Safe browser plugins using native code modules
First Claim
Patent Images
1. A method for facilitating execution of a plugin for a web browser, comprising:
- providing a first plugin interface bridge between a first native code module which implements a first plugin and the web browser to enable communication between the first native code module and the web browser, wherein the first plugin is installed on a computer system;
executing the first native code module in a first secure runtime environment such that the first secure runtime environment isolates the first native code module from data and resources on the computer system;
executing a second native code module which implements a second plugin in a second secure runtime environment; and
using the first plugin interface bridge to enable communication between the first native code module and the second native code module.
2 Assignments
0 Petitions
Accused Products
Abstract
Some embodiments provide a system that executes plugin for a web browser. During operation, the system obtains the plugin as a native code module and executes the native code module in a secure runtime environment. Next, the system enables communication between the native code module and the web browser by providing an interface bridge between the native code module and the web browser.
34 Citations
27 Claims
-
1. A method for facilitating execution of a plugin for a web browser, comprising:
-
providing a first plugin interface bridge between a first native code module which implements a first plugin and the web browser to enable communication between the first native code module and the web browser, wherein the first plugin is installed on a computer system; executing the first native code module in a first secure runtime environment such that the first secure runtime environment isolates the first native code module from data and resources on the computer system; executing a second native code module which implements a second plugin in a second secure runtime environment; and using the first plugin interface bridge to enable communication between the first native code module and the second native code module. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9)
-
-
10. A system for executing a plugin for a web browser, comprising:
-
a processor; a memory coupled to the processor; a first secure runtime environment, implemented on the processor, that executes a first native code module which implements a first plugin such that the first secure runtime environment isolates the first native code module from data and resources on a computer system, wherein the first plugin is installed on the computer system; a first plugin interface bridge between the first native code module and the web browser, wherein the first plugin interface bridge enables communication between the first native code module and the web browser; and a second secure runtime environment that executes a second native code module which implements a second plugin in the second secure runtime environment, wherein the first plugin interface bridge enables communication between the first native code module and the second native code module. - View Dependent Claims (11, 12, 13, 14, 15, 16, 17, 18)
-
-
19. A non-transitory computer-readable storage medium storing instructions that when executed by a computer cause the computer to perform a method for facilitating execution of a plugin for a web browser, the method comprising:
-
providing a first plugin interface bridge between a first native code module which implements a first plugin and the web browser to enable communication between the first native code module and the web browser, wherein the first plugin is installed on a computer system; executing the first native code module in a first secure runtime environment such that the first secure runtime environment isolates the first native code module from data and resources on the computer system; executing a second native code module which implements a second plugin in a second secure runtime environment; and using the first plugin interface bridge to enable communication between the first native code module and the second native code module. - View Dependent Claims (20, 21, 22, 23, 24, 25, 26, 27)
-
Specification