17/810,946 is a continuation of application No. 17/704,981, filed on Mar.  25, 2022, abandoned.</b></td>
          </tr>
          <tr>
            <td colspan="3" class="table_data" align="center"><b>Application 17/704,981 is a continuation in part of application No. 17/196,887, filed on Mar.  9, 2021, granted, now 11,689,553.</b></td>
          </tr>
          <tr>
            <td colspan="3" class="table_data" align="center"><b>Application 17/196,887 is a continuation of application No. 16/459,207, filed on Jul.  1, 2019, granted, now 10,986,114, issued on Apr.  20, 2021.</b></td>
          </tr>
          <tr>
            <td colspan="3" class="table_data" align="center"><b>Application 16/459,207 is a continuation of application No. 16/134,821, filed on Sep.  18, 2018, granted, now 10,419,469, issued on Sep.  17, 2019.</b></td>
          </tr>
          <tr>
            <td colspan="3" class="table_data" align="center"><b>Claims priority of provisional application 63/240,818, filed on Sep.  3, 2021.</b></td>
          </tr>
          <tr>
            <td colspan="3" class="table_data" align="center"><b>Claims priority of provisional application 62/650,971, filed on Mar.  30, 2018.</b></td>
          </tr>
          <tr>
            <td colspan="3" class="table_data" align="center"><b>Claims priority of provisional application 62/590,986, filed on Nov.  27, 2017.</b></td>
          </tr>
          <tr align="center">
            <td colspan="3" class="table_data"><b>Int. Cl. </b><i><b>H04L 29/06</b></i> (2006.01); <i><b>G06F 9/455</b></i> (2018.01); <i><b>G06F 9/54</b></i> (2006.01); <i><b>G06F 16/901</b></i> (2019.01); <i><b>G06F 16/9038</b></i> (2019.01); <i><b>G06F 16/9535</b></i> (2019.01); <i><b>G06F 16/9537</b></i> (2019.01); <i><b>G06F 21/57</b></i> (2013.01); <i><b>H04L 9/40</b></i> (2022.01); <i><b>H04L 43/045</b></i> (2022.01); <i><b>H04L 43/06</b></i> (2022.01); <i><b>H04L 67/306</b></i> (2022.01); <i><b>H04L 67/50</b></i> (2022.01); <i><b>G06F 16/2455</b></i> (2019.01)</td>
          </tr>
        </table>
        <table width="90%" border="0" rules="none" align="center">
          <colgroup>
            <col width="75%">
            <col width="15%">
          </colgroup>
          <tr align="left">
            <td class="table_data" align="left"><b>CPC </b><i><b>H04L 63/1425</b></i> (2013.01)&#xa0;[<i><b>G06F 9/455</b></i> (2013.01); <i><b>G06F 9/545</b></i> (2013.01); <i><b>G06F 16/9024</b></i> (2019.01); <i><b>G06F 16/9038</b></i> (2019.01); <i><b>G06F 16/9535</b></i> (2019.01); <i><b>G06F 16/9537</b></i> (2019.01); <i><b>G06F 21/57</b></i> (2013.01); <i><b>H04L 43/045</b></i> (2013.01); <i><b>H04L 43/06</b></i> (2013.01); <i><b>H04L 63/10</b></i> (2013.01); <i><b>H04L 67/306</b></i> (2013.01); <i><b>H04L 67/535</b></i> (2022.05); <i>G06F 16/2456</i> (2019.01)]</td>
            <td class="table_data" align="right"><b>18 Claims</b></td>
          </tr>
        </table>
        <center><img src="US12463994-20251104-D00000.gif" alt="OG exemplary drawing"></center>
        <table width="90%" border="0" rules="none" align="center">
          <colgroup>
            <col width="90%">
          </colgroup>
          <tr>
            <td class="table_data" align="center">&#xa0;</td>
          </tr>
          <tr>
            <td valign="top" class="para_text">
              <div class="claim_text_root"><b>1</b>. A method of handling of certificates by intermediate actors, the method comprising:<div class="claim_text">receiving, by a proxy and from a client, a client certificate and a first private key, wherein the client certificate comprises a short-term client certificate;</div>
                <div class="claim_text">generating, by the proxy and based on the client certificate and the first private key, an intermediate certificate;</div>
                <div class="claim_text">generating, by the proxy and in response to a request from the client to connect to a destination, an alternate certificate for the destination;</div>
                <div class="claim_text">providing, to the client, a certificate chain comprising the alternate certificate, the intermediate certificate, and the client certificate;</div>
                <div class="claim_text">receiving, from the client, a long-term client certificate and a second private key, wherein the long-term client certificate comprises a trusted root for the client;</div>
                <div class="claim_text">generating the short-term client certificate and the first private key, wherein the short-term client certificate is signed using the second private key; and</div>
                <div class="claim_text">providing, to the client, the short-term client certificate and the first private key.</div>
              </div>
            </td>
          </tr>
        </table>
      </div>
    
  </body>
</html>