×

Browser security module

  • US 9,225,690 B1
  • Filed: 12/06/2011
  • Issued: 12/29/2015
  • Est. Priority Date: 12/06/2011
  • Status: Active Grant
First Claim
Patent Images

1. A computer-implemented method of cryptographic secret use, comprising:

  • under control of one or more computer systems configured with executable instructions,receiving a set of security credentials to a client device, the set of security credentials including at least a key;

    causing at least the key to be stored in a security module associated with a browser on the client device, at least one processor on the client device executing instructions to provide the security module;

    enabling active content executing in the browser to contact the security module to sign data using the stored key, wherein the active content is able to submit the data to the security module using an interface for a type of the active content, and wherein the browser and the active content are unable to access at least the key stored in the security module; and

    enabling the active content executing in the browser to receive, from the security module, the signed data that was signed by the security module using at least the key, the active content operable to forward the signed data to at least one target destination,wherein the security module is configured to sign the data for the active content executing in the browser without exposing the key to the active content,wherein the set of security credentials further includes a client token, and wherein the security module is further operable to include the client token with the signed data, andwherein an entity at the target destination is enabled to authenticate an identity of the client device by decoding the client token to obtain a copy of the key and determining that the data is signed using the key.

View all claims
  • 1 Assignment
Timeline View
Assignment View
    ×
    ×