METHOD AND APPARATUS TO CREATE A SECURE WEB-BROWSING ENVIRONMENT WITH PRIVILEGE SIGNING
First Claim
1. A method for executing a client-server application on a mobile device, comprising:
- receiving from a server a script for execution on the mobile devicereceiving a digital certificate issued to the server;
verifying the digital certificate and confirming that the script has not been modified since the digital certificate was created; and
enabling the script to access a resource identified in the digital certificate used to verify the script.
1 Assignment
0 Petitions
Accused Products
Abstract
Devices and methods use digital certificates and digital signatures to enable computing devices, such as mobile devices, to trust a server attempting to access a resource on the computing device. The server may present the computing device with a digital certificate issued by a trusted third party which includes information so that the computing device can determine which resources the server should be trusted to access. The computing device can determine that the digital certificate was issued by a trusted third party by examining the chain of digital certificates that may link the server with an inherently trusted authority.
-
Citations
64 Claims
-
1. A method for executing a client-server application on a mobile device, comprising:
-
receiving from a server a script for execution on the mobile device receiving a digital certificate issued to the server; verifying the digital certificate and confirming that the script has not been modified since the digital certificate was created; and enabling the script to access a resource identified in the digital certificate used to verify the script. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14)
-
-
15. A mobile device, comprising:
-
a processor; a transceiver coupled to the processor; a memory coupled to the processor; wherein the processor is configured with software instructions to perform steps comprising; receiving from a server a script for execution on the mobile device receiving a digital certificate issued to the server; verifying the digital certificate and confirming that the script has not been modified since the digital certificate was created; and enabling the script to access a resource only if the digital certificate is verified and the script has not been modified. - View Dependent Claims (16, 17, 18, 19, 20, 21, 22, 23, 24, 25, 26, 27, 28)
-
-
29. A tangible storage medium having stored thereon processor-executable software instructions configured to cause a processor to perform steps comprising:
-
receiving from a server a script for execution on a mobile device receiving a digital certificate issued to the server; verifying the digital certificate and confirming that the script has not been modified since the digital certificate was created; and enabling the script to access a resource only if the digital certificate is verified and the script has not been modified. - View Dependent Claims (30, 31, 32, 33, 34, 35, 36, 37, 38, 39, 40, 41, 42)
-
-
43. A mobile device, comprising:
-
means for receiving from a server a script for execution on the mobile device means for receiving a digital certificate issued to the server; means for verifying the digital certificate and confirming that the script has not been modified since the digital certificate was created; and means for enabling the script to access a resource only if the digital certificate is verified and the script has not been modified. - View Dependent Claims (44, 45, 47, 48, 49, 50, 51, 52, 53, 54, 55, 56, 57)
-
-
58. A method for executing a client-server application on a mobile device, comprising:
-
receiving from a server a script for execution on the mobile device; verifying that the server from which the script was obtained is named in a certificate; determining which permissions have been granted to the server according to the contents of the certificate; and enabling the script to access a protected resource only when an associated permission has been granted to the server from which the script was obtained. - View Dependent Claims (59, 60)
-
-
59-1. A mobile device, comprising:
-
a processor; a transceiver coupled to the processor; a memory coupled to the processor; wherein the processor is configured with software instructions to perform steps comprising; receiving from a server a script for execution on the mobile device; verifying that the server from which the script was obtained is named in a certificate; determining which permissions have been granted to the server according to the contents of the certificate; and enabling the script to access a protected resource only when an associated permission has been granted to the server from which the script was obtained.
-
-
61. A tangible storage medium having stored thereon processor-executable software instructions configured to cause a processor to perform steps comprising:
-
receiving from a server a script for execution on the mobile device; verifying that the server from which the script was obtained is named in a certificate; determining which permissions have been granted to the server according to the contents of the certificate; and enabling the script to access a protected resource only when an associated permission has been granted to the server from which the script was obtained. - View Dependent Claims (62)
-
-
63. A mobile device, comprising:
-
means for receiving from a server a script for execution on the mobile device; means for verifying that the server from which the script was obtained is named in a certificate; means for determining which permissions have been granted to the server according to the contents of the certificate; and means for enabling the script to access a protected resource only when an associated permission has been granted to the server from which the script was obtained. - View Dependent Claims (64)
-
Specification