公开(公告)号：US20140283105A1

公开(公告)日：2014-09-18

申请号：US13799360

申请日：2013-03-13

申请人： Brian Scott Trevor ,  Hong Li ,  Joseph Doolittle

发明人： Brian Scott Trevor ,  Hong Li ,  Joseph Doolittle

IPC分类号： G06F21/10

CPC分类号： G06F21/10 ,  G06F21/51 ,  G06F21/6218 ,  G06F2221/2119

摘要： Embodiments for providing user transparent certificate verifications for web mashups and other composite applications are generally described herein. In some embodiments, a content buffer is provided for holding content until receiving verification results that allow the content to be presented in a browser user interface. A browser core receives an aggregation of content from a plurality of sources and performing local verification of digital certificates associated with the content received form the plurality of sources. A browser content interface intercepts content associated with verified digital certificates from the browser core to provide content associated with verified digital certificates to the content buffer for holding. An online certification module is arranged to receive untrusted certificates from the browser content interface and to perform verification of the received untrusted certificates using online certification services and/or local certificate store on the client device.

摘要翻译： 本文通常描述了为web混搭和其他复合应用提供用户透明证书验证的实施例。 在一些实施例中，提供内容缓冲器用于保存内容，直到接收允许在浏览器用户界面中呈现内容的验证结果为止。 浏览器核心从多个源接收内容的聚合，并执行与从多个源接收到的内容相关联的数字证书的本地验证。 浏览器内容接口拦截与来自浏览器核心的已验证数字证书相关联的内容，以将与验证的数字证书相关联的内容提供给用于保存的内容缓冲区。 在线认证模块被安排为从浏览器内容界面接收不受信任的证书，并使用客户端设备上的在线认证服务和/或本地证书存储来对接收到的不受信任的证书进行验证。