Server public key pinning by URL
US10257171B2 · kind B2 · utility
Assignee
Inventors
Key dates
| Filing date | Sep 4, 2015 |
| Grant date | Apr 9, 2019 |
| Priority date | — |
| Expiry date | Oct 28, 2036 |
Classification
- Technology area (CPC H)Electricity
- CPC primaryH04L63/166
- WIPO fieldDigital communication
- WIPO sectorElectrical engineering
Abstract
A method of ensuring the identity of a first processing device to a second processing device allows for secure network communication between the devices. A network resource address including an encoded trusted identifier in a portion of the address excluding the host name of the first processing device are provided to a second processing device by a trusted distribution mechanism. The trusted identifier is derived from a public key of the first processing device. Communication is initiated with the first processing device at the network resource address and a public key purporting to identify the first processing device is received in response to initiating the communication. The trusted identifier is compared to a transformation of at least a portion of the public key to determine a match between the identifier and the transformation. If the trusted identifier and the transformation match, the identity of the first processing device is verified.
Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.