Secure data container for web applications
First Claim
Patent Images
1. An apparatus comprising:
- an operating system-independent and browser-independent data container including a web application interface that obtains web content and detects an attempt by the web content to access a local data store due to at least a portion of the web content being written in one or more of a runtime or a just in time (JIT) environment language;
an enforcement module in the data container to determine whether to permit the attempt based on a context-based security policy for the identified web content wherein the enforcement module is to obtain the context-based security policy from one or more of a user profile, a multi-user data source and a cloud service and wherein the context-based security policy is to identify one or more of a type of content, a content source and a browsing sequence; and
a user interface in the data container to generate a first user prompt for authorization to implement an action associated with the context-based security policy, wherein the first user prompt is to include one or more multi-user statistics.
1 Assignment
0 Petitions
Accused Products
Abstract
Systems and methods may provide for identifying web content and detecting an attempt by the web content to access a local data store. Additionally, a determination may be made as to whether to permit the attempt based on a context-based security policy. In one example, the context-based security policy is obtained from one or more of a user profile, a multi-user data source and a cloud service.
-
Citations
12 Claims
-
1. An apparatus comprising:
-
an operating system-independent and browser-independent data container including a web application interface that obtains web content and detects an attempt by the web content to access a local data store due to at least a portion of the web content being written in one or more of a runtime or a just in time (JIT) environment language; an enforcement module in the data container to determine whether to permit the attempt based on a context-based security policy for the identified web content wherein the enforcement module is to obtain the context-based security policy from one or more of a user profile, a multi-user data source and a cloud service and wherein the context-based security policy is to identify one or more of a type of content, a content source and a browsing sequence; and a user interface in the data container to generate a first user prompt for authorization to implement an action associated with the context-based security policy, wherein the first user prompt is to include one or more multi-user statistics. - View Dependent Claims (2, 3, 4)
-
-
5. At least one non-transitory computer readable storage medium comprising a set of instructions which, if executed by a processor, cause a computing device to:
-
use an operating system-independent and browser-independent data container including a web application interface to identify web content; detect an attempt by the web content to access a local data store positioned outside the data container; determine whether to permit the attempt by the web content based on a context-based security policy in an enforcement module in the data container, the context-based security policy being obtainable from one or more of a user profile, a multi-user data source and a cloud service and wherein the context-based security policy is to identify one or more of a type of content, a content source and a browsing sequence; and generate a first user prompt for authorization to implement an action associated with the context-based security policy, wherein the first user prompt is to include one or more multi-user statistics. - View Dependent Claims (6, 7)
-
-
8. A method comprising:
-
using an operating system-independent and browser-independent data container including a web application interface to identify web content; detecting an attempt by the web content to access a local data store positioned outside the data container; and determining whether to permit the attempt by the web content based on a context-based security policy in an enforcement module in the data container; and generating a first user prompt for authorization to implement an action associated with the context-based security policy, wherein the first user prompt includes one or more multi-user statistics. - View Dependent Claims (9, 10, 11, 12)
-
Specification