Facilitating encrypted persistent storage in browsers
First Claim
Patent Images
1. A computing device comprising:
- a memory; and
a processor configured to;
during a first browser session of a web browser situated at the computing device, obtain a first cryptographic key, the first browser session being associated with a session identifier (ID);
during the first browser session of the web browser, obtain session data;
apply the first cryptographic key to the session data to generate encrypted session data;
store the encrypted session data in the memory;
during a second browser session of the web browser, transmit a cryptographic key request to a server, the second browser session being associated with the session ID;
responsive to the cryptographic key request, receive a second cryptographic key from the server;
retrieve the encrypted session data from the memory; and
decrypt the encrypted session data using the second cryptographic key.
1 Assignment
0 Petitions
Accused Products
Abstract
Disclosed are some implementations of systems, apparatus, methods and computer program products for encrypting and securely storing session data during a browser session using a session-based cryptographic key. The session data may be decrypted during the browser session or other browser sessions using the session-based cryptographic key or other backwards compatible session-based cryptographic keys. In addition, session-based cryptographic keys may be shared among browser sessions to enable encrypted session data to be decrypted across page refreshes and browser tabs.
200 Citations
20 Claims
-
1. A computing device comprising:
-
a memory; and a processor configured to; during a first browser session of a web browser situated at the computing device, obtain a first cryptographic key, the first browser session being associated with a session identifier (ID); during the first browser session of the web browser, obtain session data; apply the first cryptographic key to the session data to generate encrypted session data; store the encrypted session data in the memory; during a second browser session of the web browser, transmit a cryptographic key request to a server, the second browser session being associated with the session ID; responsive to the cryptographic key request, receive a second cryptographic key from the server; retrieve the encrypted session data from the memory; and decrypt the encrypted session data using the second cryptographic key. - View Dependent Claims (2, 3, 4, 5, 6, 7)
-
-
8. A computer program product comprising one or more non-transitory computer-readable media having computer program instructions stored therein, the computer program instructions capable of being executed by one or more processors, computer program instructions configurable to cause:
-
during a first browser session of a web browser situated at a computing device, obtaining a first cryptographic key, the first browser session being associated with a session identifier (ID); during the first browser session of the web browser, obtaining session data; applying the first cryptographic key to the session data to generate encrypted session data; storing the encrypted session data in a memory of the computing device; during a second browser session of the web browser, transmitting a cryptographic key request to a server, the second browser session being associated with the session ID; responsive to the cryptographic key request, receiving a second cryptographic key from the server; retrieving the encrypted session data from the memory; and decrypting the encrypted session data using the second cryptographic key. - View Dependent Claims (9, 10, 11, 12, 13, 14)
-
-
15. A method, comprising:
-
during a first browser session of a web browser situated at a computing device, obtaining a first cryptographic key, the first browser session being associated with a session identifier (ID); during the first browser session of the web browser, obtaining session data; applying the first cryptographic key to the session data to generate encrypted session data; storing the encrypted session data in a memory of the computing device; during a second browser session of the web browser, transmitting a cryptographic key request to a server, the second browser session being associated with the session ID; responsive to the cryptographic key request, receiving a second cryptographic key from the server; retrieving the encrypted session data from the memory; and decrypting the encrypted session data using the second cryptographic key. - View Dependent Claims (16, 17, 18, 19, 20)
-
Specification