Authentication of web content
First Claim
1. A method of authenticating content offered by a content source to a local device for displaying content, the method comprising:
- establishing a communication session between the content source and a browser executing at the local device;
transmitting from the content source to the browser a validation page comprising a content authentication token which is a randomly generated one-time use only credential bound to the content source;
capturing the content authentication token from the browser by a verification application;
transmitting the authentication token to a validation service which determines whether the token is bound to a valid source of content; and
causing the content to be displayed on the local device if the token is bound to a valid source of content;
wherein causing the content to be displayed comprises transmitting a content source receipt from the validation service to the local device or a mobile device, wherein the content source receipt comprises a link identifying a memory location from which a data item relating to the valid source of content is accessible, thereby indicating the data item.
4 Assignments
0 Petitions
Accused Products
Abstract
The disclosure relates to a method of authenticating content offered by a content source to a local device for displaying content. The method includes establishing a communication session between the content source and a browser executing at the local device, transmitting from the content source to the browser a validation page comprising a content authentication token which is a randomly generated one-time use only credential bound to the content source, and capturing the content authentication token from the browser by a verification application. The method also includes transmitting the authentication token to a validation service which determines whether the token is bound to a valid source of content and causing the content to be displayed on the local device if the token is bound to a valid source of content.
-
Citations
24 Claims
-
1. A method of authenticating content offered by a content source to a local device for displaying content, the method comprising:
-
establishing a communication session between the content source and a browser executing at the local device; transmitting from the content source to the browser a validation page comprising a content authentication token which is a randomly generated one-time use only credential bound to the content source; capturing the content authentication token from the browser by a verification application; transmitting the authentication token to a validation service which determines whether the token is bound to a valid source of content; and causing the content to be displayed on the local device if the token is bound to a valid source of content; wherein causing the content to be displayed comprises transmitting a content source receipt from the validation service to the local device or a mobile device, wherein the content source receipt comprises a link identifying a memory location from which a data item relating to the valid source of content is accessible, thereby indicating the data item. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16, 17, 18, 19, 20)
-
-
21. A computer program product comprising computer readable instructions stored on a non-transitory computer readable storage medium and, when executed, configured to implement a method comprising:
-
establishing a communication session between the content source and a browser executing at the local device; transmitting from the content source to the browser a validation page comprising a content authentication token which is a randomly generated one-time use only credential bound to the content source; capturing the content authentication token from the browser by a verification application; transmitting the authentication token to a validation service which determines whether the token is bound to a valid source of content; and causing the content to be displayed on the local device if the token is bound to a valid source of content; wherein causing the content to be displayed comprises transmitting a content source receipt from the validation service to the local device or a mobile device, wherein the content source receipt comprises a link identifying a memory location from which a data item relating to the valid source of content is accessible, thereby indicating the data item.
-
-
22. A computer system comprising:
-
a digital identity system configured to implement a validation service; and a local device comprising a network interface and a processor configured to execute a browser which operates to; establish a communication session between a content source and the browser via the network interface, and receive from the content source a validation page comprising a content authentication token which is a randomly generated one-time use only credential bound to the content source, wherein a verification application captures the content authentication token from the browser and transmits the authentication token to a validation service which determines whether the token is bound to a valid source of content; wherein the validation service causes the content to be displayed on the local device if the token is bound to a valid source of content; and wherein causing the content to be displayed comprises transmitting a content source receipt from the validation service to the local device or a mobile device, wherein the content source receipt comprises a link identifying a memory location from which a data item relating to the valid source of content is accessible, thereby indicating the data item. - View Dependent Claims (23, 24)
-
Specification