Claims
- 1. A method of policy filtering to configure an application program for a plurality of cryptographic capabilities, the method comprising:querying capability parameters of a service module; generating a list of capability parameters; receiving the list of capability parameters; filtering the list of capability parameters in accordance with configuration parameters of a policy filter; and providing a filtered list of capability parameters to a service module.
- 2. The method of claim 1, wherein the capability parameters are determined by a plurality of cipher suites that the service module supports.
- 3. The method of claim 2, wherein the cipher suites include at least one of an encryption algorithm, a key size, a type of a cryptographic operation, and a strength of the cryptographic operation.
- 4. The method of claim 2, the method further comprising:determining filtered cipher suites in accordance with the filtered list of capability parameters; and providing the filtered cipher suites to an application program.
- 5. The method of claim 1, wherein the policy filtering is performed in an untrusted environment.
- 6. A policy filter system for configuring an application program to support a plurality of cryptographic capabilities, the policy filter system comprising:an application for querying capability parameters; a service module for generating a list of capability parameters in accordance with the application querying the capability parameters; and a policy filter for filtering the list of capability parameters in accordance with predetermined configuration parameters and providing a filtered list of capability parameters to a service module.
- 7. The system of claim 6, wherein the capability parameters are determined by a plurality of cipher suites that the service module supports.
- 8. The system of claim 7, wherein the cipher suites includes at least one of an encryption algorithm, a key size, a type of a cryptographic operation, and a strength of the cryptographic operation.
- 9. The system of claim 7, wherein the policy filter is further configured to determine filtered cipher suites in accordance with the filtered list of capability parameters and providing the filtered cipher suites to the application.
- 10. The system of claim 6, wherein the policy filter system operates in an untrusted environment.
Parent Case Info
This application is related to pending U.S. patent application Ser. No. 08/940,429 which is assigned to Netscape Corporation, the assignee of the present invention, and further, the disclosure of which is incorporated herein by reference.
This application claims a benefit under 35 USC §119(e) of the provisional application filed Jun. 30, 1997, Ser. No. 60/051,307.
US Referenced Citations (5)
Number |
Name |
Date |
Kind |
5412717 |
Fischer |
May 1995 |
A |
5651068 |
Klemba et al. |
Jul 1997 |
A |
5740248 |
Fieres et al. |
Apr 1998 |
A |
5841869 |
Merkling et al. |
Nov 1998 |
A |
5907620 |
Klemba et al. |
May 1999 |
A |
Provisional Applications (1)
|
Number |
Date |
Country |
|
60/051307 |
Jun 1997 |
US |