Patent · US Active

Authentication of a server by a client to prevent fraudulent user interfaces

US7685631B1 · kind B1 · utility

55Cited by

32References

17Claims

0Family size

Assignee

Microsoft Corporation · US

Inventors

Ismail Cem Paya · Gainesville, US
Trevin Chow · Redmond, US
Christopher N. Peterson · North Bend, US

Key dates

Filing date	Feb 5, 2003
Grant date	Mar 23, 2010
Priority date	—
Expiry date	Jan 28, 2027

Classification

Technology area (CPC H)Electricity
CPC primaryH04L2209/60
WIPO fieldAudio-visual technology
WIPO sectorElectrical engineering

Abstract

Protecting a user against web spoofing in which the user confirms the authenticity of a web page prior to submitting sensitive information such as user credentials (e.g., a login name and password) via the web page. The web page provides the user with an identifiable piece of information representing a shared secret between the user and the server. The user confirms the correctness of the shared secret to ensure the legitimacy of the web page prior to disclosing any sensitive information via the web page.

Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.