Security for collaboration services
First Claim
1. A method of using a publicly accessible collaboration service to share organization-confidential information securely between authorized members of the organization, the method comprising:
- receiving a data payload on a computing device as input for posting to a publicly-accessible, remote collaboration service;
executing instructions on at least one processor of the computing device to send the data payload to a private cryptographic service;
receiving the data payload in an encrypted form from the private cryptographic service;
sending the data payload in the encrypted form to the publicly-accessible collaboration service in a format as specified by a provider of the publicly-accessible collaboration service, the encrypted data payload to be stored by the publicly-accessible collaboration service;
capturing data received by an application performing the method;
determining the source of the received data;
when the source of the received data is not the publicly-accessible collaboration service, returning the received data to the application; and
when the source of the received data is the publicly-accessible collaboration service;
determining if the received data includes an encrypted data payload;
when the received data does not include an encrypted data payload, returning the received data to the application; and
when the received data includes an encrypted payload;
sending a copy of the encrypted data payload to the private cryptographic service to be decrypted;
replacing the encrypted data payload within the received data with a decrypted data payload received from the private cryptographic service; and
returning the received data, including the decrypted data payload, to the application performing the method;
wherein only the private cryptographic service can decrypt the encrypted data payload; and
wherein the private cryptographic service is only accessible to authorized members of the organization.
2 Assignments
0 Petitions
Accused Products
Abstract
Various embodiments, in the form of at least one of systems, methods, and software, are provided that include security solutions for use of collaboration services. Some embodiments include encrypting data to be sent to and stored by a collaboration service. These and other embodiments include capturing, within a computer application used to post data to a collaboration service, data to be sent to the collaboration service, encrypting the captured data, and returning the data in an encrypted form to the computer application for posting to the collaboration service.
-
Citations
18 Claims
-
1. A method of using a publicly accessible collaboration service to share organization-confidential information securely between authorized members of the organization, the method comprising:
-
receiving a data payload on a computing device as input for posting to a publicly-accessible, remote collaboration service; executing instructions on at least one processor of the computing device to send the data payload to a private cryptographic service; receiving the data payload in an encrypted form from the private cryptographic service; sending the data payload in the encrypted form to the publicly-accessible collaboration service in a format as specified by a provider of the publicly-accessible collaboration service, the encrypted data payload to be stored by the publicly-accessible collaboration service; capturing data received by an application performing the method; determining the source of the received data; when the source of the received data is not the publicly-accessible collaboration service, returning the received data to the application; and when the source of the received data is the publicly-accessible collaboration service; determining if the received data includes an encrypted data payload; when the received data does not include an encrypted data payload, returning the received data to the application; and when the received data includes an encrypted payload; sending a copy of the encrypted data payload to the private cryptographic service to be decrypted; replacing the encrypted data payload within the received data with a decrypted data payload received from the private cryptographic service; and returning the received data, including the decrypted data payload, to the application performing the method; wherein only the private cryptographic service can decrypt the encrypted data payload; and wherein the private cryptographic service is only accessible to authorized members of the organization. - View Dependent Claims (2, 3, 4, 5, 6)
-
-
7. A system comprising:
-
at least one processor, at least one memory device, a network interface device, a display device, and at least one input device; an application stored in the at least one memory device and executable on the at least one processor to; communicate via the network interface device with a publicly-accessible, remote collaboration service; receive data from the collaboration service for display on the display device; receive input, via the at least one input device, for posting to the collaboration service; and an application plug-in stored in the at least one memory device and executable by the at least one processor to augment the functionality of the application by; capturing, from the application, received input prior to posting to the collaboration service; copying a data payload of the captured input; sending the data payload to a private cryptographic service and, in response, receiving the data payload in an encrypted form; replacing the data payload of the captured input with the data payload in the encrypted form; returning the received input, including the data payload in the encrypted form, to the application for posting to the collaboration service capturing data received by the application from the network interface device; determining the source of the received data; when the source of the received data is not the publicly-accessible collaboration service, returning the received data to the application; and when the source of the received data is the publicly-accessible collaboration service; determining if the received data includes an encrypted data payload; when the received data does not include an encrypted data payload, returning the received data to the application; and when the received data includes an encrypted payload; sending a copy of the encrypted data payload to the encryption service to be decrypted; replacing the encrypted data payload within the received data with a decrypted data payload received from the encryption service; and returning the received data the decrypted data payload, to the application. - View Dependent Claims (8, 9, 10, 11, 12, 13)
-
-
14. A non-transitory computer-readable storage medium, with instructions stored thereon, which when executed by a processor of a computer, cause the computer to:
-
capture data received by an application via a network interface device; determine the source of the received data; when the source of the received data is not publicly-accessible collaboration service, return the received data to the application; and when the source of the received data is the publicly-accessible collaboration service; determine if the received data includes an encrypted data payload; when the received data does not include an encrypted data payload, return the received data to the application; and when the received data includes an encrypted payload; send a copy of the encrypted data payload to an encryption service to be decrypted; replace the encrypted data payload within the received data with a decrypted data payload received from the encryption service; and return the received data, including the decrypted data payload, to the application. - View Dependent Claims (15, 16, 17, 18)
-
Specification