Disposable Browsers and Authentication Techniques for a Secure Online User Environment

US 20190319936A1
Filed: 06/24/2019
Published: 10/17/2019
Est. Priority Date: 03/30/2010
Status: Active Grant

First Claim

Patent Images

1. A secure system for enabling access to web content using disposable browsers, the secure system comprising:

a memory comprising computer instructions; and

an application server comprising a hardware processor associated with a computing device, wherein the hardware processor is operable to;

establish a secure environment for operating a disposable browser session;

initiate the disposable browser session within the secure environment, wherein a disposable browser associated with the disposable browser session is displayable on a client device executing a thin client process and located externally to the secure system;

configure the disposable browser session with session-specific data associated with the disposable browser session;

receive first data from the client device, the first data being associated with a web content request initiated on the disposable browser displayed on the client device;

communicate with a remote server associated with the web content request;

execute a web command associated with the web content request;

transmit, to the client device, second data associated with the web command or the web content request, wherein the second data comprises image data;

receive, from the client device, a user interaction with the image data displayed on the client device;

transmit, to the remote server, third data associated with the user interaction with the image data displayed on the client device; and

dispose, at an end of the disposable browser session, the session-specific data associated with the disposable browser session,wherein identification information associated with the client device is not transmitted directly from the client device to the remote server.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

Disclosed herein are systems and methods that allow for secure access to websites and web-based applications and other resources available through the browser. Also described are systems and methods for secure use and retention of user credentials, as well as methods for dynamic authentication of users and integrity checking of service providers in online environments. Thus, described in the present specification are systems and methods for constructing and destroying private, secure, browsing environments (a secure disposable browser), insulating the user from the threats associated with being online for the purposes of providing secure, policy-based interaction with online services.

1 Citation

20 Claims

1. A secure system for enabling access to web content using disposable browsers, the secure system comprising:
- a memory comprising computer instructions; and
  
  an application server comprising a hardware processor associated with a computing device, wherein the hardware processor is operable to;
  
  establish a secure environment for operating a disposable browser session;
  
  initiate the disposable browser session within the secure environment, wherein a disposable browser associated with the disposable browser session is displayable on a client device executing a thin client process and located externally to the secure system;
  
  configure the disposable browser session with session-specific data associated with the disposable browser session;
  
  receive first data from the client device, the first data being associated with a web content request initiated on the disposable browser displayed on the client device;
  
  communicate with a remote server associated with the web content request;
  
  execute a web command associated with the web content request;
  
  transmit, to the client device, second data associated with the web command or the web content request, wherein the second data comprises image data;
  
  receive, from the client device, a user interaction with the image data displayed on the client device;
  
  transmit, to the remote server, third data associated with the user interaction with the image data displayed on the client device; and
  
  dispose, at an end of the disposable browser session, the session-specific data associated with the disposable browser session,wherein identification information associated with the client device is not transmitted directly from the client device to the remote server.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15)
- - 2. The secure system of claim 1, wherein the disposable browser session is initiated by the client device or by the secure system.
  - 3. The secure system of claim 1, wherein the disposable browser session is ended by the client device or by the secure system.
  - 4. The secure system of claim 1, wherein the session-specific data is associated with the disposable browser.
  - 5. The secure system of claim 1, wherein the session-specific data is associated with a user preference.
  - 6. The secure system of claim 1, wherein the receiving the first data from the client device occurs before the establishing the secure environment.
  - 7. The secure system of claim 1, wherein the receiving the first data from the client device occurs after the establishing the secure environment.
  - 8. The secure system of claim 1, wherein the receiving the first data from the client device occurs before the initiating the disposable browser session.
  - 9. The secure system of claim 1, wherein the receiving the first data from the client device occurs after the initiating the disposable browser session.
  - 10. The secure system of claim 1, wherein the web command is received from the remote server.
  - 11. The secure system of claim 1, wherein the secure environment is disposed of at the end of the disposable browser session.
  - 12. The secure system of claim 1, wherein the computer instructions are associated with performing a user authentication operation for a user of the client device, wherein the user authentication operation is associated with enabling the user of the client device to access an application or a page associated with the web content request.
  - 13. The secure system of claim 1, wherein the secure system is operable to remotely control the disposable browser.
  - 14. The secure system of claim 1, wherein the disposable browser session is insulated from other disposable browser sessions.
  - 15. The secure system of claim 1, wherein the computer instructions are associated with performing a user authentication operation for the client device or for a user of the client device.

16. A method for enabling access to web content using disposable browsers, the method comprising:
- establishing, using one or more computing device processors, a secure environment for operating a disposable browser session;
  
  initiating, using the one or more computing device processors, the disposable browser session within the secure environment, wherein a disposable browser associated with the disposable browser session is displayable on a client device executing a thin client process and located externally to the secure system;
  
  configuring, using the one or more computing device processors, the disposable browser session with session-specific data associated with the disposable browser session;
  
  receiving, using the one or more computing device processors, first data from the client device, the first data being associated with a web content request initiated on the disposable browser;
  
  communicating, using the one or more computing device processors, with a remote server associated with the web content request;
  
  executing, using the one or more computing device processors, a web command associated with the web content request;
  
  transmitting, to the client device, second data associated with the web command or the web content request, wherein the second data comprises image data;
  
  receiving, from the client device, a user interaction with the image data displayed on the client device;
  
  transmitting, to the remote server, third data associated with the user interaction with the image data displayed on the client device; and
  
  disposing, using the one or more computing device processors, at an end of the disposable browser session, the session-specific data associated with the disposable browser session,wherein identification information associated with the client device or a user of the client device is not transmitted directly from the client device to the remote server.
- View Dependent Claims (17, 18)
- - 17. The method of claim 16, wherein the disposable browser session is initiated or ended by the client device or by the secure system.
  - 18. The method of claim 16, further comprising authenticating the client device or the user of the client device to an application or a page associated with the web content request.

19. A secure system for enabling access to web content using disposable browsers, the secure system comprising:
- means for establishing a secure environment for operating a disposable browser session;
  
  means for initiating the disposable browser session within the secure environment, wherein a disposable browser associated with the disposable browser session is displayable on a client device located externally to the secure system;
  
  means for configuring the disposable browser session with session-specific data associated with the disposable browser session;
  
  means for receiving first data from the client device, the first data being associated with a web content request initiated on the disposable browser displayed on the client device;
  
  means for communicating with a remote server associated with the web content request;
  
  means for executing a web command associated with the web content request;
  
  means for transmitting, to the client device, second data associated with the web command or the web content request, wherein the second data comprises image data;
  
  means for receiving, from the client device, a user interaction with the image data displayed on the client device;
  
  means for transmitting, to the remote server, third data associated with the user interaction with the image data displayed on the client device; and
  
  means for disposing, at an end of the disposable browser session, the session-specific data associated with the disposable browser session,wherein identification information associated with the client device is not transmitted directly from the client device to the remote server.
- View Dependent Claims (20)
- - 20. The secure system of claim 19, wherein authentication information associated with the client device or a user of the client device is not transmitted directly from the client device to the remote server.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Authentic8, Inc.
Original Assignee
Authentic8, Inc.
Inventors
Rajagopal, Ramesh, Tosh, James K., Cox, Fredric L., Nguyen, Perry F., Champion, Jason T.

Granted Patent

US 10,819,693 B2
Time in Patent Office

Days
Field of Search
US Class Current
CPC Class Codes

G06F 21/31   User authentication

G06F 21/313   using a call-back technique...

G06F 21/35   communicating wirelessly

G06F 21/36   by graphic or iconic repres...

G06F 21/43   wireless channels

G06F 21/53   by executing in a restricte...

G06F 2221/2111   Location-sensitive, e.g. ge...

H04L 63/08   for authentication of entit...

H04L 63/102   Entity profiles

H04L 63/1441   Countermeasures against mal...

H04L 63/168   above the transport layer

H04L 63/20   for managing network securi...

H04L 67/01   Protocols

Disposable Browsers and Authentication Techniques for a Secure Online User Environment

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

1 Citation

20 Claims

Specification

Solutions

Use Cases

Quick Links

Disposable Browsers and Authentication Techniques for a Secure Online User Environment

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

1 Citation

20 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links