×

Method and service for user transparent certificate verifications for web mashups and other composite applications

  • US 9,081,940 B2
  • Filed: 03/13/2013
  • Issued: 07/14/2015
  • Est. Priority Date: 03/13/2013
  • Status: Active Grant
First Claim
Patent Images

1. A client for providing transparent certificate verifications for composite applications, comprising:

  • a content buffer arranged to hold content from a plurality of content sources arranged to provide content of a plurality of content types;

    a browser core arranged to;

    receive an aggregation of content from a plurality of sources; and

    perform local verification of digital certificates associated with the content received from the plurality of sources;

    a browser content interface coupled to the browser core and arranged to intercept the aggregation of content, the aggregation of content associated with verified digital certificates and untrusted certificates, to provide content associated with verified digital certificates to the content buffer for holding; and

    an online certification circuit, coupled to the browser content interface, the online certification circuit arranged to receive, from the browser content interface, the untrusted certificates associated with the aggregation of content and to perform verification of the received untrusted certificates using an online certification service and a local certificate store and to provide verification results to the content buffer to allow the aggregation of content verified by the online certificate circuit to be presented in a browser user interface,wherein the online certification service includes a cloud security certificate verification service and an enterprise security certificate verification and policy service, wherein the cloud security certificate verification service and the enterprise security certificate verification and policy service are arranged to provide policy provisioning and verification services, andwherein the online certification circuit provides, to the content buffer, the verification results obtained from the verification of the received untrusted certificates using the online certification service, and wherein the content buffer determines whether to release or to block content being held to the browser user interface based on the verification results provided by the online certification circuit.

View all claims
  • 1 Assignment
Timeline View
Assignment View
    ×
    ×