NODE AND METHOD FOR SECURE SERVER COMMUNICATION

NODE AND METHOD FOR SECURE SERVER COMMUNICATION

The present invention provides a node (100) which is suitable for allowing a client node to access a trusted service provided by another node in a network and comprises two units. The first unit (101) is configured to sign a certificate to certify the ownership of a public key, wherein the public ke...

Ausführliche Beschreibung

Gespeichert in:
Bibliographische Detailangaben
Hauptverfasser: SHLOMO NAOR, TOUITOU DAN, ORON AVIGAIL
Format: Patent
Sprache:chi ; eng
Schlagworte:
CALCULATING
COMPUTING
COUNTING
ELECTRIC COMMUNICATION TECHNIQUE
ELECTRIC DIGITAL DATA PROCESSING
ELECTRICITY
PHYSICS
TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHICCOMMUNICATION
Online-Zugang:Volltext bestellen
Tags: Tag hinzufügen
Keine Tags, Fügen Sie den ersten Tag hinzu!
Beschreibung
Zusammenfassung:The present invention provides a node (100) which is suitable for allowing a client node to access a trusted service provided by another node in a network and comprises two units. The first unit (101) is configured to sign a certificate to certify the ownership of a public key, wherein the public key is owned by an enclave of a TEE (trusted execution environment), in the another node and a code to be executed for providing the trusted service to the client node is protected in the enclave. The second unit (102) is configured to make the signed certificate available to the client node. The certificate may be a certificate, which an enclave running in the another node provides to the node's first unit (101) to demonstrate that it is an authentic part of a web domain (e.g. example.com) which a client node wants to securely access without risking to expose sensitive data to a man-in-the-middle purporting to be the trusted service. 本发明提供了一种节点(100),适用于使客户端节点访问由网络中的另一个节点提供的可信服务,所述节点(100)包括两个单元。第一单元(101)用于签署证书以证明公钥的所