Methods and systems for allocating and indicating trustworthiness of secure communications
First Claim
1. A system comprising:
- one or more computer processors;
a computer readable electronic memory storage in communication with the one or more processors, the computer readable electronic memory storage storing software modules including instructions that are executable by the one or more processors, the software modules including at least;
an authentication module provided by an authenticatable entity configured to;
access a message comprising content that has been digitally signed and message security data related to a third party;
determine at least a portion of the message has been presented via a first user interface element under control of a first application by a first entity;
generate one or more attestations about the message using the message and the message security data;
determine whether the one or more attestations about the message are reliable based on criteria from the authenticatable entity;
present the one or more attestations, an indication of the reliability of the one or more attestations, and an identification of the authenticatable entity in proximity to the first user interface element via a second user interface element under control of the authenticatable entity;
present information about the one or more attestations in a chrome portion of a web page, wherein the web page comprises at least a portion of the message, and wherein the chrome portion is controlled by extended functionality of a browser running on the system; and
present the indication of the reliability of the one or more attestations via the second user interface element under control of the authenticatable entity, wherein the authenticatable entity transfers responsibility for the indication of the reliability of the one or more attestations in the second user interface element.
1 Assignment
0 Petitions
Accused Products
Abstract
Embodiments of the present invention enable allocating and indicating the trustworthiness of a message, especially messages that comprise content that has been digitally signed. In some embodiments, a provider of assurance services and assurance software provides trust attestations related to messages and may manipulate the user interface used to view these messages. The trust attestations may be computed by various methods. The trust attestations may then be presented when the message is displayed to the user using the assurance software. For example, the trust attestations may be displayed as user interface elements in a designated portion of the chrome of a messaging service, such as a webmail service. In one embodiment, the assurance software can run on the webmail service and the trust attestations in the chrome are served up via techniques for delivery of client-server presentation data. In another embodiment, the assurance software is implemented as software that runs on the client and may perform some computations on the client in order to manipulate the messaging service'"'"'s chrome. In yet another embodiment, the assurance software may run as an extension to an e-mail client that runs on a user'"'"'s machine. The assurance software is configured to work with the presenter of the message, but independently of the presenter.
49 Citations
19 Claims
-
1. A system comprising:
-
one or more computer processors; a computer readable electronic memory storage in communication with the one or more processors, the computer readable electronic memory storage storing software modules including instructions that are executable by the one or more processors, the software modules including at least; an authentication module provided by an authenticatable entity configured to; access a message comprising content that has been digitally signed and message security data related to a third party; determine at least a portion of the message has been presented via a first user interface element under control of a first application by a first entity; generate one or more attestations about the message using the message and the message security data; determine whether the one or more attestations about the message are reliable based on criteria from the authenticatable entity; present the one or more attestations, an indication of the reliability of the one or more attestations, and an identification of the authenticatable entity in proximity to the first user interface element via a second user interface element under control of the authenticatable entity; present information about the one or more attestations in a chrome portion of a web page, wherein the web page comprises at least a portion of the message, and wherein the chrome portion is controlled by extended functionality of a browser running on the system; and present the indication of the reliability of the one or more attestations via the second user interface element under control of the authenticatable entity, wherein the authenticatable entity transfers responsibility for the indication of the reliability of the one or more attestations in the second user interface element. - View Dependent Claims (2, 3, 4, 5, 6)
-
-
7. A computer-implemented method of indicating attestations about a message, said method comprising:
-
under control of one or more computing devices configured with specific computer executable instructions, accessing, via an authentication module provided by an authenticatable entity, a message comprising content and message security data related to a third party; determining at least a portion of the message has been presented via a first user interface element under control of a first application by a first entity; generating at least one attestation about the message using the message and the message security data; determining whether the at least attestation about the message is reliable based on criteria from the authenticatable entity; presenting, in proximity to the at least a portion of the message, the at least one attestation, an indication of reliability of the at least one attestation, and an identification of the authenticatable entity via a second user interface element under control of the authenticatable entity, wherein the second user interface element indicates a difference in control by the authenticatable entity, the authenticatable entity authenticatable and distinct from the first entity; presenting information about the at least one attestation in a chrome portion of a web page, wherein the web page comprises at least a portion of the message, and wherein the chrome portion is controlled by extended functionality of a browser running on one or more of the one or more computing devices; and presenting the indication of the reliability of the at least one attestation via the second user interface element under control of the authenticatable entity, wherein the authenticatable entity transfers responsibility for the indication of the reliability of the at least one attestation in the second user interface element. - View Dependent Claims (8, 9, 10, 11, 12, 13, 14, 15)
-
-
16. A system comprising:
-
one or more computer processors; a computer readable electronic memory storage in communication with the one or more processors, the computer readable electronic memory storage storing software modules including instructions that are executable by the one or more processors, the software modules including at least; an authentication module provided by an authenticatable entity configured to; access a message and message security data; determine at least a portion of the message has been presented via a user interface element controlled by a messaging system; identify at least one attestation about the message; determine whether the at least one attestation about the message is reliable using at least the message security data; present the at least one attestation and an identification of the authenticatable entity in proximity to the at least a portion of the message via the user interface element controlled by the authenticatable entity, the authenticatable entity authenticatable and distinct from the messaging system; present information about the at least one attestation in a chrome portion of a web page, wherein the web page comprises at least a portion of the message, and wherein the chrome portion is controlled by extended functionality of a browser running on the system; and present the indication of a reliability of the at least one attestation via the second user interface element under control of the authenticatable entity, wherein the authenticatable entity transfers responsibility for the indication of the reliability of the at least one attestation in the second user interface element.
-
-
17. A computer-implemented method of indicating attestations about a message from a messaging system to be presented to a user, said method comprising:
-
under control of one or more computing devices configured with specific computer executable instructions, identifying, by an authentication module provided by an authenticatable entity, when at least a portion of a message has been presented via a presentation interface that is at least partially under control of the messaging system; accessing security data related to the message; generating at least one attestation about the message based at least on the security data; determining whether the at least one attestation about the message is reliable based on criteria from the authenticatable entity; presenting the at least one attestation about the message, an indication of the reliability of the at least one attestation, and an identification of the authenticatable entity in proximity to the at least a portion of the message via a user interface element that is not under control of the messaging system and under control of the authenticatable entity, the authenticatable entity distinct from the messaging system, and wherein the authenticatable entity is able to be authenticated; presenting information about the at least one attestation in a chrome portion of a web page, wherein the web page comprises at least a portion of the message, and wherein the chrome portion is controlled by extended functionality of a browser running on one or more of the one or more computing devices; and presenting the indication of the reliability of the at least one attestation via the second user interface element under control of the authenticatable entity, wherein the authenticatable entity transfers responsibility for the indication of the reliability of the at least one attestation in the second user interface element. - View Dependent Claims (18, 19)
-
Specification