Verifying authenticity of webpages
First Claim
1. A method, comprising:
- creating a certificate registry including authentication certificates issued to each one of a plurality of information providers and a root certificate corresponding to all of said authentication certificates, wherein each one of said authentication certificates links respective authentication information thereof to identification information of a corresponding one of said information providers, wherein each one of said authentication certificates is devoid of linkage between the corresponding one of said information providers and domain name information thereof, and wherein said authentication certificates of the certificate registry are associated in a manner at least partially dependent upon at least one of a particular type of information that said information providers provide, a particular organization that said information providers are associated with, a particular type profession in which said information providers are engaged and a particular geographical region in which said information providers are located;
providing the root certificate to an information recipient; and
facilitating verification of a webpage accessed by the information recipient and having an authentication certificate associated therewith, wherein said verification includes successfully verifying authenticity of said associated authentication certificate using authentication information contained in the root certificate thereby verifying that said associated authentication certificate belongs to the certificate registry and, after said successfully verifying authenticity of said associated authentication certificate, successfully verifying identity of a designated owner of the webpage using authentication information contained in said associated authentication certificate.
5 Assignments
0 Petitions
Accused Products
Abstract
A certificate registry system is configured to issue authentication certificates issued to each one of a plurality of information providers and to maintain a root certificate corresponding to all of the authentication certificates. Each one of the authentication certificates links respective authentication information thereof to identification information of a corresponding one of the information providers. Each one of the authentication certificates is devoid of linkage between the corresponding one of the information providers and domain name information thereof. The authentication certificates of the certificate registry are associated in a manner at least partially dependent upon at least one of a particular type of information that the information providers provide, a particular organization that the information providers are associated with, a particular type profession in which the information providers are engaged and a particular geographical region in which the information providers are located.
17 Citations
21 Claims
-
1. A method, comprising:
-
creating a certificate registry including authentication certificates issued to each one of a plurality of information providers and a root certificate corresponding to all of said authentication certificates, wherein each one of said authentication certificates links respective authentication information thereof to identification information of a corresponding one of said information providers, wherein each one of said authentication certificates is devoid of linkage between the corresponding one of said information providers and domain name information thereof, and wherein said authentication certificates of the certificate registry are associated in a manner at least partially dependent upon at least one of a particular type of information that said information providers provide, a particular organization that said information providers are associated with, a particular type profession in which said information providers are engaged and a particular geographical region in which said information providers are located; providing the root certificate to an information recipient; and facilitating verification of a webpage accessed by the information recipient and having an authentication certificate associated therewith, wherein said verification includes successfully verifying authenticity of said associated authentication certificate using authentication information contained in the root certificate thereby verifying that said associated authentication certificate belongs to the certificate registry and, after said successfully verifying authenticity of said associated authentication certificate, successfully verifying identity of a designated owner of the webpage using authentication information contained in said associated authentication certificate. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9)
-
-
10. A certificate registry, comprising:
-
authentication certificates issued to each one of a plurality of information providers; and a root certificate corresponding to all of said authentication certificates; wherein each one of said authentication certificates links respective authentication information thereof to identification information of a corresponding one of said information providers; wherein each one of said authentication certificates is devoid of linkage between the corresponding one of said information providers and domain name information thereof; and wherein said authentication certificates of the certificate registry are associated in a manner at least partially dependent upon at least one of a particular type of information that said information providers provide, a particular organization that said information providers are associated with, a particular type profession in which said information providers are engaged and a particular geographical region in which said information providers are located. - View Dependent Claims (11, 12)
-
-
13. A certificate registry system configured to issue authentication certificates issued to each one of a plurality of information providers and maintain a root certificate corresponding to all of said authentication certificates, wherein each one of said authentication certificates links respective authentication information thereof to identification information of a corresponding one of said information providers, wherein each one of said authentication certificates is devoid of linkage between the corresponding one of said information providers and domain name information thereof, and wherein said authentication certificates of the certificate registry are associated in a manner at least partially dependent upon at least one of a particular type of information that said information providers provide, a particular organization that said information providers are associated with, a particular type profession in which said information providers are engaged and a particular geographical region in which said information providers are located.
- 14. The system of claim 14 wherein said identification information includes at least one of a name by which a respective one of said information providers is recognized, an image specific to a respective one of said information providers, text specific to a respective one of said information providers, and a sound specific to a respective one of said information providers.
- 17. The system of claim 17 wherein said identification information includes at least one of a protected name of a respective one of said information providers, a protected image of a respective one of said information providers, protected text of a respective one of said information providers, and protected sound of a respective one of said information providers.
Specification