System and Methods for Providing Granular Security for Locally Running Scripted Environments and Web Applications
First Claim
1. A computing device comprising:
- an application runtime environment for receiving an individual function call from a browser based application running locally on the computing device and for checking the individual function call against a signed list of allowed function calls to restrict access to protected native functions and data of the computing device.
10 Assignments
0 Petitions
Accused Products
Abstract
Various embodiments are described for an application runtime environment that provides secure safe access to local resources from web based applications when applications are locally hosted or cached or when a safe broker is needed to ensure that a trusted program is given access to specific functionality. The application runtime environment allows enhanced scripting interfaces and locally running web service interfaces to provide individual function level security controls which restrict access to only those applications which are signed. The application runtime environment provides finer granularity and control at the function level by allowing scripted runtime based applications to call local functions in a signed manner with function call level control. Other embodiments are described and claimed.
104 Citations
30 Claims
-
1. A computing device comprising:
an application runtime environment for receiving an individual function call from a browser based application running locally on the computing device and for checking the individual function call against a signed list of allowed function calls to restrict access to protected native functions and data of the computing device. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12)
-
13. A method comprising:
-
receiving an individual function call from a browser based application running locally on a computing device; and checking the individual function call against a signed list of allowed function calls to restrict access to protected native functions and data of the computing device. - View Dependent Claims (14, 15, 16)
-
-
17. A method for delegating native function calls from an application runtime environment to an operating system in real-time comprising:
-
sending an application script code to the operating system; and receiving permission from the operating system to execute one or more native function calls based on the application script code. - View Dependent Claims (18, 19, 20, 21, 22)
-
-
23. A method for serving multiple web applications comprising:
-
running multiple web applications locally on a single computing device; and serving the multiple web applications simultaneously using different address and port combinations. - View Dependent Claims (24, 25, 28, 29, 30)
-
-
26. The method of clam 23, comprising:
-
serving a first application on a first address and port combination; and redirecting the first application to a second port address combination. - View Dependent Claims (27)
-
Specification