METHOD AND APPARATUS FOR AN EPHEMERAL TRUSTED DEVICE
First Claim
1. A method performed by an apparatus for accessing protected content from a content provider, the method comprising:
- (a) receiving an indication of a required level of trust needed to access specific content from a content provider;
(b) supplying an identity attestation, an attribute attestation, and the required level of trust to a trust level evaluator;
(c) receiving from the trust evaluator an evaluated trust level of the apparatus;
(d) determining, whether the specific content can be requested based on the evaluated trust level; and
(e) requesting the specific content from the content provider if the evaluated trust level meets the required level of trust needed to access the specific content.
1 Assignment
0 Petitions
Accused Products
Abstract
A method and system is performed by a requesting apparatus for accessing protected content from a content provider. The method includes receiving an indication of a level of trust needed to access specific protected content from a content provider, and supplying an identity attestation and an attribute attestation and the received level of trust to a third party evaluator. The evaluator determines if the requesting apparatus meets the level of trust needed to access the protected content. A trust attestation is generated indicating a level of trust of the requesting apparatus and is sent to the requesting device. The trust attestation is evaluated by the requesting device to determine what version of the protected content can be downloaded from a content provider. The requesting apparatus then asks for the protected content if the trust level attestation meets the level of trust needed to access the specific content from the content provider.
48 Citations
15 Claims
-
1. A method performed by an apparatus for accessing protected content from a content provider, the method comprising:
-
(a) receiving an indication of a required level of trust needed to access specific content from a content provider; (b) supplying an identity attestation, an attribute attestation, and the required level of trust to a trust level evaluator; (c) receiving from the trust evaluator an evaluated trust level of the apparatus; (d) determining, whether the specific content can be requested based on the evaluated trust level; and (e) requesting the specific content from the content provider if the evaluated trust level meets the required level of trust needed to access the specific content. - View Dependent Claims (2, 3, 4, 5, 6, 7)
-
-
8. An apparatus for accessing protected content from a content provider, the apparatus comprising:
-
a network interface for connecting to a content provider and an evaluator of trust level; a user interface for user control; a processor to request an attestation of an evaluated trust level of the apparatus from a trust evaluator that determines a level of trust based on an identity attestation, an attribute attestation, and a required level of trust provided by the apparatus, the processor also requesting the protected content if the evaluated trust level is equal to or higher than the required level of trust; a memory for storage of encryption keys and the protected content that is downloaded from the content provider. - View Dependent Claims (9, 10, 11, 12, 13, 14, 15)
-
Specification