Patent · US Expired

Security mechanism for computer processing modules

US6965994B1 · kind B1 · utility

20Cited by

13References

17Claims

0Family size

Assignee

Microsoft Corporation · US

Inventors

Jason Brownell · Redwood City, US
Steven T. Ansell · Fremont, US
Perry T. Devine · Brookings, US
Earl Levine · Palo Alto, US

Key dates

Filing date	Jan 30, 2001
Grant date	Nov 15, 2005
Priority date	—
Expiry date	Feb 14, 2023

Classification

Technology area (CPC H)Electricity
CPC primaryH04L2209/605
WIPO fieldDigital communication
WIPO sectorElectrical engineering

Abstract

To provide improved security in adjunct program modules such as plug-ins and dynamic link libraries, a requesting module provides an authorization interface to the invoked module such that the invoked module can require a certificate of the requesting module and can also challenge the authority of the requesting module. The certificate can include one or more permissions which are prerequisites for processing by the invoked module. The invoked module can challenge the authority of the requesting module by sending random test data to the requesting module and receiving in response a cryptographic signature of the test data. By verifying the signature of the requesting module using the received certificate, the invoked module confirms that the requesting module is, in fact, the owner of the receive certificate.

Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.