公开(公告)号：US20250088499A1

公开(公告)日：2025-03-13

申请号：US18466474

申请日：2023-09-13

Applicant: Oracle International Corporation

Inventor： Sneha Sudhakaran Nair ,  Tony Long ,  Mauruthi Geetha Mohan ,  Akshay Krishnath Dagade ,  Jakub Wojciak

IPC: H04L9/40

Abstract: Operations of a certificate bundle distribution service may include: detecting a trigger condition to distribute a certificate bundle that includes a set of one or more certificate authority certificates; partitioning each particular network entity of a plurality of network entities associated with a computer network into one of a plurality of certificate distribution groups based on a network address of the particular network entity, in which each particular certificate distribution group includes a particular subset of network entities from the plurality of network entities; selecting a particular certificate distribution group, of the plurality of certificate distribution groups, for distribution of the certificate bundle; and transmitting the certificate bundle to the particular subset of network entities in the particular certificate distribution group.

公开(公告)号：US20250141696A1

公开(公告)日：2025-05-01

申请号：US18494089

申请日：2023-10-25

Applicant: Oracle International Corporation

Inventor： Ayman M. Elemenshawy ,  Jakub Wojciak ,  Kenneth C. Kil ,  Kanish Panwar

IPC: H04L9/32 ,  H04L9/30

Abstract: Operations of a system may include executing a provisioning process that includes provisioning a network entity with a digital certificate for use in a stateless validation protocol. After provisioning the network entity with the digital certificate, the system may include receive a credential request from the network entity that includes the digital certificate and a request for an access credential for accessing a cloud resource. In response to the credential request, the system may execute an access-authorization process with respect to the network entity, including authenticating the digital certificate in accordance with the stateless validation protocol. Upon determining that the network entity authorized to receive an access credential, the system may provision the network entity with the access credential. The network entity may then use the access credential to access the cloud resource.