Distributed application of enterprise policies to Web Real-Time Communications (WebRTC) interactive sessions, and related methods, systems, and computer-readable media
First Claim
1. A system for applying an enterprise policy to a Web Real-Time Communications (WebRTC) interactive session, comprising:
- at least one communications interface; and
a recipient device associated with the at least one communications interface and comprising a distributed policy enforcement agent, the distributed policy enforcement agent configured to;
receive a WebRTC session description object directed to the recipient device originating from a sender device;
determine one or more enterprise policies based on the WebRTC session description object;
determine whether the WebRTC session description object complies with the one or more enterprise policies; and
responsive to determining that the WebRTC session description object complies with the one or more enterprise policies;
establish a secure peer connection between the recipient device and the sender device;
receive, at the recipient device, a first WebRTC interactive flow originating from the sender device via the secure peer connection;
request, by the distributed policy enforcement agent, that a second WebRTC interactive flow including data from the first WebRTC interactive flow be established between the recipient device and an enterprise device;
receive, at the enterprise device, the second WebRTC interactive flow; and
process, by the enterprise device, the second WebRTC interactive flow in accordance with the one or more enterprise policies.
14 Assignments
0 Petitions
Accused Products
Abstract
Distributed application of enterprise policies to WebRTC interactive sessions, and related methods, systems, and computer-readable media are disclosed. In this regard, in one embodiment, a method for applying an enterprise policy to a WebRTC interactive session comprises receiving, by a distributed policy enforcement agent of a recipient device, a WebRTC session description object directed to the recipient device originating from a sender device via a secure network connection. The method further comprises determining, by the distributed policy enforcement agent, one or more enterprise policies based on the WebRTC session description object. The method additionally comprises applying the one or more enterprise policies to the WebRTC session description object. In this manner, an enterprise may permit establishment of a WebRTC interactive session that crosses an enterprise network boundary, while at the same time ensuring that the WebRTC interactive session complies with the one or more enterprise policies.
138 Citations
28 Claims
-
1. A system for applying an enterprise policy to a Web Real-Time Communications (WebRTC) interactive session, comprising:
-
at least one communications interface; and a recipient device associated with the at least one communications interface and comprising a distributed policy enforcement agent, the distributed policy enforcement agent configured to; receive a WebRTC session description object directed to the recipient device originating from a sender device; determine one or more enterprise policies based on the WebRTC session description object; determine whether the WebRTC session description object complies with the one or more enterprise policies; and responsive to determining that the WebRTC session description object complies with the one or more enterprise policies; establish a secure peer connection between the recipient device and the sender device; receive, at the recipient device, a first WebRTC interactive flow originating from the sender device via the secure peer connection; request, by the distributed policy enforcement agent, that a second WebRTC interactive flow including data from the first WebRTC interactive flow be established between the recipient device and an enterprise device; receive, at the enterprise device, the second WebRTC interactive flow; and process, by the enterprise device, the second WebRTC interactive flow in accordance with the one or more enterprise policies.
-
-
2. A method for applying an enterprise policy to a Web Real-Time Communications (WebRTC) interactive session, comprising:
-
receiving, by a distributed policy enforcement agent of a recipient device, a WebRTC session description object directed to the recipient device originating from a sender device; determining, by the distributed policy enforcement agent, one or more enterprise policies based on the WebRTC session description object; applying the one or more enterprise policies to the WebRTC session description object; determining, by the distributed policy enforcement agent, whether the WebRTC session description object conforms to an expected WebRTC session description object format; and responsive to determining that the WebRTC session description object does not conform to the expected WebRTC session description object format, discarding the WebRTC session description object. - View Dependent Claims (3, 4, 5, 6, 7, 8, 9, 10)
-
-
11. A system for applying an enterprise policy to a Web Real-Time Communications (WebRTC) interactive session, comprising:
-
at least one communications interface; and a recipient device associated with the at least one communications interface and comprising a distributed policy enforcement agent, the distributed policy enforcement agent configured to; receive a WebRTC session description object directed to the recipient device originating from a sender device; determine one or more enterprise policies based on the WebRTC session description object; determine whether the WebRTC session description object complies with the one or more enterprise policies; and responsive to determining that the WebRTC session description object does not comply with the one or more enterprise policies, decline to establish a WebRTC interactive flow between the sender device and the recipient device.
-
-
12. A system for applying an enterprise policy to a Web Real-Time Communications (WebRTC) interactive session, comprising:
-
at least one communications interface; and a recipient device associated with the at least one communications interface and comprising a distributed policy enforcement agent, the distributed policy enforcement agent configured to; receive a WebRTC session description object directed to the recipient device originating from a sender device; determine one or more enterprise policies based on the WebRTC session description object; determine whether the WebRTC session description object complies with the one or more enterprise policies; and responsive to determining that the WebRTC session description object does not comply with the one or more enterprise policies, provide one or more options for an alternative WebRTC interactive flow to the sender device.
-
-
13. A non-transitory computer-readable medium having stored thereon computer-executable instructions to cause a processor to implement a method, comprising:
-
receiving, by a distributed policy enforcement agent of a recipient device, a Web Real-Time Communications (WebRTC) session description object directed to the recipient device originating from a sender device via a secure network connection; determining, by the distributed policy enforcement agent, one or more enterprise policies based on the WebRTC session description object; determining whether the WebRTC session description object complies with the one or more enterprise policies; and responsive to determining that the WebRTC session description object complies with the one or more enterprise policies; establishing a secure peer connection between the recipient device and the sender device; receiving, at the recipient device, a first WebRTC interactive flow originating from the sender device via the secure peer connection; requesting, by the distributed policy enforcement agent, that a second WebRTC interactive flow including data from the first WebRTC interactive flow be established between the recipient device and an enterprise device; receiving, at the enterprise device, the second WebRTC interactive flow; and processing, by the enterprise device, the second WebRTC interactive flow in accordance with the one or more enterprise policies.
-
-
14. A non-transitory computer-readable medium having stored thereon computer-executable instructions to cause a processor to implement a method, comprising:
-
receiving, by a distributed policy enforcement agent of a recipient device, a Web Real-Time Communications (WebRTC) session description object directed to the recipient device originating from a sender device via a secure network connection; determining, by the distributed policy enforcement agent, one or more enterprise policies based on the WebRTC session description object; determining whether the WebRTC session description object complies with the one or more enterprise policies; and responsive to determining that the WebRTC session description object does not comply with the one or more enterprise policies, declining to establish a WebRTC interactive flow between the sender device and the recipient device.
-
-
15. A system for applying an enterprise policy to a Web Real-Time Communications (WebRTC) interactive session, comprising:
-
at least one communications interface; and a recipient device associated with the at least one communications interface and comprising a distributed policy enforcement agent, the distributed policy enforcement agent configured to; receive a WebRTC session description object directed to the recipient device originating from a sender device; determine one or more enterprise policies based on the WebRTC session description object; apply the one or more enterprise policies to the WebRTC session description object; determine whether the WebRTC session description object conforms to an expected WebRTC session description object format; and responsive to determining that the WebRTC session description object does not conform to the expected WebRTC session description object format, discard the WebRTC session description object. - View Dependent Claims (16, 17, 18, 19)
-
-
20. A non-transitory computer-readable medium having stored thereon computer-executable instructions to cause a processor to implement a method, comprising:
-
receiving, by a distributed policy enforcement agent of a recipient device, a Web Real-Time Communications (WebRTC) session description object directed to the recipient device originating from a sender device via a secure network connection; determining, by the distributed policy enforcement agent, one or more enterprise policies based on the WebRTC session description object; determining whether the WebRTC session description object complies with the one or more enterprise policies; and responsive to determining that the WebRTC session description object does not comply with the one or more enterprise policies, providing one or more options for an alternative WebRTC interactive flow to the sender device.
-
-
21. A non-transitory computer-readable medium having stored thereon computer-executable instructions to cause a processor to implement a method, comprising:
-
receiving, by a distributed policy enforcement agent of a recipient device, a Web Real-Time Communications (WebRTC) session description object directed to the recipient device originating from a sender device via a secure network connection; determining, by the distributed policy enforcement agent, one or more enterprise policies based on the WebRTC session description object; applying the one or more enterprise policies to the WebRTC session description object; determining whether the WebRTC session description object conforms to an expected WebRTC session description object format; and responsive to determining that the WebRTC session description object does not conform to the expected WebRTC session description object format, discarding the WebRTC session description object. - View Dependent Claims (22, 23, 24, 25)
-
-
26. A method for applying an enterprise policy to a Web Real-Time Communications (WebRTC) interactive session, comprising:
-
receiving, by a distributed policy enforcement agent of a recipient device, a WebRTC session description object directed to the recipient device originating from a sender device; determining, by the distributed policy enforcement agent, one or more enterprise policies based on the WebRTC session description object; determining whether the WebRTC session description object complies with the one or more enterprise policies; and responsive to determining that the WebRTC session description object complies with the one or more enterprise policies; establishing a secure peer connection between the recipient device and the sender device; receiving, at the recipient device, a first WebRTC interactive flow originating from the sender device via the secure peer connection; requesting, by the distributed policy enforcement agent, that a second WebRTC interactive flow including data from the first WebRTC interactive flow be established between the recipient device and an enterprise device; receiving, at the enterprise device, the second WebRTC interactive flow; and processing, by the enterprise device, the second WebRTC interactive flow in accordance with the one or more enterprise policies.
-
-
27. A method for applying an enterprise policy to a Web Real-Time Communications (WebRTC) interactive session, comprising:
-
receiving, by a distributed policy enforcement agent of a recipient device, a WebRTC session description object directed to the recipient device originating from a sender device; determining, by the distributed policy enforcement agent, one or more enterprise policies based on the WebRTC session description object; determining whether the WebRTC session description object complies with the one or more enterprise policies; and responsive to determining that the WebRTC session description object does not comply with the one or more enterprise policies, declining to establish a WebRTC interactive flow between the sender device and the recipient device.
-
-
28. A method for applying an enterprise policy to a Web Real-Time Communications (WebRTC) interactive session, comprising:
-
receiving, by a distributed policy enforcement agent of a recipient device, a WebRTC session description object directed to the recipient device originating from a sender device; determining, by the distributed policy enforcement agent, one or more enterprise policies based on the WebRTC session description object; determining whether the WebRTC session description object complies with the one or more enterprise policies; and responsive to determining that the WebRTC session description object does not comply with the one or more enterprise policies, providing one or more options for an alternative WebRTC interactive flow to the sender device.
-
Specification