Privileged static hosted web applications

US 10,104,081 B2
Filed: 10/24/2014
Issued: 10/16/2018
Est. Priority Date: 12/19/2013
Status: Active Grant

First Claim

Patent Images

1. A method comprising:

receiving a static web application at a trusted server;

validating assurance characteristics of the static web application; and

upon successful validation of the static web application, providing access to the static web application via a uniform resource locator (URL) that identifies the static web application at a trusted server location within a public Internet and that can be used to navigate to the static web application from a browser running on a client device, the browser having a first set of permissions to utilize local resources of the client device, whereinthe static web application includes at least one object that is stored as a server-side component,only the at least one object is granted a second set of permissions including at least one permission additional to the first set of permissions that is not included in the first set of permissions for the at least one object to utilize local resources of the client device during execution of the static web application by the browser when the static web application is executed on the browser running on the client device, andupon receiving a change to an object of the static web application, the validating of the assurance characteristics of the static web application, as a whole, is performed before the change to the object is made accessible via the URL.

View all claims

2 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A method can include receiving a static web application at a trusted server, validating assurance characteristics of the static web application, and upon successful validation of the static web application, providing access to the static web application via a URL that identifies the static web application at a trusted server location. The static web application, when executed on the browser running on the client device, can be granted at least one permission to utilize local resources of the client device during execution of the static web application by the browser. Upon receiving a change to an object of the static web application, the validating of the assurance characteristics of the static web application, as a whole, can be performed before the change to the object is made accessible via the URL.

11 Citations

View as Search Results

20 Claims

1. A method comprising:
- receiving a static web application at a trusted server;
  
  validating assurance characteristics of the static web application; and
  
  upon successful validation of the static web application, providing access to the static web application via a uniform resource locator (URL) that identifies the static web application at a trusted server location within a public Internet and that can be used to navigate to the static web application from a browser running on a client device, the browser having a first set of permissions to utilize local resources of the client device, whereinthe static web application includes at least one object that is stored as a server-side component,only the at least one object is granted a second set of permissions including at least one permission additional to the first set of permissions that is not included in the first set of permissions for the at least one object to utilize local resources of the client device during execution of the static web application by the browser when the static web application is executed on the browser running on the client device, andupon receiving a change to an object of the static web application, the validating of the assurance characteristics of the static web application, as a whole, is performed before the change to the object is made accessible via the URL.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9)
- - 2. The method of claim 1, wherein the static web application is granted the at least one permission based on a prior verification and vetting process based on at least one permission that the web application seeks to declare.
  - 3. The method of claim 1, wherein the static web application is granted the at least one permission based on a prior maliciousness ranking and a threshold value.
  - 4. The method of claim 1, wherein the static web application contains all of the resources necessary to execute the application on the client computing device and wherein code needed to execute the application by the client computing device is not dynamically generated.
  - 5. The method of claim 1, further comprising:
    - hosting the static web application on the trusted server, wherein the hosting includes providing access to the static web application, and code associated with the static web application, to a web crawler.
  - 6. The method of claim 1, wherein validating assurance characteristics of the static web application includes verifying an object of the static web application does not include an object identified as at least one of a malware, a virus, and a Trojan.
  - 7. The method of claim 1, wherein validating assurance characteristics of the static web application includes verifying a trustworthiness ranking of a developer of the static web application.
  - 8. The method of claim 1, wherein updating the static web application includes replacing objects of the static web application with a revalidated entire application.
  - 9. The method of claim 1, wherein prior to requesting at least one permission to utilize local resources of the client device during execution of the static web application by the browser the static web application executes, on the client device, without permission to utilize local resources of the client device.

10. A server comprising:
- a memory configured to store a static web application;
  
  a verification module configured to validate assurance characteristics of the static web application; and
  
  an application server, upon successful validation of the static web application, configured to provide access to the static web application via a uniform resource locator (URL) that identifies the static web application at a trusted server location within a public Internet and that can be used to navigate to the static web application from a browser running on a client device, the browser having a first set of permissions to utilize local resources of the client device, whereinthe static web application includes at least one object that is stored on the trusted server and served to the client device via the URL,only the at least one object is granted a second set of permissions including at least one permission additional to the first set of permissions that is not included in the first set of permissions for the at least one object to utilize local resources of the client device during execution of the static web application by the browser when the static web application is executed on the browser running on the client device, andthe verification module, upon receiving a change to an object of the static web application, is further configured to repeat the validating of the assurance characteristics of the static web application, as a whole, before the change to the object is made accessible via the URL.
- View Dependent Claims (11, 12, 13, 14, 15, 16, 17)
- - 11. The server of claim 10, wherein the static web application is granted the at least one permission based on a prior verification and vetting process based on at least one permission that the web application seeks to declare.
  - 12. The server of claim 10, wherein the static web application is granted the at least one permission based on a prior maliciousness ranking and a threshold value.
  - 13. The server of claim 10, wherein the static web application contains all of the resources necessary to execute the application on the client computing device and wherein code needed to execute the application by the client computing device is not dynamically generated.
  - 14. The server of claim 10, further comprising:
    - hosting the static web application on the server, wherein the hosting includes providing access to the static web application, and code associated with the static web application, to a web crawler.
  - 15. The server of claim 10, wherein validating assurance characteristics of the static web application by the verification module includes verifying an object of the static web application does not include an object identified as at least one of a malware, a virus, and a Trojan.
  - 16. The server of claim 10, wherein validating assurance characteristics of the static web application by the verification module includes verifying a trustworthiness ranking of a developer of the static web application.
  - 17. The server of claim 10, wherein updating the static web application includes replacing objects of the static web application with a revalidated entire application.

18. A non-transitory computer-readable storage medium having stored thereon computer executable program code which, when executed on a computer system, causes the computer system to perform steps comprising:
- receiving a static web application at a trusted server;
  
  validating assurance characteristics of the static web application; and
  
  upon successful validation of the static web application, providing access to the static web application via a uniform resource locator (URL) that identifies the static web application at a trusted server location within a public Internet and that can be used to navigate to the static web application from a browser running on a client device, the browser having a first set of permissions to utilize local resources of the client device, whereinthe static web application includes at least one object that is stored on the trusted server and served to the client device via the URL,only the at least one object is granted a second set of permissions including at least one permission additional to the first set of permissions that is not included in the first set of permissions for the at least one object to utilize local resources of the client device during execution of the static web application by the browser when the static web application is executed on the browser running on the client device, andupon receiving a change to an object of the static web application, the validating of the assurance characteristics of the static web application, as a whole, is performed before the change to the object is made accessible via the URL.
- View Dependent Claims (19, 20)
- - 19. The non-transitory computer-readable storage medium of claim 18, wherein the static web application is granted the at least one permission based on a prior verification and vetting process based on at least one permission that the web application seeks to declare.
  - 20. The non-transitory computer-readable storage medium of claim 18, wherein the static web application contains all of the resources necessary to execute the application on the client computing device and wherein code needed to execute the application by the client computing device is not dynamically generated.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Google LLC (Alphabet Inc.)
Original Assignee
Google LLC (Alphabet Inc.)
Inventors
Kay, Erik
Primary Examiner(s)
Kim, Tae K

Application Number

US14/522,897
Publication Number

US 20150180875A1
Time in Patent Office

1,453 Days
Field of Search
US Class Current
CPC Class Codes

G06F 16/9566   URL specific, e.g. using al...

G06F 21/128   involving web programs, i.e...

G06F 21/56   Computer malware detection ...

G06F 21/629   to features or functions of...

H04L 63/10   for controlling access to d...

H04L 63/102   Entity profiles

H04L 63/123   received data contents, e.g...

H04L 63/1441   Countermeasures against mal...

H04L 63/145   the attack involving the pr...

H04L 67/02   based on web technology, e....

H04W 12/08   Access security

H04W 12/12   Detection or prevention of ...

H04W 12/128   Anti-malware arrangements, ...

Privileged static hosted web applications

First Claim

2 Assignments

0 Petitions

Accused Products

Abstract

11 Citations

20 Claims

Specification

Solutions

Use Cases

Quick Links

Privileged static hosted web applications

First Claim

2 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

11 Citations

20 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links