US 12,143,510 B2
Computing device digital certificates that include a geographic extension
Igor Stolbikov, Apex, NC (US); Scott Li, Cary, NC (US); Rod D. Waltermann, Rougemont, NC (US); and Chunling Han, Beijing (CN)
Assigned to Lenovo (United States) Inc., Morrisville, NC (US)
Filed by Lenovo (United States) Inc., Morrisville, NC (US)
Filed on Mar. 31, 2022, as Appl. No. 17/710,760.
Prior Publication US 2023/0318852 A1, Oct. 5, 2023
Int. Cl. H04L 29/06 (2006.01); H04L 9/30 (2006.01); H04L 9/32 (2006.01); H04L 9/40 (2022.01)
CPC H04L 9/3268 (2013.01) [H04L 9/3066 (2013.01); H04L 63/107 (2013.01)] 17 Claims
OG exemplary drawing
 
1. An apparatus A system, comprising:
a validating computing device; and
a computing device coupled to the validating computing device, wherein the computing device comprises:
a first processor, and
a first memory configured to store code executable by the first processor to:
manage a digital certificate for a computing device, the digital certificate comprising a geographic extension, and
populate the geographic extension with a set of one-way encrypted values that, when received by the validating computing device, enables the validating computing device to determine a raw distance between the computing device and the validating computing device and that further enables the validating computing device to validate the digital certificate of the computing device via the geographic extension populated with the set of one-way encrypted values,
wherein:
in populating the geographic extension with the set of one-way encrypted values for first distances that are less than a predetermined distance, the first processor is configured to:
determine a latitude point and a longitude point for the computing device based on a current location of the computing device,
combine the latitude point with a first blinding factor to generate a first elliptic curve cryptography (ECC) point on an elliptic curve, and
combine the longitude point with a second blinding factor to generate a second elliptic curve cryptography point on the elliptic curve, the first and second ECC points forming a first pair of ECC points on the elliptic curve, and
the validating computing device comprises:
a second processor, and
a second memory configured to store code executable by the second processor to:
validate the digital certificate of the computing device via the geographic extension populated with the set of one-way encrypted values by utilizing a Pythagorean theorem formula to calculate a Euclidian distance between the current location of the computing device and a location of the validating computing device as a difference between the first pair of ECC points and a second pair of ECC points for the validating computing device.