Trustworthy indication of software integrity

US 10,354,075 B1
Filed: 06/30/2017
Issued: 07/16/2019
Est. Priority Date: 07/27/2015
Status: Active Grant

First Claim

Patent Images

1. A computer-implemented method for providing security information for a computer program, comprising:

identifying an application associated with a request from a user using the application for security information based at least in part on determining that the application is presenting an application user interface on a display during the use by the user;

requesting, based at least in part on the request for the security information, a trust evaluation device to evaluate trustworthiness of the application;

generating, based at least in part on an evaluation of the trustworthiness of the application, the security information; and

displaying a security information user interface separate from the application user interface, the security information user interface including the security information.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

Computing devices are disclosed that include functionality for providing a trustworthy indication of software integrity. The computing devices include a hardware trust evaluation device capable of determining the trustworthiness of computer programs executing on the devices. At least one trust indicator is also connected to the hardware trust evaluation device for providing an external indication of the trustworthiness of a computer program. Additional security information regarding the trustworthiness of the computer program may be displayed on the primary display device of the computing device. The display of the security information is triggered by a user of the computing device submitting a request through a secure mechanism, where the request is unobservable and inaccessible to programs executing on the computing device. Additional secure mechanisms, such as a unique user interface for displaying the security information, can be utilized to ensure the authenticity of the displayed security information.

Citations

20 Claims

1. A computer-implemented method for providing security information for a computer program, comprising:
- identifying an application associated with a request from a user using the application for security information based at least in part on determining that the application is presenting an application user interface on a display during the use by the user;
  
  requesting, based at least in part on the request for the security information, a trust evaluation device to evaluate trustworthiness of the application;
  
  generating, based at least in part on an evaluation of the trustworthiness of the application, the security information; and
  
  displaying a security information user interface separate from the application user interface, the security information user interface including the security information.
- View Dependent Claims (2, 3, 4, 5, 6, 7)
- - 2. The computer-implemented method of claim 1, further comprising:
    - generating the request for security information based at least in part on a detected actuation of a hardware button for requesting security information.
  - 3. The computer-implemented method of claim 1, further comprising:
    - generating the request for security information based at least in part on a detected pre-defined gesture being made on a touch screen.
  - 4. The computer-implemented method of claim 1, further comprising:
    - displaying, on the security information user interface, a security image pre-selected by a user.
  - 5. The computer-implemented method of claim 1, further comprising:
    - determining, based at least in part on the security information, that the application is not trustworthy; and
      
      restricting functionality of the application.
  - 6. The computer-implemented method of claim 1, further comprising:
    - determining, based at least in part on the security information, that the application is trustworthy; and
      
      enabling additional functionality of the application.
  - 7. The computer-implemented method of claim 1, further comprising:
    - sending the security information to another computing device.

8. A non-transitory computer-readable storage medium having computer-executable instructions stored thereupon which, when executed by a computing device, cause the computing device to:
- identify an application presenting an application user interface on a display for which security information requested by a user using the application is to be determined based at least in part on determining that the application is presenting the application user interface on the display during the use by the user;
  
  cause a trust evaluation device to evaluate trustworthiness of the application;
  
  generate, based at least in part on an evaluation of the trustworthiness of the application, the security information; and
  
  display a security information user interface separate from the application user interface, the security information user interface including the security information.
- View Dependent Claims (9, 10, 11, 12, 13)
- - 9. The non-transitory computer-readable storage medium of claim 8, wherein the computer-executable instructions, when executed by the computing device, cause the computing device to:
    - receive a request for security information of the application, wherein the received request is generated by a hardware input component configured to generate the request for security information.
  - 10. The non-transitory computer-readable storage medium of claim 8, wherein the computer-executable instructions, when executed by the computing device, cause the computing device to:
    - determine, based at least in part on the security information, that the application is not trustworthy; and
      
      restrict functionality of the application.
  - 11. The non-transitory computer-readable storage medium of claim 8, wherein the computer-executable instructions, when executed by the computing device, cause the computing device to:
    - determine, based at least in part on the security information, that the application is trustworthy; and
      
      enable additional functionality of the application.
  - 12. The non-transitory computer-readable storage medium of claim 8, wherein the computer-executable instructions, when executed by the computing device, cause the computing device to:
    - display, on the security information user interface, a security image pre-selected by a user.
  - 13. The non-transitory computer-readable storage medium of claim 8, wherein the computer-executable instructions, when executed by the computing device, cause the computing device to:
    - send the security information to another computing device.

14. A computing device configured to provide security information for an application executing on the computing device, the computing device comprising:
- at least one processor configured to execute the application;
  
  an output device; and
  
  a memory connected to the at least one processor storing instructions, when executed by the at least one processor, configure the at least one processor to;
  
  identify an application presenting an application user interface on a display executing on the at least one processor for which security information requested by a user using the application is to be determined based at least in part on determining that the application is presenting the application user interface on the display during the use by the user;
  
  cause a trust evaluation to evaluate trustworthiness of the application;
  
  generate, based at least in part on the trustworthiness of the application, the security information; and
  
  display, on the output device, a security information user interface separate from the application user interface, the security information user interface including the security information.
- View Dependent Claims (15, 16, 17, 18, 19, 20)
- - 15. The computing device of claim 14, further comprising:
    - a hardware input component configured to, when activated, generate a request for the security information for the application,wherein the instructions, when executed by the at least one processor, further configure the at least one processor to;
      
      receive the request for the security information for the application via the hardware input component of the computing device, wherein the application executing on the at least one processor for which security information is to be determined is identified responsive to receiving the request.
  - 16. The computing device of claim 15, wherein the hardware input component of the computing device comprises a touch screen, and wherein the request is generated in response to a pre-defined gesture being detected on the touch screen.
  - 17. The computing device of claim 15, wherein the hardware input component of the computing device comprises a hardware button dedicated to generating a request for the security information for the computer program.
  - 18. The computing device of claim 14, wherein the instructions, when executed by the at least one processor, further configure the at least one processor to:
    - determine, based at least in part on the security information, that the application is not trustworthy; and
      
      restrict functionality of the application.
  - 19. The computing device of claim 14, wherein the instructions, when executed by the at least one processor, further configure the at least one processor to:
    - determine, based at least in part on the security information, that the application is trustworthy; and
      
      enable additional functionality of the application.
  - 20. The computing device of claim 14, wherein the instructions, when executed by the at least one processor, further configure the at least one processor to:
    - send the security information to another computing device.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Amazon Technologies, Inc. (Amazon.com, Inc.)
Original Assignee
Amazon Technologies, Inc. (Amazon.com, Inc.)
Inventors
Hitchcock, Daniel Wade, Canavor, Darren Ernest, Johansson, Jesper Mikael, Bhimanaik, Bharath Kumar, Roths, Andrew Jay
Primary Examiner(s)
Zhao, Don G

Application Number

US15/638,867
Time in Patent Office

746 Days
Field of Search
US Class Current
CPC Class Codes

G06F 21/577   Assessing vulnerabilities a...

G06F 2221/033   Test or assess software

G06F 3/04842   Selection of displayed obje...

G06F 3/04883   for inputting data by handw...

Trustworthy indication of software integrity

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

Citations

20 Claims

Specification

Solutions

Use Cases

Quick Links

Trustworthy indication of software integrity

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

Citations

20 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links