Trust spectrum for certificate distribution in distributed peer-to-peer networks
First Claim
1. A peer computing system, comprising:
- a plurality of peer nodes;
at least a subset of the plurality of peer nodes configured to participate in areas of interest to find and exchange codats relevant to the areas of interest, wherein a codat is computer-representable content or data;
wherein the at least a subset of the plurality of peer nodes is further configured to participate in a distributed trust mechanism to establish and maintain trust relationships among the peer nodes in particular areas of interest from trust evaluations of codat exchange among the peer nodes in the particular areas of interest; and
wherein each of the at least a subset of the plurality of peer nodes is configured to provide secure access to codats at a plurality of levels of trust, wherein, at one or more of the levels of trust, the at least a subset of the plurality of peer nodes use certificates to provide secure access to the codats, wherein a certificate is a security credential corresponding to a particular peer node;
wherein each of the at least a subset of the plurality of peer nodes is further configured to determine trust in certificates corresponding to other peer nodes in accordance with the distributed trust mechanism, wherein, to determine trust in certificates corresponding to other peer nodes, each of the at least a subset of plurality of peer nodes is further configured to;
locally maintain trust information corresponding to one or more other peer nodes, wherein the trust information includes trust evaluations pertaining to the one or more other peer nodes; and
determine trust in a particular certificate, wherein trust in the particular certificate is determined dependent on the locally maintained trust information corresponding to at least one of one or more peer nodes on a network path between the peer node and a peer node corresponding to the particular certificate.
2 Assignments
0 Petitions
Accused Products
Abstract
Embodiments of a decentralized, distributed trust mechanism that may be used in peer-to-peer platforms, to implement trust relationships based on data relevance between peers on a network and to implement trust relationships between peers and content and data (codat). In one embodiment, the trust mechanism may provide a trust spectrum of multiple levels wherein unique peer identities may be established to enable authentication and the assignment of the peers'"'"' associated access policies within a peer group. In one embodiment, the trust spectrum may have Certificate Authority signed certificates as a maximum level of security, and self-signed certificates as a minimum level of security. Since a certificate is one form of codat, in one embodiment the trust mechanism may be applied to a peer group member'"'"'s collection of signed certificates for a given peer group.
239 Citations
27 Claims
-
1. A peer computing system, comprising:
-
a plurality of peer nodes; at least a subset of the plurality of peer nodes configured to participate in areas of interest to find and exchange codats relevant to the areas of interest, wherein a codat is computer-representable content or data; wherein the at least a subset of the plurality of peer nodes is further configured to participate in a distributed trust mechanism to establish and maintain trust relationships among the peer nodes in particular areas of interest from trust evaluations of codat exchange among the peer nodes in the particular areas of interest; and wherein each of the at least a subset of the plurality of peer nodes is configured to provide secure access to codats at a plurality of levels of trust, wherein, at one or more of the levels of trust, the at least a subset of the plurality of peer nodes use certificates to provide secure access to the codats, wherein a certificate is a security credential corresponding to a particular peer node; wherein each of the at least a subset of the plurality of peer nodes is further configured to determine trust in certificates corresponding to other peer nodes in accordance with the distributed trust mechanism, wherein, to determine trust in certificates corresponding to other peer nodes, each of the at least a subset of plurality of peer nodes is further configured to; locally maintain trust information corresponding to one or more other peer nodes, wherein the trust information includes trust evaluations pertaining to the one or more other peer nodes; and determine trust in a particular certificate, wherein trust in the particular certificate is determined dependent on the locally maintained trust information corresponding to at least one of one or more peer nodes on a network path between the peer node and a peer node corresponding to the particular certificate. - View Dependent Claims (2, 3, 4, 5, 6)
-
-
7. A peer computing system, comprising:
-
a plurality of peer nodes; at least a subset of the plurality of peer nodes configured to participate in areas of interest to find and exchange codats relevant to the areas of interest, wherein a codat is computer-representable content or data; wherein the at least a subset of the plurality of peer nodes is further configured to participate in a distributed trust mechanism to establish and maintain trust relationships among the peer nodes in particular areas of interest from trust evaluations of codat exchange among the peer nodes in the particular areas of interest; wherein each of the at least a subset of the plurality of peer nodes is configured to provide secure access to codats using certificates, wherein a certificate is a security credential corresponding to a particular peer node; and wherein the at least a subset of the plurality of peer nodes is further configured to determine trust in certificates received from other peer nodes in accordance with the distributed trust mechanism, wherein, to determine trust in certificates corresponding to other peer nodes, each of the at least a subset of plurality of peer nodes is further configured to; locally maintain trust information corresponding to one or more other peer nodes, wherein the trust information includes trust evaluations pertaining to the one or more other peer nodes; and determine trust in a particular certificate, wherein trust in the particular certificate is determined dependent on the locally maintained trust information corresponding to at least one of one or more peer nodes on a network path between the peer node and a peer node corresponding to the particular certificate. - View Dependent Claims (8, 9)
-
-
10. A peer node, comprising:
-
a processor; a memory comprising program instructions, wherein the program instructions are executable by the processor to; participate in an area of interest with other peer nodes on a network to find and exchange codats relevant to the area of interest, wherein a codat is computer-representable content or data; implement a distributed trust mechanism to establish and maintain trust relationships with the other peer nodes in the area of interest from trust evaluations of codat exchange with the peer nodes in the area of interest; provide secure access to codats using certificates, wherein a certificate is a security credential corresponding to a particular peer node; and determine trust in certificates received from the other peer nodes in accordance with the distributed trust mechanism; wherein, to determine trust in certificates received from the other peer nodes in accordance with the distributed trust mechanism, the program instructions are executable by the processor to; locally maintain trust information corresponding to one or more of the other peer nodes, wherein the trust information includes trust evaluations pertaining to the one or more other peer nodes; and determine trust in a particular certificate, wherein trust in the particular certificate is determined dependent on the locally maintained trust information corresponding to at least one of one or more peer nodes on a network path between the peer node and a peer node corresponding to the particular certificate. - View Dependent Claims (11, 12, 13, 14, 15)
-
-
16. A method, comprising:
-
a peer node participating in an area of interest with other peer nodes on a network to find and exchange codats relevant to the area of interest, wherein a codat is computer-representable content or data; the peer node establishing and maintaining trust relationships with the other peer nodes in the area of interest from trust evaluations of codat exchange with the peer nodes in the area of interest in accordance with a distributed trust mechanism; the peer node providing secure access to codats using certificates, wherein a certificate is a security credential corresponding to a particular peer node; and the peer node determining trust in certificates received from the other peer nodes in accordance with the distributed trust mechanism, wherein said determining trust in certificates received from the other peer nodes in accordance with the distributed trust mechanism comprises; locally maintaining trust information corresponding to one or more of the other peer nodes, wherein the trust information includes trust evaluations pertaining to the one or more other peer nodes; and determining trust in a particular certificate, wherein trust in the particular certificate is determined dependent on the locally maintained trust information corresponding to at least one of one or more peer nodes on a network path between the peer node and a peer node corresponding to the particular certificate. - View Dependent Claims (17, 18, 19, 20, 21)
-
-
22. A tangible, computer-accessible storage medium, comprising software instructions executable to implement, on a peer node:
-
participating in an area of interest with other peer nodes on a network to find and exchange codats relevant to the area of interest, wherein a codat is computer-representable content or data; establishing and maintaining trust relationships with the other peer nodes in the area of interest from trust evaluations of codat exchange with the peer nodes in the area of interest in accordance with a distributed trust mechanism; providing secure access to codats using certificates, wherein a certificate is a security credential corresponding to a particular peer node; and determining trust in certificates received from the other peer nodes in accordance with the distributed trust mechanism, wherein, in said determining trust in certificates received from the other peer nodes in accordance with the distributed trust mechanism, the software instructions are executable to implement, on the peer node; locally maintaining trust information corresponding to one or more of the other peer nodes, wherein the trust information includes trust evaluations pertaining to the one or more other peer nodes; and determining trust in a particular certificate, wherein trust in the particular certificate is determined dependent on the locally maintained trust information corresponding to at least one of one or more peer nodes on a network path between the peer node and a peer node corresponding to the particular certificate. - View Dependent Claims (23, 24, 25, 26, 27)
-
Specification