CPC H04L 9/3247 (2013.01) [H04L 63/061 (2013.01)] | 20 Claims |
11. A method performed by a processor of a server computing device while the server computing device executes a service provider application, the method comprising:
receiving an electronic message from a client application executing on a client computing device that is in network communication with the server computing device, the electronic message comprising:
an authorization provider (AuP) token, the AuP token including a public key of a local signing authority (LSA) executing on the client computing device; and
a signed payload that has been signed by the LSA using a private key of the LSA that forms a cryptographic key pair with the public key, the signed payload comprising an indication of a programmatic task that is to be executed by the service provider application;
responsive to validating the AuP token in the electronic message based upon security data that is accessible to the service provider application, extracting the public key from the electronic message; and
responsive to validating the signed payload based upon the extracted public key of the LSA, executing the programmatic task.
|