Electrical computers and digital processing systems: support – Multiple computer communication using cryptography – Protection at a particular protocol layer
Reexamination Certificate
2011-05-17
2011-05-17
Chai, Longbit (Department: 2431)
Electrical computers and digital processing systems: support
Multiple computer communication using cryptography
Protection at a particular protocol layer
C713S169000, C713S170000, C713S171000, C713S172000, C713S174000, C726S027000, C726S028000, C726S029000, C726S030000
Reexamination Certificate
active
07945774
ABSTRACT:
The present invention provides a method that facilitates secure cross domain mashups in an efficient fashion. The invention allows a first entity, the Masher, to establish at a second entity, the User, a secure mashup by obtaining information from, or taking actions at, a third entity, the Mashee, by using a novel twist to the SSL protocol. The invention is further extended to secure a hub and widget architecture, which allows one Masher to establish at a User, communication with several Mashees. Mutual authentication of all entities, key distribution for authentication, privacy and code verification and dynamic authorization based on the certificate information are provided by the invention.
REFERENCES:
patent: 5315658 (1994-05-01), Micali
patent: 5657390 (1997-08-01), Elgamal et al.
patent: 6141750 (2000-10-01), Micali
patent: 6212635 (2001-04-01), Reardon
patent: 6367009 (2002-04-01), Davis et al.
patent: 7020688 (2006-03-01), Sykes, Jr.
patent: 7318238 (2008-01-01), Elvanoglu et al.
patent: 7651677 (2010-01-01), Strohmaier et al.
patent: 2003/0140226 (2003-07-01), Yamamoto et al.
patent: 2003/0182423 (2003-09-01), Shafir et al.
patent: 2004/0103283 (2004-05-01), Hornak
patent: 2005/0086197 (2005-04-01), Boubez et al.
patent: 2006/0080352 (2006-04-01), Boubez et al.
patent: 2007/0289006 (2007-12-01), Ramachandran et al.
patent: 2008/0046984 (2008-02-01), Bohmer et al.
Collin Jackson “Subspace secured Cross-Domain Token”—2007.
“Internet RFC 2246 The Transport Level Security (TLS) Protocol” http://www.ietf.org/rfc/rfc2246.txt (Jan 1999).
The Anti Phishing Working Group, http://www.antiphishing.org.
The Design and Implementation of Datagram TLS, N. Modadugu and E. Rescorla. http://crypto.stanford.edu/˜nagendra/papers/dtls.pdf.
Google Account Authentication API. http://code.google.com/apis/accounts/.
BBauth. Yahoo! Browser Based Authentication. http://developer.yahoo.com/auth/.
SSL-over-SOAP: Towards a Token-based Key Establishment Framework for Web Services, Sebastian Gajek, Lijun Liao, Bodo Möller and Jörg Schwenk, IEEE ECOWS Workshop on Emerging Web Services Technology (WEWST'07), Halle (Germany), 2007.
OAuth: An open protocol to allow secure API authentication in a simple and standard method from desktop and web applications. http://oauth.net/.
Chai Longbit
Emery David P.
Safemashups Inc.
Sughrue & Mion, PLLC
LandOfFree
Efficient security for mashups does not yet have a rating. At this time, there are no reviews or comments for this patent.
If you have personal experience with Efficient security for mashups, we encourage you to share that experience with our LandOfFree.com community. Your opinion is very important and Efficient security for mashups will most certainly appreciate the feedback.
Profile ID: LFUS-PAI-O-2696921