Client device systems and methods for providing secure access to application services and associated client data hosted by an internet coupled platform
First Claim
Patent Images
1. A network system, comprising:
- a plurality of client devices coupled to a services hosting platform via a network;
an application invocation framework stored in a computer readable memory and executable by at least one processor of the services hosting platform, the application invocation framework comprising at least one entry point to a sharable instance of an application service, the application service hosted by the services hosting platform for use by the plurality of client devices, wherein the application invocation framework is used to augment the sharable instance of the application service for each of the plurality of client devices via the selective invocation of at least one security platform service to secure content stored by the services hosting platform on behalf of each of the plurality of client devices, wherein the sharable instance of the application service and the at least one security platform service form a services extension pipeline in which the application invocation framework selectively invokes the at least one security platform service to augment the sharable instance of the application service based on a security requirement of each respective one of the plurality of client devices accessing the sharable instance of the application service, and wherein the at least one security platform service secures the content for each of the plurality of client devices in accordance with respective policies and security credentials corresponding to each respective one of the plurality of client devices;
wherein the application invocation framework further include a client side agent that comprises a lockbox service for storing encryption keys retrieved from a key management service of the application services framework for the particular client device;
wherein a key stored by the lockbox service is used by a plurality of different sharable services invoked by at least one of the plurality of client devices.
9 Assignments
0 Petitions
Accused Products
Abstract
An extensible servicing hosting platform is provided that supports the design, build and concurrent deployment of multiple web accessible services on a services hosting platform. The services hosting platform comprises a services hosting framework capable of hosting multiple service applications, each of which may be shared by multiple tenants that each customize their use of a particular application service by extending the application service to exploit run time platform services within a service execution pipeline. The services hosting framework may easily be leveraged by applications to decrease the time associated with developing, deploying and maintaining high quality services in a cost effective manner.
68 Citations
12 Claims
-
1. A network system, comprising:
-
a plurality of client devices coupled to a services hosting platform via a network; an application invocation framework stored in a computer readable memory and executable by at least one processor of the services hosting platform, the application invocation framework comprising at least one entry point to a sharable instance of an application service, the application service hosted by the services hosting platform for use by the plurality of client devices, wherein the application invocation framework is used to augment the sharable instance of the application service for each of the plurality of client devices via the selective invocation of at least one security platform service to secure content stored by the services hosting platform on behalf of each of the plurality of client devices, wherein the sharable instance of the application service and the at least one security platform service form a services extension pipeline in which the application invocation framework selectively invokes the at least one security platform service to augment the sharable instance of the application service based on a security requirement of each respective one of the plurality of client devices accessing the sharable instance of the application service, and wherein the at least one security platform service secures the content for each of the plurality of client devices in accordance with respective policies and security credentials corresponding to each respective one of the plurality of client devices;
wherein the application invocation framework further include a client side agent that comprises a lockbox service for storing encryption keys retrieved from a key management service of the application services framework for the particular client device;
wherein a key stored by the lockbox service is used by a plurality of different sharable services invoked by at least one of the plurality of client devices. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12)
-
Specification
-
- Resources
Litigation Campaign Assessment
Thank you for your request. You will receive a custom alert email when the Litigation Campaign Assessment is available.
×
-
Current AssigneeEmc IP Holding Company LLC (Dell Technologies Inc.)
-
Original AssigneeEMC Corporation (Dell Technologies Inc.)
-
InventorsAhmed, Zahid N., Perkett, Richard, Saiyed, Junaid
-
Primary Examiner(s)Truong, Lan-Dai T
-
Application NumberUS11/962,687Time in Patent Office2,314 DaysField of Search709/201, 709/202, 709/203, 709/217, 709/218US Class Current709/203CPC Class CodesG06F 21/335 for accessing specific reso...G06F 21/602 Providing cryptographic fac...G06F 21/629 to features or functions of...G06F 2221/2141 Access rights, e.g. capabil...G06F 9/468 Specific access rights for ...H04L 63/0807 using tickets, e.g. Kerbero...
