Secure web container for a secure online user environment

US 9,246,904 B2
Filed: 11/03/2014
Issued: 01/26/2016
Est. Priority Date: 03/15/2013
Status: Active Grant

First Claim

Patent Images

1. A secure system providing an interaction with a user through a local client machine, the secure system for providing a secure application programming interface, the system comprising:

a microprocessor;

a non-transitory computer readable medium storing instructions that, when executed by the microprocessor, generate an application programming interface (API), wherein the API is operable to validate an API call received from a requesting party application of a requesting party application provider,andwherein the API is operable, in response to the API call, to invoke a secure web container in a private user area external to the local client machine such that a display is provided at the local client machine without receiving web code commands from a third-party online service provider'"'"'s site;

wherein the display comprises image representations of the requesting party application web content to a user of the requesting party application without transmitting web code commands to the local client machine;

andwherein the private user area is established and disposed of, thereby protecting user data from unauthorized access.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

Disclosed herein are systems and methods that allow for secure access to websites and web-based applications and other resources available through the browser. Also described are systems and methods for invocation of a secure web container which may display data representative of a requesting party'"'"'s application at a user'"'"'s machine. The secure web container is invoked upon receipt of an API call from the requesting party. Thus, described in the present specification are systems and methods for constructing and destroying private, secure, browsing environments (a secure disposable web container), insulating the user and requesting parties from the threats associated with being online for the purposes of providing secure, policy-based interaction with a requesting party'"'"'s online services.

27 Citations

View as Search Results

22 Claims

1. A secure system providing an interaction with a user through a local client machine, the secure system for providing a secure application programming interface, the system comprising:
- a microprocessor;
  
  a non-transitory computer readable medium storing instructions that, when executed by the microprocessor, generate an application programming interface (API), wherein the API is operable to validate an API call received from a requesting party application of a requesting party application provider,andwherein the API is operable, in response to the API call, to invoke a secure web container in a private user area external to the local client machine such that a display is provided at the local client machine without receiving web code commands from a third-party online service provider'"'"'s site;
  
  wherein the display comprises image representations of the requesting party application web content to a user of the requesting party application without transmitting web code commands to the local client machine;
  
  andwherein the private user area is established and disposed of, thereby protecting user data from unauthorized access.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11)
- - 2. The secure system of claim 1, wherein the secure web container is a disposable web browser.
  - 3. The secure system of claim 2, wherein the disposable web browser is provided to display within an existing browser window at the local client machine as an additional tab of the existing browser window at the local client machine.
  - 4. The secure system of claim 1, wherein the API call defines a policy record.
  - 5. The secure system of claim 1, wherein the API is operable to determine a policy record associated with the requesting party application.
  - 6. The secure system of claim 5, wherein the policy record is received from the requesting party application simultaneously with the API call.
  - 7. The secure system of claim 5, wherein the policy record associated with the requesting party application limits at least one of an upload capability, a download capability, a copy capability, a paste capability, and a session duration associated with the requesting party application.
  - 8. The secure system of claim 1, wherein the API call comprises a uniform resource locator.
  - 9. The secure system of claim 1, wherein the API call is initiated by a local application.
  - 10. The secure system of claim 9, wherein the local application is a local e-mail application.
  - 11. The secure system of claim 9, wherein the local application is a local browser.

12. A method for providing images through a secure application programming interface, the method comprising:
- receiving an application programming interface (API) call from a requesting party application of a requesting party application provider;
  
  validating the API call received;
  
  invoking, in response to the API call, a secure web container in a private user area external to a local client machine such that a display is provided at the local client machine without receiving web code commands from a third-party online service provider'"'"'s site;
  
  displaying image representations of the requesting party application web content to a user of the requesting party application without transmitting web code commands to the local client machine;
  
  andwherein the private user area is established and disposed of, thereby protecting user data from unauthorized access.
- View Dependent Claims (13, 14, 15, 16, 17, 18, 19, 20, 21, 22)
- - 13. The method of claim 12, wherein the secure web container is a disposable web browser.
  - 14. The method of claim 13, wherein the disposable web browser is provided to display within an existing browser window at the local client machine as an additional tab of the existing browser window at the local client machine.
  - 15. The method of claim 12, wherein the API call defines a policy record.
  - 16. The method of claim 12, wherein the API is operable to determine a policy record associated with the requesting party application.
  - 17. The method of claim 16, wherein the policy record is received from the requesting party application simultaneously with the API call.
  - 18. The method of claim 16, wherein the policy record associated with the requesting party application limits at least one of an upload capability, a download capability, a copy capability, a paste capability, and a session duration associated with the requesting party application.
  - 19. The method of claim 12, wherein the API call comprises a uniform resource locator.
  - 20. The method of claim 12, wherein the API call is initiated by a local application.
  - 21. The method of claim 20, wherein the local application is a local e-mail application.
  - 22. The method of claim 20, wherein the local application is a local browser.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Authentic8, Inc.
Original Assignee
Authentic8, Inc.
Inventors
Rajagopal, Ramesh, Petry, Scott M., Tosh, James K., Lund, Peter K., Cox, Fredric L., Moore, Adam P.
Primary Examiner(s)
Abyaneh, Ali
Assistant Examiner(s)
MEJIA, FELICIANO S

Application Number

US14/531,837
Publication Number

US 20150058923A1
Time in Patent Office

449 Days
Field of Search

705/37, 705/26.1, 705/26.6, 726/22, 726/25
US Class Current

1/1
CPC Class Codes

G06F 21/36   by graphic or iconic repres...

G06F 21/44   Program or device authentic...

G06F 21/53   by executing in a restricte...

H04L 63/08   for authentication of entit...

H04L 63/10   for controlling access to d...

H04L 63/1433   Vulnerability analysis

H04L 63/168   above the transport layer

H04L 63/20   for managing network securi...

Secure web container for a secure online user environment

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

27 Citations

22 Claims

Specification

Use Cases

Quick Links

Others

Secure web container for a secure online user environment

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

27 Citations

22 Claims

Specification

Subscription Required

Use Cases

Quick Links

Others