Craig James Lund

US Patent:

8301877, Oct 30, 2012

Filed:

Mar 10, 2008

Appl. No.:

12/075219

Inventors:

Garret Grajek - Aliso Viejo CA, US
Craig Lund - Lake Forest CA, US
Steven Moore - Portland OR, US
Mark Lambiase - Ladera Ranch CA, US

Assignee:

SecureAuth Corporation - Irvine CA

International Classification:

G06F 21/00

US Classification:

713156, 713158, 713175, 380277

Abstract:

A method and system for configuring a valid duration period for a digital certificate. The method includes assigning a positive numeric value for each certificate term. The positive numeric value assigned to each certificate term is representative of the valid duration period. The method continues by prompting a user of the client device to request one certificate term. The method may include transmitting the requested certificate term to a server. The certificate term requested is sent via a certificate request. The server is configured to convert the positive numeric value associated with the requested certificate term into a duration counter. The method may also include a certificate server receiving from the server, the certificate request including the duration counter. The certificate server is configured to digitally sign the certificate request. The method may conclude with the client device generating the digital certificate having the valid duration period correspond to the positive numeric value associated with the requested certificate term.

US Patent:

8327142, Dec 4, 2012

Filed:

Feb 5, 2007

Appl. No.:

11/702371

Inventors:

Craig Lund - Irvine CA, US
Garret Grajek - Huntington Beach CA, US
Stephen Moore - Portland OR, US

Assignee:

SecureAuth Corporation - Irvine CA

International Classification:

H04L 29/06

US Classification:

713169, 705 67

Abstract:

A method and system for mutually authenticating a client and a server is provided in accordance with an aspect of the present invention. The method commences with transmitting a token from the server to the client. Thereafter, the method continues with establishing a secure data transfer link between the server and the client. A server certificate is transmitted to the client during the establishment of the secure data transfer link. The method continues with transmitting a response packet to the server, which is validated thereby upon receipt. The system includes a client authentication module that initiates the secure data transfer link and transmits the response packet, and a server authentication module that transmits the token and validates the response packet.

US Patent:

8468340, Jun 18, 2013

Filed:

Oct 29, 2012

Appl. No.:

13/663304

Inventors:

Mark Lambiase - Ladera Ranch CA, US
Craig Lund - Lake Forest CA, US

Assignee:

SecureAuth Corporation - Irvine CA

International Classification:

H04L 29/06

US Classification:

713156, 713175, 380277

Abstract:

A valid duration period for a digital certificate is established by a process that includes assigning numeric values to certificate term. The numeric value assigned to each certificate term is representative of the valid duration period. The method continues by identifying one certificate term, which may include requesting a user to select a certificate term. The method may include transmitting the requested certificate term to a server. The certificate term requested is sent via a certificate request. The server is configured to convert the numeric value associated with the requested certificate term into a duration counter value. The method may also include a certificate server receiving from the server, the certificate request including the duration counter value. The method may conclude with transmitting the signed certificate request to a client device capable of generating the digital certificate with the requested certificate term.

US Patent:

20080077791, Mar 27, 2008

Filed:

Jul 23, 2007

Appl. No.:

11/880599

Inventors:

Craig Lund - Irvine CA, US
Garret Grajek - Huntington Beach CA, US
Stephen Moore - Portland OR, US

International Classification:

H04L 9/32

US Classification:

713156

Abstract:

A method and system for secured network access is provided in accordance with the present invention. The method begins with receiving a login request from a client on a router. Thereafter, a certificate transfer instruction for the router to an authentication appliance is generated where the client lacks a copy of a client certificate. The client is authenticated with a challenge-response sequence, the response to which is deliverable through an out-of-band communications channel. Upon authentication, the client certificate and the client private key are transmitted to the client, which are used to authenticate the client to the network.

US Patent:

20090025080, Jan 22, 2009

Filed:

Sep 18, 2008

Appl. No.:

12/212959

Inventors:

Craig Lund - Irvine CA, US
Garret Grajek - Huntington Beach CA, US
Stephen Moore - Portland OR, US
Mark Lambiase - Ladera Ranch CA, US

International Classification:

H04L 29/06

US Classification:

726 15

Abstract:

Authenticating a client to a server accessible through an Internet Protocol Security (IPSec) Virtual Private Network (VPN) appliance. The IPSec VPN appliance and an SSL VPN appliance are configured to receive an initialization command from the client. The SSL VPN appliance is in communication with an authentication appliance for authenticating the client to the server. In response to the initialization command, the authentication appliance generates a client key pair including a client private key and a client public key. The authentication appliance generates a client certificate and a client IPSec profile. The authentication appliance transmits the client key pair, the client certificate and the client IPSec profile to the client. A secure communication session between the client and the server is established. The secure communication session is established through the IPSec VPN appliance. Upon receipt of the IPSec profile, the communication session between the client and the server is encrypted.

US Patent:

20130275750, Oct 17, 2013

Filed:

Jun 17, 2013

Appl. No.:

13/919337

Inventors:

Stephen Moore - Portland OR, US
Mark V. Lambiase - Ladera Ranch CA, US
Craig J. Lund - Lake Forest CA, US

International Classification:

H04L 9/32

US Classification:

713156

Abstract:

A valid duration period for a digital certificate is established by a process that includes assigning numeric values to certificate term. The numeric value assigned to each certificate term is representative of the valid duration period. The method continues by identifying one certificate term, which may include requesting a user to select a certificate term. The method may include transmitting the requested certificate term to a server. The certificate term requested is sent via a certificate request. The server is configured to convert the numeric value associated with the requested certificate term into a duration counter value. The method may also include a certificate server receiving from the server, the certificate request including the duration counter value. The method may conclude with transmitting the signed certificate request to a client device capable of generating the digital certificate with the requested certificate term.

US Patent:

20150033022, Jan 29, 2015

Filed:

Aug 13, 2014

Appl. No.:

14/459210

Inventors:

- Irvine CA, US
Stephen Moore - Portland OR, US
Mark V. Lambiase - Ladera Ranch CA, US
Craig J. Lund - Lake Forest CA, US

International Classification:

H04L 29/06

US Classification:

713175

Abstract:

A valid duration period for a digital certificate is established by a process that includes assigning numeric values to certificate term. The numeric value assigned to each certificate term is representative of the valid duration period. The method continues by identifying one certificate term, which may include requesting a user to select a certificate term. The method may include transmitting the requested certificate term to a server. The certificate term requested is sent via a certificate request. The server is configured to convert the numeric value associated with the requested certificate term into a duration counter value. The method may also include a certificate server receiving from the server, the certificate request including the duration counter value. The method may conclude with transmitting the signed certificate request to a client device capable of generating the digital certificate with the requested certificate term.