| CPC H04L 63/20 (2013.01) | 11 Claims |
|
1. A method for verifying trust by a service node, the method comprising:
receiving a request for a security information of the service node from a client device, wherein the request includes information identifying a service to receive from the service node;
identifying a related service node to communicate with the service node based on the service, wherein the related service node is associated with the service;
after identifying the related service node, requesting a security information of the related service node;
generating a composite security information from the security information of the service node and the security information of the related service node, including:
identifying affirming claims and detracting claims in the security information of the service node and the security information of the related service node, the affirming claims being in support of providing security, and the detracting claims being opposed to provide security;
including in the composite security information matching affirming claims which appear in both the security information of the service node and the security information of the related service node;
excluding from the composite security information affirming claims which appear in one but not both of the security information of the service node and the security information of the related service node;
including in the composite security information any detracting claims that appear in either of the security information of the service node and the security information of the related service node; and
sending the composite security information to the client device.
|