METHODS AND APPARATUS FOR PREVENTING CRIMEWARE ATTACKS
First Claim
1. A method in a server including a processor and memory, the method comprising:
- establishing in the processor a first communication session with a first electronic device;
receiving in the processor from the first electronic device a secure browsing request;
based upon information included in the secure browsing request, locating in the processor a third-party electronic device hosting on a network a third-party application that fulfills the secure browsing request;
establishing in the processor a second communication session with the third-party electronic device; and
establishing in the processor a third communication session between the first electronic device and the third-party electronic device wherein the third communication session enables data generated from the third party application to be received by the first electronic device.
1 Assignment
0 Petitions
Accused Products
Abstract
A central server configured to mediate communications including establishing secure online sessions between user-controlled devices and 3rd party devices, such as a 3rd party device hosting a financial site. The methods and apparatus used to instantiate and carry out the mediated communications can be designed to thwart crimeware. To enable communications between the user-controlled devices and the 3rd party devices, the central server can be configured to instantiate a first secure communication session between the central server and the user-controlled device and a second secure communication session between the central server and the 3rd party device. If desired, separate encryption keys can be used for the first communication session and the second communication session where only the central server possesses the encryption keys for both the first communication session and the second communication session. Optionally, after the communications are established between the devices, the server can withdraw from the communications.
82 Citations
22 Claims
-
1. A method in a server including a processor and memory, the method comprising:
-
establishing in the processor a first communication session with a first electronic device; receiving in the processor from the first electronic device a secure browsing request; based upon information included in the secure browsing request, locating in the processor a third-party electronic device hosting on a network a third-party application that fulfills the secure browsing request; establishing in the processor a second communication session with the third-party electronic device; and establishing in the processor a third communication session between the first electronic device and the third-party electronic device wherein the third communication session enables data generated from the third party application to be received by the first electronic device. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16, 17, 18, 19, 20, 21)
-
-
22. A computer readable storage medium including computer program code for execution by a processor to establish a secure online browsing session, said computer readable storage medium comprising:
-
computer code for establishing in the processor a first communication session with a first electronic device; computer code for receiving in the processor from the first electronic device a secure browsing request; computer code for, based upon information included in the secure browsing request, locating in the processor a third-party electronic device on a network hosting a third-party application that fulfills the secure browsing request; computer code for establishing in the processor a second communication session with the third-party electronic device; and computer code for establishing in the processor a third communication session between the first electronic device and the third-party electronic device wherein the third communication session enables data generated from the third party application to be received by the first electronic device.
-
Specification