	US 12,381,859 B2
	Content security at service layer
Vinod Kumar Choyi, Conshohocken, PA (US); Yogendra C. Shah, Exton, PA (US); Dale N. Seed, Allentown, PA (US); Michael F. Starsinic, Newtown, PA (US); Shamim Akbar Rahman, Cote St. Luc (CA); Quang Ly, North Wales, PA (US); Zhuo Chen, Claymont, DE (US); and William Robert Flynn, IV, Schwenksville, PA (US)
Assigned to CONVIDA WIRELESS, LLC, Wilmington, DE (US)
Filed by Convida Wireless, LLC, Wilmington, DE (US)
Filed on Sep. 28, 2023, as Appl. No. 18/477,229.
Application 18/477,229 is a continuation of application No. 17/556,433, filed on Dec. 20, 2021, granted, now 11,811,740.
Application 17/556,433 is a continuation of application No. 16/826,363, filed on Mar. 23, 2020, granted, now 11,240,212, issued on Feb. 1, 2022.
Application 16/826,363 is a continuation of application No. 15/198,984, filed on Jun. 30, 2016, granted, now 10,637,836, issued on Apr. 28, 2020.
Claims priority of provisional application 62/248,808, filed on Oct. 30, 2015.
Claims priority of provisional application 62/188,141, filed on Jul. 2, 2015.
Prior Publication US 2024/0121227 A1, Apr. 11, 2024
This patent is subject to a terminal disclaimer.
Int. Cl. H04L 9/40 (2022.01); H04W 12/06 (2021.01); H04W 12/069 (2021.01); H04W 12/08 (2021.01); H04W 12/086 (2021.01); H04W 4/70 (2018.01)

CPC H04L 63/0435 (2013.01) [H04L 63/0823 (2013.01); H04L 63/101 (2013.01); H04W 12/06 (2013.01); H04W 12/069 (2021.01); H04W 12/08 (2013.01); H04W 12/086 (2021.01); H04L 63/061 (2013.01); H04W 4/70 (2018.02)]

20 Claims

1. An apparatus for a service supporting service capabilities through a set of Application Programming Interfaces (APIs), the service being provided as middleware between application protocols and a plurality of applications, the apparatus comprising circuitry configured to:

receive, from an entity hosting an application of the plurality of applications via at least one of the set of APIs, a first request to create one or more credentials for encrypting or integrity protecting application content when stored at rest on a first service entity of the service; and

send, based on the request and to the entity, the one or more credentials comprising a credential identifier obtained from a second service entity of the service,

wherein the entity is configured to send, to the service, a second request to create a resource that stores application content that is encrypted or integrity protected by the service, the resource being a uniquely addressable element in a Resource Oriented Architecture (ROA) having representation that can be manipulated via RESTful methods, the second request comprising the one or more credential identifiers for encrypting or integrity protecting the application content.