Sharing a process in a web client

US 10,534,817 B2
Filed: 09/02/2016
Issued: 01/14/2020
Est. Priority Date: 01/03/2012
Status: Active Grant

First Claim

Patent Images

1. A machine-implemented method, comprising:

determining whether a session associated with a first user interface is also associated with a second user interface, wherein the first user interface and the second user interface are different and provided by a same instance of a client application;

determining a security mode of the first user interface and a security mode of the second user interface, wherein the security modes of the first user interface and the second user interface indicate one or more operations that are allowed to be performed by the first user interface and the second user interface, respectively, on a computing device running the client application;

determining whether the security mode of the first user interface matches the security mode of the second user interface;

in response to the session being determined to be associated with the first user interface and the second user interface and the security mode of the first user interface being determined to match the security mode of the second user interface, sharing a first process between the first user interface and the second user interface to access a shared resource for the first user interface or the second user interface, wherein the shared resource is a local data store and the first process performs one or more operations on the local data store; and

in response to the security mode of the first user interface being determined not to match the security mode of the second user interface, instantiating a second process for the second user interface to access a second resource different from the shared resource without access to the shared resource.

View all claims

2 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

Configurations for sharing an instance of an executing process for a plug-in based on a session and a cookie data store associated with the session are disclosed. A cookie data store can be associated with a tab running in a corresponding security mode. By way of example, instead of initiating a new process for the plug-in in a new tab, the subject technology can first determine whether a previous tab is running an instance of a plug-in process. If this is the case, the subject technology can then determine whether the previous tab is running in the same security mode (e.g., protected or unprotected) as the new tab. The subject technology then shares the existing plug-in process in the previous tab without instantiating a new plug-in process in the new tab.

34 Citations

19 Claims

1. A machine-implemented method, comprising:
- determining whether a session associated with a first user interface is also associated with a second user interface, wherein the first user interface and the second user interface are different and provided by a same instance of a client application;
  
  determining a security mode of the first user interface and a security mode of the second user interface, wherein the security modes of the first user interface and the second user interface indicate one or more operations that are allowed to be performed by the first user interface and the second user interface, respectively, on a computing device running the client application;
  
  determining whether the security mode of the first user interface matches the security mode of the second user interface;
  
  in response to the session being determined to be associated with the first user interface and the second user interface and the security mode of the first user interface being determined to match the security mode of the second user interface, sharing a first process between the first user interface and the second user interface to access a shared resource for the first user interface or the second user interface, wherein the shared resource is a local data store and the first process performs one or more operations on the local data store; and
  
  in response to the security mode of the first user interface being determined not to match the security mode of the second user interface, instantiating a second process for the second user interface to access a second resource different from the shared resource without access to the shared resource.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9)
- - 2. The machine-implemented method of claim 1, wherein the security mode indicates a level of trustworthiness of the first user interface.
  - 3. The machine-implemented method of claim 1, wherein the first process is a plug-in process that provides additional functionality to the client application, the machine-implemented method further comprising:
    - determining, in response to the security mode of the first user interface matching the security mode of the second user interface, that the second user interface includes an instance of the plug-in process; and
      
      utilizing the instance of the plug-in process to access the shared resource for the first user interface based on the second user interface being determined to include the instance of the plug-in process.
  - 4. The machine-implemented method of claim 3, wherein the client application is a web client, wherein the instance of the plug-in process is an instance of an application plug-in for the web client, and wherein utilizing the instance of the plug-in process comprises utilizing a wrapper for the instance of the plug-in process.
  - 5. The machine-implemented method of claim 4, wherein the first user interface performs one or more operations utilizing the wrapper for the instance of the plug-in process in the second user interface.
  - 6. The machine-implemented method of claim 1, wherein the client application is a web browser, and the first user interface is a first tab or window of the web browser and the second user interface is a second tab or window of the web browser.
  - 7. The machine-implemented method of claim 6, wherein the web browser utilizes a first cookie data store for respective tabs or windows that run in a protected security mode and a separate, second cookie data store for respective tabs or windows that run in an unprotected security mode, the first cookie data store and the second cookie data store each comprising one or more web cookies, and wherein the shared resource is one of the first cookie data store and the second cookie data store.
  - 8. The machine-implemented method of claim 1, wherein the wherein the local data store is a locally-stored cookie data store.
  - 9. The machine-implemented method of claim 6, wherein the first process is a plug-in process that provides additional functionality to the web browser, the method further comprising:
    - determining, in response to the security mode of the first tab matching the security mode of the second tab, that the second tab includes an instance of the plug-in process; and
      
      utilizing the instance of the plug-in process to access the shared resource for the first tab based on the second tab being determined to include the instance of the plug-in process.

10. A system, comprising:
- a non-transitory memory medium comprising instructions stored thereon; and
  
  one or more circuits for executing instructions for system operations,wherein the instructions, when executed, cause the circuits to perform operations comprising;
  
  determining whether a session associated with a first user interface is also associated with a second user interface, wherein the first user interface and the second user interface are different and provided by a same instance of a client application;
  
  determining a security mode of the first user interface and a security mode of the second user interface, wherein the security modes of the first user interface and the second user interface indicate one or more operations that are allowed to be performed by the first user interface and the second user interface, respectively, on a computing device running the client application;
  
  determining whether the security mode of the first user interface matches the security mode of the second user interface;
  
  in response to the session being determined to be associated with the first user interface and the second user interface and the security mode of the first user interface being determined to match the security mode of the second user interface, sharing a first process between the first user interface and the second user interface to access a shared resource for the first user interface or the second user interface, wherein the shared resource is a local data store and the first process performs one or more operations on the local data store; and
  
  in response to the security mode of the first user interface being determined not to match the security mode of the second user interface, instantiating a second process for the second user interface to access a second resource different from the shared resource without access to the shared resource.
- View Dependent Claims (11, 12, 13, 14, 15, 16, 17, 18)
- - 11. The system of claim 10, wherein the security mode indicates a level of trustworthiness of the first user interface.
  - 12. The system of claim 10, wherein the first process is a plug-in process that provides additional functionality to the client application, the operations further comprising:
    - determining, in response to the security mode of the first user interface matching the security mode of the second user interface, that the second user interface includes an instance of the plug-in process; and
      
      utilizing the instance of the plug-in process to access the shared resource for the first user interface based on the second user interface being determined to include the instance of the plug-in process.
  - 13. The system of claim 12, wherein the client application is a web client, wherein the instance of the plug-in process is an instance of an application plug-in for the web client, and wherein utilizing the instance of the plug-in process comprises utilizing a wrapper for the instance of the plug-in process.
  - 14. The system of claim 13, wherein the first user interface performs one or more operations utilizing the wrapper for the instance of the plug-in process in the second user interface.
  - 15. The system of claim 10, wherein the client application is a web browser, and the first user interface is a first tab or window of the web browser and the second user interface is a second tab or window of the web browser.
  - 16. The system of claim 15, wherein the web browser utilizes a first cookie data store for respective tabs or windows that run in a protected security mode and a separate, second cookie data store for respective tabs or windows that run in an unprotected security mode, the first cookie data store and the second cookie data store each comprising one or more web cookies, and wherein the shared resource is one of the first cookie data store and the second cookie data store.
  - 17. The system of claim 10, wherein the local data store is a locally-stored cookie data store.
  - 18. The system of claim 15, wherein the first process is a plug-in process that provides additional functionality to the web browser, the operations further comprising:
    - determining, in response to the security mode of the first tab matching the security mode of the second tab, that the second tab includes an instance of the plug-in process; and
      
      utilizing the instance of the plug-in process to access the shared resource for the first tab based on the second tab being determined to include the instance of the plug-in process.

19. A non-transitory machine-readable medium comprising instructions stored therein, which when executed by a machine, cause the machine to perform operations comprising:
- determining whether a session associated with a first user interface is also associated with a second user interface, wherein the first user interface and the second user interface are different and provided by a same instance of a client application;
  
  determining a security mode of the first user interface and a security mode of the second user interface, wherein the security modes of the first user interface and the second user interface indicate one or more operations that are allowed to be performed by the first user interface and the second user interface, respectively, on a computing device running the client application;
  
  determining whether the security mode of the first user interface matches the security mode of the second user interface;
  
  in response to the session being determined to be associated with the first user interface and the second user interface and the security mode of the first user interface being determined to match the security mode of the second user interface, sharing a first process between the first user interface and the second user interface to access a shared resource for the first user interface or the second user interface, wherein the shared resource is a local data store and the first process performs one or more operations on the local data store; and
  
  in response to the security mode of the first user interface being determined not to match the security mode of the second user interface, instantiating a second process for the second user interface to access a second resource different from the shared resource without access to the shared resource.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Google LLC (Alphabet Inc.)
Original Assignee
Google LLC (Alphabet Inc.)
Inventors
Lau, Cynthia W., Sigurdsson, Johann Tomas, Decoste, Marc-Andre
Primary Examiner(s)
Poltorak, Piotr

Application Number

US15/256,398
Publication Number

US 20170053028A1
Time in Patent Office

1,229 Days
Field of Search

None
US Class Current
CPC Class Codes

G06F 11/30   Monitoring

G06F 11/3003   Monitoring arrangements spe...

G06F 16/95   Retrieval from the web

G06F 16/951   Indexing; Web crawling tech...

G06F 16/954   Navigation, e.g. using cate...

G06F 21/53   by executing in a restricte...

G06F 21/62   Protecting access to data v...

G06F 2221/2119   Authenticating web pages, e...

G06F 3/0483   Interaction with page-struc...

H04L 63/102   Entity profiles

H04L 67/02   based on web technology, e....

Sharing a process in a web client

First Claim

2 Assignments

0 Petitions

Accused Products

Abstract

34 Citations

19 Claims

Specification

Solutions

Use Cases

Quick Links

Sharing a process in a web client

First Claim

2 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

34 Citations

19 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links