Method and service for user transparent certificate verifications for web mashups and other composite applications
First Claim
1. A client for providing transparent certificate verifications for composite applications, comprising:
- a content buffer arranged to hold content from a plurality of content sources arranged to provide content of a plurality of content types;
a browser core arranged to;
receive an aggregation of content from a plurality of sources; and
perform local verification of digital certificates associated with the content received from the plurality of sources;
a browser content interface coupled to the browser core and arranged to intercept the aggregation of content, the aggregation of content associated with verified digital certificates and untrusted certificates, to provide content associated with verified digital certificates to the content buffer for holding; and
an online certification circuit, coupled to the browser content interface, the online certification circuit arranged to receive, from the browser content interface, the untrusted certificates associated with the aggregation of content and to perform verification of the received untrusted certificates using an online certification service and a local certificate store and to provide verification results to the content buffer to allow the aggregation of content verified by the online certificate circuit to be presented in a browser user interface,wherein the online certification service includes a cloud security certificate verification service and an enterprise security certificate verification and policy service, wherein the cloud security certificate verification service and the enterprise security certificate verification and policy service are arranged to provide policy provisioning and verification services, andwherein the online certification circuit provides, to the content buffer, the verification results obtained from the verification of the received untrusted certificates using the online certification service, and wherein the content buffer determines whether to release or to block content being held to the browser user interface based on the verification results provided by the online certification circuit.
1 Assignment
0 Petitions
Accused Products
Abstract
Embodiments for providing user transparent certificate verifications for web mashups and other composite applications are generally described herein. In some embodiments, a content buffer is provided for holding content until receiving verification results that allow the content to be presented in a browser user interface. A browser core receives an aggregation of content from a plurality of sources and performing local verification of digital certificates associated with the content received from the plurality of sources. A browser content interface intercepts content associated with verified digital certificates from the browser core to provide content associated with verified digital certificates to the content buffer for holding. An online certification module is arranged to receive untrusted certificates from the browser content interface and to perform verification of the received untrusted certificates using online certification services and/or local certificate store on the client device.
-
Citations
17 Claims
-
1. A client for providing transparent certificate verifications for composite applications, comprising:
-
a content buffer arranged to hold content from a plurality of content sources arranged to provide content of a plurality of content types; a browser core arranged to; receive an aggregation of content from a plurality of sources; and perform local verification of digital certificates associated with the content received from the plurality of sources; a browser content interface coupled to the browser core and arranged to intercept the aggregation of content, the aggregation of content associated with verified digital certificates and untrusted certificates, to provide content associated with verified digital certificates to the content buffer for holding; and an online certification circuit, coupled to the browser content interface, the online certification circuit arranged to receive, from the browser content interface, the untrusted certificates associated with the aggregation of content and to perform verification of the received untrusted certificates using an online certification service and a local certificate store and to provide verification results to the content buffer to allow the aggregation of content verified by the online certificate circuit to be presented in a browser user interface, wherein the online certification service includes a cloud security certificate verification service and an enterprise security certificate verification and policy service, wherein the cloud security certificate verification service and the enterprise security certificate verification and policy service are arranged to provide policy provisioning and verification services, and wherein the online certification circuit provides, to the content buffer, the verification results obtained from the verification of the received untrusted certificates using the online certification service, and wherein the content buffer determines whether to release or to block content being held to the browser user interface based on the verification results provided by the online certification circuit. - View Dependent Claims (2, 3, 4, 5)
-
-
6. A system for providing transparent certificate verifications for composite applications, comprises:
-
a plurality of content sources arranged to provide content of a plurality of content types; an online certification service, the online certification service including a cloud security certificate verification service and an enterprise security certificate verification and policy service, the cloud security certificate verification service and the enterprise security certificate verification and policy service arranged to provide policy provisioning and verification services; and a client, coupled to the plurality of content sources and the online certification service, the client further comprising; a content buffer for holding content until receiving verification results allowing the content to be presented in a browser user interface; a browser core for receiving an aggregation of content from a plurality of sources and performing local verification of digital certificates associated with the content received from the plurality of sources; a browser content interface, coupled to the browser core, arranged to intercept content associated with verified digital certificates and untrusted certificates from the browser core, to provide content associated with verified digital certificates to the content buffer for holding; and an online certification circuit, coupled to the browser content interface, the online certification circuit arranged to receive the untrusted certificates from the browser content interface and to perform verification of the received untrusted certificates using online certification services and a local certificate store, wherein the online certification circuit provides, to the content buffer, verification results obtained from the verification of the received untrusted certificates using online certification services, and wherein the client further comprises a browser user interface, the content buffer determining whether to release or to block content being held to the browser user interface based on the verification results provided by the online certification circuit. - View Dependent Claims (7, 8, 9, 10)
-
-
11. A method for providing transparent certificate verifications for composite applications, comprising:
-
performing, at a browser core, local verification of digital certificates associated with an aggregation of content received from a plurality of content sources arranged to provide content of a plurality of content types; intercepting, by a browser content interface, the aggregation of content associated with verified digital certificates and unverified certificates from the browser core; holding the aggregation of content, obtained from the browser content interface, in a content buffer until receiving verification results for the unverified certificates allowing the content to be presented in a browser user interface; receiving, at an online certification circuit, the untrusted certificates received from the browser content interface; performing, by the online certification circuit, verification of the received untrusted certificates using an online certification service and a local certificate store, wherein the online certification service includes a cloud security certificate verification service and an enterprise security certificate verification and policy service, wherein the cloud security certificate verification service and the enterprise security certificate verification and policy service are arranged to provide policy provisioning and verification services; providing, by the online certification circuit to the content buffer, verification results obtained from the verification of the received untrusted certificates using online certification services; and determining, by the content buffer, whether to release or to block content being held to the browser user interface based on the verification results provided by the online certification circuit. - View Dependent Claims (12, 13, 14, 15)
-
-
16. At least one machine readable memory comprising instructions that, when executed by the machine, cause the machine to perform operations for providing transparent certificate verifications for composite applications, the operations comprising:
-
performing, at a browser core, local verification of digital certificates associated with an aggregation of content received from a plurality of content sources arranged to provide content of a plurality of content types; intercepting, by a browser content interface, the aggregation of content associated with verified digital certificates and unverified certificates from the browser core; holding the aggregation of content, obtained from the browser content interface, in a content buffer until receiving verification results for the unverified certificates allowing the content to be presented in a browser user interface; receiving, at an online certification circuit, the untrusted certificates received from the browser content interface; performing, by the online certification circuit, verification of the received untrusted certificates using an online certification service and a local certificate store, wherein the online certification service includes a cloud security certificate verification service and an enterprise security certificate verification and policy service, wherein the cloud security certificate verification service and the enterprise security certificate verification and policy service are arranged to provide policy provisioning and verification services; providing, by the online certification circuit to the content buffer, verification results obtained from the verification of the received untrusted certificates using online certification services; and determining, by the content buffer, whether to release or to block content being held to the browser user interface based on the verification results provided by the online certification circuit. - View Dependent Claims (17)
-
Specification