System and method for securing a network session
First Claim
Patent Images
1. A system comprising:
- an end-user device configured to receive a security policy from a website during a website session with the website, the security policy being based on security demands of a particular section of the website associated with an increased data security risk; and
a security component on the end-user device configured to use the security policy to activate a security mechanism to temporarily protect the end-user device while a user visits the particular section of the website from operations of malicious code that may be on the end-user device, the security component configured to activate the security mechanism at an activation point corresponding to the user visiting the particular section of the website associated with the increased data security risk, the security component further configured to deactivate the security mechanism at a deactivation point corresponding to the user navigating away from the particular section of the website associated with the increased data security risk.
1 Assignment
0 Petitions
Accused Products
Abstract
A system comprises an end-user device including a browser and a security component capable of executing a security policy, the security policy to be downloaded from a website; and a website including a security policy downloadable to the security component.
-
Citations
23 Claims
-
1. A system comprising:
-
an end-user device configured to receive a security policy from a website during a website session with the website, the security policy being based on security demands of a particular section of the website associated with an increased data security risk; and a security component on the end-user device configured to use the security policy to activate a security mechanism to temporarily protect the end-user device while a user visits the particular section of the website from operations of malicious code that may be on the end-user device, the security component configured to activate the security mechanism at an activation point corresponding to the user visiting the particular section of the website associated with the increased data security risk, the security component further configured to deactivate the security mechanism at a deactivation point corresponding to the user navigating away from the particular section of the website associated with the increased data security risk. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11)
-
-
12. A method for execution on an end-user device comprising a browser and a security component, the end-user device possibly including malicious code capable of data theft, the method comprising:
-
accessing, by the browser, a website during a website session; receiving, by the end-user device, a security policy during the website session in response to accessing the website, the security policy being based on security demands of a particular section of the website associated with an increased data security risk; activating, by the security component, a security mechanism using the security policy to temporarily protect the end-user device while a user visits the particular section of the website from operations of the malicious code capable of data theft that may be on the end-user device, the security component configured to activate the security mechanism at an activation point corresponding to the user visiting the particular section of the website associated with the increased data security risk; and deactivating, by the security component, the security mechanism at a deactivation point corresponding to the user navigating away from the particular section of the website associated with the increased data security risk. - View Dependent Claims (13, 14, 15, 16, 17, 18, 19, 20, 21, 22)
-
-
23. A system comprising:
-
means for accessing a website during a website session by an end-user device, the end-user device possibly including malicious code capable of data theft; means for receiving, at the end-user device, a security policy during the website session in response to accessing the website, the security policy being based on security demands of a particular section of the website associated with an increased data security risk; means for activating a security mechanism on the end-user device using the security policy to temporarily protect the end-user device while a user visits the particular section of the website from operations of the malicious code that may be on the end-user device, the security component configured to activate the security mechanism at an activation point corresponding to the user visiting the particular section of the website associated with the increased data security risk; and means for deactivating the security mechanism at a deactivation point corresponding to the user navigating away from the particular section of the website associated with the increased data security risk.
-
Specification