Stateless attestation system
First Claim
1. A method, comprising:
- assessing a trustworthiness level of a user computer by communication between the user computer and a first server;
sending a record from the first server to the user computer, for storage by the user computer, indicating the trustworthiness level;
sending a request from the user computer to a second server, different from the first server, for a service to be provided to the user computer by the second server;
providing the record from the user computer to the second server by communicating between the user computer and the second server; and
at the second server, extracting the trustworthiness level from the record, and conditionally allowing the requested service to be provided to the user computer depending on the extracted trustworthiness level.
2 Assignments
0 Petitions
Accused Products
Abstract
A method includes assessing a trustworthiness level of a user computer by communication between the user computer and a first server. A record indicating the trustworthiness level is sent from the first server to the user computer, for storage by the user computer. A request is sent from the user computer to a second server, different from the first server, for a service to be provided to the user computer by the second server. The record is provided from the user computer to the second server by communicating between the user computer and the second server. At the second server, the trustworthiness level is extracted from the record, and the requested service is conditionally allowed to be provided to the user computer depending on the extracted trustworthiness level.
117 Citations
24 Claims
-
1. A method, comprising:
-
assessing a trustworthiness level of a user computer by communication between the user computer and a first server; sending a record from the first server to the user computer, for storage by the user computer, indicating the trustworthiness level; sending a request from the user computer to a second server, different from the first server, for a service to be provided to the user computer by the second server; providing the record from the user computer to the second server by communicating between the user computer and the second server; and at the second server, extracting the trustworthiness level from the record, and conditionally allowing the requested service to be provided to the user computer depending on the extracted trustworthiness level. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12)
-
-
13. A computer system, comprising:
-
one or more first servers, which are configured to assess respective trustworthiness levels of user computers, and to forward records indicating the assessed trustworthiness levels to the user computers; and a second server, separate from the first servers, which is configured to obtain the records from the user computers along with requests from the user computers for a service to be provided by the second server, to extract the trustworthiness levels from the records, and to conditionally provide the service to the user computers depending on the extracted trustworthiness levels. - View Dependent Claims (14, 15, 16, 17, 18, 19, 20, 21, 22, 23, 24)
-
Specification