Patents Assigned to DIGICERT, INC.
-
Patent number: 12683781Abstract: Systems and methods for managing a quantum vault for storing a secret include, responsive to a determination of a first level of quantum computing processing capability, defining a first encryption algorithm for the quantum vault such that the first encryption algorithm is sufficient to protect against the first level of quantum computing, such that a first layer of the quantum vault is configured with the first encryption algorithm; and monitoring the quantum computing processing capability; and responsive to a determination of a second level of the quantum computing processing capability where the first encryption algorithm is no longer sufficient to protect against, defining a second encryption algorithm for the quantum vault such that the second encryption algorithm is sufficient to protect against the second level of quantum computing processing capability, and such that the second encryption algorithm is configured as an outermost layer over the first encryption algorithm.Type: GrantFiled: March 18, 2024Date of Patent: July 14, 2026Assignee: DigiCert, Inc.Inventor: Avesta Hojjati
-
Patent number: 12684000Abstract: Systems and methods are provided for creating simulations and attack vectors related to events surrounding embedded and/or Internet of Things (IoT) devices using injectable grammar. According to one implementation, a server, arranged in a network environment, includes a processing device and a memory device configured to store a management program having logic. The logic enables the processing device to perform a step of incorporating a grammar template into the management program. The management program includes a grammar template that simulates events associated with the embedded devices, and is configured to manage the definition of the associated events. The logic further enables the processing device to perform a step of executing the grammar template in the network environment, yet outside of a sandbox environment, to simulate the events associated with the embedded devices.Type: GrantFiled: August 15, 2023Date of Patent: July 14, 2026Assignee: DigiCert, Inc.Inventors: Mahendra Shelke, Jaydeep Raval
-
Publication number: 20260197187Abstract: Systems and methods manage public-key hygiene across certificate authorities (CAs) using privacy-preserving queries to a certificate transparency (CT) log. A CA receives a certificate signing request (CSR), extracts a public key, and applies a predetermined cryptographic transform, such as homomorphic, to generate a privacy-preserving representation of the public key. The CA checks a CT log database updated by multiple CAs to determine whether the public key has been previously used to obtain a certificate. If no prior use is detected, the CA may issue a certificate and update the CT log with the privacy-preserving representation or a hash thereof to denote usage. If prior use is detected, the CA may reject the CSR, request resubmission with a different public key, or require explicit authorization to proceed. The CT log may store only encrypted public keys or both plaintext and encrypted entries to support public and private hierarchies.Type: ApplicationFiled: March 2, 2026Publication date: July 9, 2026Applicant: DigiCert, Inc.Inventor: Avesta Hojjati
-
Patent number: 12676760Abstract: Systems and methods for validating documents, organization, and individuals are provided, utilizing both automated and manually controlled validation checks. In one implementation, a method includes a step of receiving a request to perform a validation analysis with respect to an organization, wherein the validation analysis includes Machine-Learning (ML) procedures for checking multiple validation metrics. In response to gathering multiple documents relevant for performing the validation analysis, the method further includes a step of extracting data from each of the multiple documents relevant for checking the multiple validation metrics. Also, the method includes a step of accepting manual assistance from a validation specialist when needed for performing the validation analysis.Type: GrantFiled: June 3, 2024Date of Patent: July 7, 2026Assignee: DigiCert, Inc.Inventors: Daniel Birnel, Tyler Simpson, Ren Peterson, Avesta Hojjati
-
Publication number: 20260180812Abstract: Systems and methods for controlling automated access to webpage content include receiving, by a web server, a request for a webpage from a client device; determining, by analyzing one or more request parameters or behavioral indicators, that the client device is a bot rather than a human-operated client; obtaining, from the bot, an x.509 certificate; validating the x.509 certificate to authenticate the bot's identity; retrieving metadata from the validated x.509 certificate, the metadata comprising at least one of: a bot type, authorized content categories, permitted request frequencies, or intended usage policies; comparing the retrieved metadata against predefined access rules stored by the web server; and serving the requested webpage content or a modified version thereof based on the comparison, thereby ensuring that the bot's access aligns with its authorized permissions.Type: ApplicationFiled: December 20, 2024Publication date: June 25, 2026Applicant: DigiCert, Inc.Inventor: Avesta Hojjati
-
Publication number: 20260169731Abstract: Systems and methods for monitoring and managing cryptographic libraries within a version control system include steps of subsequent to integrating a monitoring agent with the version control system as a hook or plugin that triggers upon one or more version control events including commits, pushes, or merges, continuously observing code changes in real-time as source code is committed to the version control system; analyzing newly added or modified files within the committed code to detect cryptographic libraries and associated cryptographic functions; and generating alerts upon detection of introduced, deprecated, or vulnerable cryptographic components.Type: ApplicationFiled: December 17, 2024Publication date: June 18, 2026Applicant: DigiCert, Inc.Inventor: Avesta Hojjati
-
Patent number: 12647404Abstract: Systems and methods for coordination and management of keys and instructions for multiple encryption include, responsive to receiving encrypted data that has been encrypted via a plurality of layers of encryption, accessing a coordinator to determine instructions for multiple encryption; and decrypting the encrypted data based on the instructions and utilizing a plurality of keys with a key for each of the plurality of layers of encryption.Type: GrantFiled: September 20, 2023Date of Patent: June 2, 2026Assignee: DigiCert, Inc.Inventor: Tanner Young
-
Publication number: 20260149708Abstract: Systems and methods are provided for validating client information prior to certificate issuance. A method, according to one implementation, includes a step of providing an initiation option to a validation agent in response to the validation agent selecting a portion of a document retrieved from a reliable web source, the initiation option allowing the validation agent to initiate an automated validation procedure. In response to the validation agent selecting the initiation option, the method includes a step of performing the automated validation procedure, wherein the automated validation procedure includes a) a comparing sub-step in which the portion of the document selected by the validation agent is compared with client information included in a certificate request, and b) a compliance sub-step in which it is determined whether or not a comparison, based on the comparing sub-step, complies with a validation guideline.Type: ApplicationFiled: November 22, 2024Publication date: May 28, 2026Applicant: DigiCert, Inc.Inventors: Ayne Lyons, Flavio Martins, Aditya Chandel, Vadym Merzlikin
-
Publication number: 20260149602Abstract: Systems and methods are provided for validating client information prior to certificate issuance. A method, according to one implementation, includes a step of obtaining enrollment information submitted from an organization to a trust entity, the enrollment information including details of the organization. In response to a web browser of the trust entity being navigated to a webpage associated with the organization, the method further includes a step of extracting identifying data from the webpage. Based on a comparison between the identifying data and the details of the organization, the method also includes a step of providing feedback to a validation agent of the trust entity regarding a validation status of the organization.Type: ApplicationFiled: November 22, 2024Publication date: May 28, 2026Applicant: DigiCert, Inc.Inventor: Flavio Martins
-
Publication number: 20260147936Abstract: Systems and methods are provided for validating client information prior to certificate issuance. A method, according to one implementation, includes a step of displaying client information submitted by a client on a home screen of a user interface being operated by a validation agent responsible for executing a validation job for the client. Also, the method includes a step of displaying a validation sources tab on the home screen. In response to selection of the validation sources tab, the method also includes displaying links to vetted web sources from which data can be obtained to assist the validation agent with executing the validation job.Type: ApplicationFiled: November 22, 2024Publication date: May 28, 2026Applicant: DigiCert, Inc.Inventors: Ayne Lyons, Flavio Martins, Aditya Chandel, Vadym Merzlikin
-
Patent number: 12639507Abstract: Systems and methods for analyzing online content are provided. In one implementation, a method includes a step of evaluating an online article to derive credibility information, wherein the online article includes textual and/or graphical content that is accessible via one or more content-sharing platforms. The method also includes a step of adding the credibility information to metadata associated with the online article such that the credibility information is viewable by an end user when the online article is accessed.Type: GrantFiled: January 30, 2024Date of Patent: May 26, 2026Assignee: DigiCert, Inc.Inventors: Atul Gupta, Avesta Hojjati
-
Publication number: 20260113205Abstract: Systems and methods are provided for issuing digital certificates and promoting cybersecurity. According to one implementation, a method, executed by an end entity, includes a step of, responsive to receiving input from a user associated with the end entity, the input configured to set a flag, detecting a certificate replacement condition in which a current digital certificate issued to the end entity is ready to be reissued or replaced. The flag is configured to signify an intent to automatically transition the end entity to a different cryptography scheme. In response to determining that the flag is set when the certificate replacement condition is detected, the method further includes a step of automatically transitioning from a current cryptography scheme established over a current certificate chain to a new cryptography scheme established over an alternate certificate chain.Type: ApplicationFiled: October 16, 2024Publication date: April 23, 2026Applicant: DigiCert, Inc.Inventors: Jarryd Jermaine Chengalroyen, Avesta Hojjati
-
Patent number: 12608490Abstract: Tracking hash-based signatures using a distributed ledger includes, subsequent to generating a plurality of one-time signatures (OTSs) organized in a Merkle tree for use in a stateful hash-based digital signature scheme, receiving a request for a digital signature based therein; obtaining an OTS from the plurality of OTSs based on checking the distributed ledger; and creating a transaction on the distributed ledger based on the request to mark the OTS as used. The stateful hash-based digital signature scheme can be Leighton-Micali Signature (LMS) or extended Merkle Signature Scheme (XMSS).Type: GrantFiled: May 29, 2024Date of Patent: April 21, 2026Assignee: DigiCert, Inc.Inventor: Avesta Hojjati
-
Patent number: 12609958Abstract: Systems and methods are provided for recommending a deployment of cybersecurity products according to threat intelligence pertaining to an organization. A method, according to one implementation, includes a step of extracting, from one or more sources, cybersecurity intelligence related to an online presence of an organization. The method also includes a step of analyzing the cybersecurity intelligence to determine a cybersecurity posture of the organization, where the cybersecurity posture is defined by at least a set of one or more cybersecurity issues. Also, the method includes a step of creating a cybersecurity product deploying recommendation to assist the organization with mitigating the set of one or more cybersecurity issues.Type: GrantFiled: April 11, 2024Date of Patent: April 21, 2026Assignee: DigiCert, Inc.Inventors: Samir Kumar Rakshit, Avesta Hojjati
-
Publication number: 20260106753Abstract: Systems and methods are provided for enhancing or modifying the Public Key Cryptography Standard (PKCS) #12 (P12) file formatting protocol for password-protecting digital certificates. According to one implementation, a method includes a step of receiving a certification request from a client, the certification request including at least a) a selection of a modified Public Key Cryptography Standard (PKCS) #12 (P12) file formatting scheme and b) a user password encrypted with a public key of a first key pair. The method also includes a step of using a private key of the first key pair to decrypt the user password. In addition, the method includes a step of issuing a digital certificate for the client based on the certification request, the digital certificate having a second key pair. Then, the method includes encrypting the digital certificate and user private key using the user password.Type: ApplicationFiled: November 26, 2024Publication date: April 16, 2026Applicant: DigiCert, Inc.Inventor: Bhupendra Singh Solanki
-
Patent number: 12603876Abstract: Systems and methods are described herein for validating an Internet Protocol (IP) version 6 (IPv6) address from an IP version 4 (IPv4) network. A method, according to one implementation, includes a step of receiving an IPv4-based request from a validation server that is configured to support an IPv4 address space. The method further includes a step of sending an IPv6-based request to a domain supporting an IPv6 address space. Also, the method includes receiving a response status code and domain validation information from the domain. Then, the method includes a step of passing the response status code and domain validation information to the validation server.Type: GrantFiled: June 3, 2024Date of Patent: April 14, 2026Assignee: DigiCert, Inc.Inventors: Jared Daniels, Benjamin Cardon, Ryan Milne
-
Patent number: 12603788Abstract: A method of issuing a digital certificate includes receiving a certificate signing request (CSR) from an entity; determining a public key of the entity from the CSR; applying encryption to the public key; checking whether a result of the encryption is in a database to determine whether the public key has been previously used; and responsive to the public key not having been previously used, issuing a certificate to the entity based on the public key and the CSR. The method can further include, responsive to the public key having been previously used, alerting the entity to resubmit the CSR with a public key that has not been previously used or inquiring from the entity whether to proceed to issuing the certificate despite previous use. The encryption can be fully homomorphic encryption (FHE).Type: GrantFiled: June 28, 2023Date of Patent: April 14, 2026Assignee: DigiCert, Inc.Inventor: Avesta Hojjati
-
Publication number: 20260100823Abstract: A method to be performed at Secure Key Service (SKS) includes, responsive to a need to establish a secure tunnel between a device and a peer device receiving a request to offload authentication and session key negotiation for a Post-Quantum Cryptography (PQC) encryption algorithm from the device performing the authentication and session key negotiation with the peer device, and providing a key for the PQC encryption algorithm from the session key negotiation to the device, for use in data exchange with the peer device via the secure tunnel.Type: ApplicationFiled: October 9, 2024Publication date: April 9, 2026Applicant: DigiCert, Inc.Inventors: Atul Gupta, Shrey Tandel
-
Publication number: 20260100002Abstract: Systems and methods are provided for filtering and/or blocking unreliable content that might normally be injected in an Augmented Reality (AR) or Virtual Reality (VR) device. In one implementation, a method includes a step of analyzing a scene obtained by an image capture device associated with an Augmented Reality (AR) system to detect one or more visible objects in the scene. The method also includes using identifying characteristics of the one or more visible objects to obtain content related to the one or more visible objects. Before presenting the content in an augmented content overlay with respect to the AR system, the method further includes filtering the content based on one or more trust or validity factors.Type: ApplicationFiled: October 9, 2024Publication date: April 9, 2026Applicant: DigiCert, Inc.Inventor: Avesta Hojjati
-
Patent number: 12593203Abstract: Systems and methods are provided to offer security or trust services to entities over a network. A method, according to one implementation, includes the step of receiving, from a representative of an enterprise, a selection of a group of users to be assigned one or more authorities within the enterprise. The method also includes the step of remotely accessing one or more identity information repositories associated with the enterprise to obtain records pertaining to each user of the group. Also, the method includes the step of using the records to onboard the group of users, whereby onboarding the group includes assigning the one or more authorities to each user of the group.Type: GrantFiled: April 6, 2023Date of Patent: March 31, 2026Assignee: DigiCert, Inc.Inventors: Jason Allen Sabin, Avesta Hojjati