Techniques for attesting to content
First Claim
Patent Images
1. A computer-implemented method implemented in a computer-readable medium and to execute on a computer for performing the method, comprising:
- receiving content in a message from a sender;
acquiring a signed version of a message digest for the content, wherein the signed version was signed by an identity service on behalf of the sender indicating that content of the message was attested to by the identity service via the signature, a presence of the signature from the identity service serves as an attestation that the content is from the sender;
validating the signed version of the message digest; and
processing policy in response to validating the signed version of the message digest.
7 Assignments
0 Petitions
Accused Products
Abstract
Techniques for attesting to content received from an author (sender) are provided. A sender'"'"'s content is represented by a message digest. The message digest is signed by an identity service. The signed message digest represents an attestation as to the authenticity of the content from the sender. The sender transmits the signed message digest and content in a message to a recipient. The recipient verifies the signature and message digest to authenticate the content from the sender.
63 Citations
25 Claims
-
1. A computer-implemented method implemented in a computer-readable medium and to execute on a computer for performing the method, comprising:
-
receiving content in a message from a sender; acquiring a signed version of a message digest for the content, wherein the signed version was signed by an identity service on behalf of the sender indicating that content of the message was attested to by the identity service via the signature, a presence of the signature from the identity service serves as an attestation that the content is from the sender; validating the signed version of the message digest; and processing policy in response to validating the signed version of the message digest. - View Dependent Claims (2, 3, 4, 5, 6, 7)
-
-
8. A computer-implemented method implemented in a computer-readable medium and to execute on a computer for performing the method, comprising:
-
submitting content to an identity service, wherein the identity service generates and supplies a message digest for the content; receiving an authorship attestation certification (AAC) from the identity service for the content, the AAC includes a signature of the identity service along with the message digest; and sending the content and the AAC to a recipient as a message. - View Dependent Claims (9, 10, 11, 12)
-
-
13. A computer-implemented method implemented in a computer-readable medium and to execute on a computer for performing the method, comprising:
-
receiving content from a sender, and generating a message digest from the content; generating a signature for the message digest, the signature provided on behalf of the sender to verify that the sender created the content and the signature is for an identity service acting on behalf of sender; supplying the signature and the message digest back to the sender, wherein the sender uses the message digest and the signature to attest to the authenticity of the content as being from the sender via the signature of the identity service. - View Dependent Claims (14, 15, 16, 17, 18)
-
-
19. A computer-implemented system to be processed by one or more computers, comprising:
-
an Authorship Attestation Certificate (AAC) implemented in a computer-readable medium; and an identity service implemented in a computer-readable medium and to be processed by a computer, wherein the identity service is to create the AAC on behalf of a sender of content in response to a message digest for that content, and wherein the AAC is a signed copy of the message digest, signed by the identity service on behalf of the sender with a signature of the identity service and the signature is used by the sender to attest that the content originates from the sender, and wherein the identity service is to supply the AAC back to the sender. - View Dependent Claims (20, 21, 22, 23, 24, 25)
-
Specification