Patent · US Expired

Security mechanism for computer processing modules

US7225330B2 · kind B2 · utility

2Cited by

13References

15Claims

0Family size

Assignee

Microsoft Corporation · US

Inventors

Jason Brownell · Redwood City, US
Steven T. Ansell · Fremont, US
Perry T. Devine · Brookings, US
Earl Levine · Palo Alto, US

Key dates

Filing date	Apr 14, 2005
Grant date	May 29, 2007
Priority date	—
Expiry date	Apr 14, 2025

Classification

Technology area (CPC G)Physics
CPC primaryG06F2221/2103
WIPO fieldDigital communication
WIPO sectorElectrical engineering

Abstract

To provide improved security in adjunct program modules such as plug-ins and dynamic link libraries, a requesting module provides an authorization interface to the invoked module such that the invoked module can require a certificate of the requesting module and can also challenge the authority of the requesting module. The certificate can include one or more permissions which are prerequisites for processing by the invoked module.The invoked module can challenge the authority of the requesting module by sending random test data to the requesting module and receiving in response a cryptographic signature of the test data. By verifying the signature of the requesting module using the received certificate, the invoked module confirms that the requesting module is, in fact, the owner of the receive certificate.

Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.