Method for certifying and verifying digital web content using public cryptography
First Claim
1. A method comprising:
- receiving user input at a verifying program executing on a client computer, said user input comprising a shared secret data item, the shared secret data item including information that is a secret to and shared between a user of the client computer and the verifying program;
the verifying program storing the shared secret data item;
receiving by the verifying program from a server computer a content package comprising an unencrypted item of digital news content, an encrypted content item, and a digital certificate corresponding to a news provider;
decrypting by the verifying program the encrypted content item using a public key corresponding to the digital certificate;
verifying by the verifying program the unencrypted item of digital news content by comparing the unencrypted item of digital news content with the decrypted content item;
the verifying program displaying a result of the verifying of the unencrypted item of digital news content;
and the verifying program authenticating itself by displaying the shared secret data item.
12 Assignments
0 Petitions
Accused Products
Abstract
There is provided a method of, computer programs for and apparatus for providing and accessing digital content such as a news item. A news provider generates a news item, creates a digitally signed version of the news item and packages them together with a digital certificate issued by a certificate authority containing the public key required to decrypt the digitally signed version. The package is posted to a server and is transmitted, or made available or transmission, over a public data network together with a computer program for verifying the news item. A receiving party receives, over the public data network, the package at a client device and is provided with means for launching, and if necessary first downloading, the verifying program. The verifying program uses the public key contained in the certificate to verify the digitally signed news item. Before being first used to verify a news item, the verifying program receives a shared secret from the receiving party which is stored locally to the client device and is used by the verifying program to confirm that it performed the verification process.
41 Citations
10 Claims
-
1. A method comprising:
-
receiving user input at a verifying program executing on a client computer, said user input comprising a shared secret data item, the shared secret data item including information that is a secret to and shared between a user of the client computer and the verifying program; the verifying program storing the shared secret data item; receiving by the verifying program from a server computer a content package comprising an unencrypted item of digital news content, an encrypted content item, and a digital certificate corresponding to a news provider; decrypting by the verifying program the encrypted content item using a public key corresponding to the digital certificate; verifying by the verifying program the unencrypted item of digital news content by comparing the unencrypted item of digital news content with the decrypted content item; the verifying program displaying a result of the verifying of the unencrypted item of digital news content; and the verifying program authenticating itself by displaying the shared secret data item. - View Dependent Claims (2, 3, 4, 5)
-
-
6. One or more computer readable storage media storing computer executable instructions that, when executed by a client computer, causes the client computer to perform the steps of:
-
receiving user input at a verifying program executing on a client computer, said user input comprising a shared secret data item, the shared secret data item including information that is a secret to and shared between a user of the client computer and the verifying program; the verifying program storing the shared secret data item; receiving by the verifying program from a server computer a content package comprising an unencrypted item of digital news content, an encrypted content item, and a digital certificate corresponding to a news provider; decrypting by the verifying program the encrypted content item using a public key corresponding to the digital certificate; verifying by the verifying program the unencrypted item of digital news content by comparing the unencrypted item of digital news content with the decrypted content item; the verifying program displaying a result of the verifying of the unencrypted item of digital news content; and the verifying program authenticating itself by displaying the shared secret data item. - View Dependent Claims (7, 8, 9, 10)
-
Specification