User content access management and control
US-9350599-B1 · May 24, 2016 · US
Method and system for assessing a message in a decentralized communication network
US9949119B2 · US · B2
| Field | Value |
|---|---|
| Publication number | US-9949119-B2 |
| Application number | US-201414911737-A |
| Country | US |
| Kind code | B2 |
| Filing date | Feb 17, 2014 |
| Priority date | Dec 23, 2013 |
| Publication date | Apr 17, 2018 |
| Grant date | Apr 17, 2018 |
How to read this patent
A practical reading order for non-experts. Skip the full description unless you need deep technical detail.
- Title
What the patent document calls the invention.
- Abstract
A short plain-language summary of the technical disclosure.
- Assignees and inventors
Who owns or filed the patent and who is credited as inventor.
- Key dates
Filing, priority, publication, and grant dates set the timeline.
- First independent claim
The legal scope of protection — read this for what is actually claimed.
- CPC / IPC classifications
Technology tags used to group this patent with similar filings.
- Citations and related patents
Prior art links and similar publications in this corpus.
Abstract
Official abstract text for this publication.
A method for assessing a message transmitted between at least: two parties via a previously unknown third party in a decentralized communication network, wherein all parties share a common trust architecture, includes publishing, on-behalf-of indication and public, security information of the third party; publishing, the message of the first party; evaluating the published information to extract published content of the first party by the second party as intended receiver of the message; verifying a real-world-identity of the third party and/or the signature of the third party based on the previously received trust information and/or based on the self-certifying name and the public security information of the third party; checking a trust information chain according to the common trust architecture from the second party to the third party; and assessing the content of the first party based on the checked trust chain.
First claim
Opening claim text (preview).
The invention claimed is: 1. A method for assessing a message, wherein the message is communicated from a first party to a second party via a third party in a decentralized communication network, wherein the first party, the second party, and the third party share a common trust architecture, wherein the decentralized network utilizes a naming scheme in which names of parties under which content is published are denoted by a context part concatenated to a self-certifying part, and wherein a self-certifying identifier of the first party is previously provided to the second party, the method comprising: a) publishing, under a transitive on-behalf-of name for the first party, content including a non-transitive on-behalf-of name for the third party and public security information of the third party, wherein the transitive on-behalf-of name for the first party is a reserved transitive on-behalf-of context part concatenated to the self-certifying identifier of the first party, and wherein the non-transitive on-behalf-of name for the third party is a reserved non-transitive on-behalf-of context part concatenated to a self-certifying identifier of the third party; b) publishing, under a combination name for the first party and the third party, the message, wherein the published message is signed by the third party, and wherein the combination name for the first party and the third party is the reserved non-transitive on-behalf-of context part concatenated to the self-certifying identifier of the third party concatenated to the self-certifying identifier of the first party; c) evaluating information published in step a) and step b) to extract the message by the second party as intended receiver of the message; d) verifying a real-world-identity of the third party and/or the signature of the third party on the published message based on previously received trust information and/or based on the self-certifying identifier and the public security information of the third party, wherein a network-wide cryptographic hash function is used on the public security information of the third party to obtain the real-world-identity of the third party and/or the signature of the third party; e) checking a trust information chain according to the common trust architecture from the second party to the third party, and f) assessing the message based on the checked trust information chain, wherein the self-certifying identifier of the first party and the self-certifying identifier of the third party are both provided as cryptographic information, and wherein the public security information of the third party is used for identification of the third party within the common trust architecture. 2. The method according to claim 1 , wherein a functional decentralized local node is queried for a real-world identity of the first party by the third party to determine the self-certifying identifier of the first party. 3. The method according to claim 1 , wherein for obtaining the trust information chain one or more functional decentralized local nodes located within the decentralized communication network are queried, wherein a functional decentralized local node provides trust information. 4. The method according to claim 1 , wherein trust information is provided in a form of a web-of-trust file or a binding file comprising real-world-identity information associated with corresponding public security information. 5. The method according to claim 4 , wherein the trust information is generated and updated by a functional decentralized local node in a part of the decentralized network to which the parties can connect. 6. The method according to claim 1 , wherein step e) includes evaluating a length of the trust information chain and/or a number of independent paths between the first party and the second party. 7. The method according to claim 1 , wherein the trust information chain is obtained by using a double-side breadth search first algorithm on the trust information. 8. The method according to claim 1 , wherein trust information is revoked and/or updated upon a request of a party. 9. The method according to claim 1 , wherein the trust information is compressed prior to storing. 10. The method according to claim 9 , wherein the trust information is provided in a form of first real-world-identities listed sequentially, followed by a list of corresponding key-IDs in a same order. 11. A system for assessing a message, wherein the message is communicated from a first party to a second party via a third party in a decentralized communication network, wherein the first party, the second party, and the third party share a common trust architecture, wherein the decentralized network utilizes a naming scheme in which names of parties under which content is published are denoted by a context part concatenated to a self-certifying part, and wherein a self-certifying identifier of the first party is previously provided to the second party the system comprising: the third party, operable to: publish under a transitive on-behalf-of name for the first party, content including a non-transitive on-behalf-of name for the third party and public security information of the third party, wherein the transitive on-behalf-of name for the first party is a reserved transitive on-behalf-of context part concatenated to the self-certifying identifier of the first party, and wherein the non-transitive on-behalf-of name for the third party is a reserved non-transitive on-behalf-of context part concatenated to a self-certifying identifier of the third party, publish under a combination name for the first party and the third party, the message, wherein the published message is signed by the third party, and wherein the combination name for the first party and the third party is the reserved non-transitive on-behalf-of context part concatenated to the self-certifying identifier of the third party concatenated to the self-certifying identifier of the first party; and the second party, as intended receiver of the message, operable to: evaluate information published by the third party to extract the published message, verify a real-world-identity of the third party and/or a signature of the third party on the published message based on previously received trust information and/or based on the self-certifying identifier and the public security information of the third party, wherein a network-wide cryptographic hash function is used on the public security information of the third party to obtain the real-world-identity of the third party and/or the signature of the third party; check a trust information chain according to the common trust architecture from the second party to the third party, and assess the message based on the checked trust information chain, wherein the self-certifying identifier of the first party and the self-certifying identifier of the third party are both provided as cryptographic information, and wherein the public security information of the third party is used for identification of the third party within the common trust architecture.
Assignees
Inventors
Classifications
- H04L9/3265Primary
using certificate chains, trees or paths; Hierarchical trust model · CPC title
involving digital signatures · CPC title
applying self-generating credentials, e.g. instead of receiving credentials from an authority or from another peer, the credentials are generated at the entity itself · CPC title
using certificates (cryptographic mechanisms or cryptographic arrangements for entity authentication involving certificates H04L9/3263) · CPC title
the source of the received data · CPC title
Patent family
Related publications grouped by family.
External sources
Frequently asked questions
Answers are generated from the same data shown on this page.
- What does patent US9949119B2 cover?
- A method for assessing a message transmitted between at least: two parties via a previously unknown third party in a decentralized communication network, wherein all parties share a common trust architecture, includes publishing, on-behalf-of indication and public, security information of the third party; publishing, the message of the first party; evaluating the published information to extrac…
- Who is the assignee on this patent?
- Nec Europe Ltd, Nec Corp
- What technology area does this patent fall under?
- Primary CPC classification H04L9/3265. Mapped technology areas include Electricity.
- When was this patent published?
- Publication date Tue Apr 17 2018 00:00:00 GMT+0000 (Coordinated Universal Time) (B2). Legal status and post-grant events are not shown on this page.
- What related patents are in patentsdb?
- We list 1 related publication on this page (citations in our corpus or others sharing the same primary CPC).