Transmitting security data in multipart communications over a network
First Claim
1. A computer program product embodied on a non-transitory computer readable medium for transmitting data and a security feature within a message having a plurality of parts, wherein the message is transmitted over a connection-oriented protocol through a network, comprising:
- program code for receiving a hypertext transport protocol GET request for data, wherein a first hypertext transport protocol response is transmitted in response to the hypertext transport protocol GET request;
program code for determining a security feature for the data including program code for determining a digital signature for the data;
program code for transmitting, subsequent to the first hypertext transport protocol response, the message in a second hypertext transport protocol response to the GET request,wherein the second hypertext transport protocol response comprises a first part that contains the data and a second part that contains the security feature, andwherein the first hypertext transport protocol response comprises information indicating that one of the plurality of parts of the second hypertext transport protocol response contains said security feature,wherein the security feature includes the digital signature for the data and a result of a validation of the digital signature.
1 Assignment
0 Petitions
Accused Products
Abstract
Embodiments of the invention provide for efficiently implementing security features over HTTP communications. In some embodiments, a security feature, such as a digital signature, can be efficiently implemented over HTTP communications. The HTTP communications are conducted in parts. The first part contains the payload data of the message. The second part, if appropriate, contains information for the digital signature, such as the digital signature itself or the result of a signature verification.
16 Citations
22 Claims
-
1. A computer program product embodied on a non-transitory computer readable medium for transmitting data and a security feature within a message having a plurality of parts, wherein the message is transmitted over a connection-oriented protocol through a network, comprising:
-
program code for receiving a hypertext transport protocol GET request for data, wherein a first hypertext transport protocol response is transmitted in response to the hypertext transport protocol GET request; program code for determining a security feature for the data including program code for determining a digital signature for the data; program code for transmitting, subsequent to the first hypertext transport protocol response, the message in a second hypertext transport protocol response to the GET request, wherein the second hypertext transport protocol response comprises a first part that contains the data and a second part that contains the security feature, and wherein the first hypertext transport protocol response comprises information indicating that one of the plurality of parts of the second hypertext transport protocol response contains said security feature, wherein the security feature includes the digital signature for the data and a result of a validation of the digital signature. - View Dependent Claims (2, 3, 4, 5, 6, 7)
-
-
8. A computer program product embodied on a non-transitory computer readable medium for requesting data and a security feature associated with the data within a second hypertext transport protocol response that has been sent through a network, comprising:
-
program code for sending a hypertext transport protocol GET request for the data, wherein a first hypertext transport protocol response is transmitted in response to the hypertext transport protocol GET request; program code for receiving the first hypertext transport protocol response to the GET request; program code for receiving, subsequent to the first hypertext transport protocol response, a message in the second hypertext transport protocol response to the GET request; program code for determining whether the second hypertext transport protocol response contains multiple parts; program code for determining whether the second hypertext transport protocol response contains a security feature includes program code for extracting a digital signature for the data; program code for extracting from a first part of the multiple parts the requested data; and program code for extracting from a second part of the multiple parts said security feature that is associated with the requested data, wherein the program code for determining whether the second hypertext transport protocol response contains said security feature comprises program code for identifying information in the first hypertext transport protocol response that indicates said security feature, wherein the security feature includes the digital signature for the data and a result of a validation of the digital signature. - View Dependent Claims (9, 10, 11, 12, 13)
-
-
14. A server configured to provide data and a security feature associated with the data, said server comprising:
-
a processor; and a memory, coupled to the processor, that stores program code for receiving a hypertext transport protocol GET request for data, wherein a first hypertext transport protocol response is transmitted in response to the hypertext transport protocol GET request, program code for determining a security feature for the data including program code for determining a digital signature for the data, and program code for transmitting, subsequent to the first hypertext transport protocol response, a message in a second hypertext transport protocol response to the GET request, wherein the second hypertext transport protocol response comprises a first part that contains the data and a second part that contains the security feature, and wherein the first hypertext transport protocol response comprises information indicating that one of a plurality of parts of the second hypertext transport protocol response contains said security feature, wherein the security feature includes the digital signature for the data and a result of a validation of the digital signature. - View Dependent Claims (15, 16, 17, 18, 19, 20, 21, 22)
-
Specification