Algorithm hardening in background context and external from the browser to prevent malicious intervention with the browser
First Claim
Patent Images
1. A system for managing user credentials, comprising:
- one or more hardware processors;
memory coupled to the one or more hardware processors on which are stored instructions, comprising instructions that when executed cause at least some of the one or more hardware processors to;
perform user authentication to a web site in a non-rendered application, establishing an authenticated session with the web site, wherein the non-rendered application establishes the authenticated session by logging into the web site with credentials;
generate a session configuration data about the established authenticated session by the non-rendered application;
send the session configuration data to a rendering application; and
use the session configuration data by transferring the established session from the non-rendered application to the rendering application to continue the authenticated session for continued access to the web site for the authenticated session.
10 Assignments
0 Petitions
Accused Products
Abstract
A technique for hardening the entry of user credentials in web sites is described. A headless web browser authenticates the user to a target web site with credentials previously stored in a secure database, and generates a session cookie. The headless browser provides the session cookie to the user'"'"'s web browser, allowing the user to continue the session established by the headless browser.
-
Citations
25 Claims
-
1. A system for managing user credentials, comprising:
-
one or more hardware processors; memory coupled to the one or more hardware processors on which are stored instructions, comprising instructions that when executed cause at least some of the one or more hardware processors to; perform user authentication to a web site in a non-rendered application, establishing an authenticated session with the web site, wherein the non-rendered application establishes the authenticated session by logging into the web site with credentials; generate a session configuration data about the established authenticated session by the non-rendered application; send the session configuration data to a rendering application; and use the session configuration data by transferring the established session from the non-rendered application to the rendering application to continue the authenticated session for continued access to the web site for the authenticated session. - View Dependent Claims (2, 3, 4, 5, 6, 7)
-
-
8. A non-transitory machine readable storage medium, on which are stored instructions for managing user credentials, comprising instructions that when executed by a hardware processor, cause a machine to:
-
obtain credentials by an extension background module from a credentials database; decrypt the credentials and pass the decrypted credentials to a non-rendered application; establish by the non-rendered application an authenticated session for a user at a web site by logging into the web site using the decrypted credentials; and pass session configuration data about the established authenticated session from the non-rendered application to a browser, the session configuration data sufficient to allow the browser to continue the authenticated session using the session configuration data for continued access to the web site for the authenticated session. - View Dependent Claims (9, 10, 11, 12, 13, 14, 15, 16, 17)
-
-
18. A method for securely managing credentials, comprising:
-
obtaining credentials for a user for a web site from a credentials database by an extension background module; establishing an authenticated session for the user by using the obtained credentials to login to the web site by a non-rendered application; providing session configuration data about the established authenticated session from the non-rendered application to a rendered application; and continuing the established authenticated session with the web site in the rendered application using the session configuration data for continued access to the web site for the authenticated session. - View Dependent Claims (19, 20, 21, 22, 23, 24, 25)
-
Specification