Remotely defining security data for authorization of local application activity
First Claim
1. A method comprising:
- associating at least one permission indicator with a particular one of a plurality of interactive information channels, a protected activity associated with a first of the at least one permission indicator;
providing the at least one permission indicator to a remote device; and
providing content data for the plurality of information channels to the remote device, the content data for the particular information channel including a sequence of instructions executable by a virtual machine on the remote device, with the sequence of instructions including at least one instruction associated with the protected activity, wherein the remote device is operable to;
store the at least one permission indicator;
store the content data for each of the plurality of interactive information channels;
execute, using a virtual machine, the sequence of instructions for a particular information channel to present, through a user interface on the remote device, content defined by the content data in response to a selection of the particular information channel through the user interface of the remote device;
determine, using the virtual machine, whether execution of the at least one instruction associated with the protected activity is permitted based, at least in part, on the first permission indicator; and
perform the protected activity if execution of the instruction is permitted, wherein the protected activity includes accessing additional content data stored by the remote device for one or more of the plurality of information channels other than the particular information channel.
2 Assignments
0 Petitions
Accused Products
Abstract
Systems and methods, including computer software adapted to perform certain operations, can be implemented for remotely defining security data for authorizing access to data on a client device. Permission indicators are associated with a sequence of instructions, and a protected activity is associated with one or more of the permission indicators and with an instruction within the sequence of instructions. The one or more permission indicators and the sequence of instructions are provided to a remote device. The remote device determines whether execution of the instruction is permitted based, at least in part, on the one or more permission indicators, and the remote device performs the protected activity if execution of the instruction is permitted.
37 Citations
25 Claims
-
1. A method comprising:
-
associating at least one permission indicator with a particular one of a plurality of interactive information channels, a protected activity associated with a first of the at least one permission indicator; providing the at least one permission indicator to a remote device; and providing content data for the plurality of information channels to the remote device, the content data for the particular information channel including a sequence of instructions executable by a virtual machine on the remote device, with the sequence of instructions including at least one instruction associated with the protected activity, wherein the remote device is operable to; store the at least one permission indicator; store the content data for each of the plurality of interactive information channels; execute, using a virtual machine, the sequence of instructions for a particular information channel to present, through a user interface on the remote device, content defined by the content data in response to a selection of the particular information channel through the user interface of the remote device; determine, using the virtual machine, whether execution of the at least one instruction associated with the protected activity is permitted based, at least in part, on the first permission indicator; and perform the protected activity if execution of the instruction is permitted, wherein the protected activity includes accessing additional content data stored by the remote device for one or more of the plurality of information channels other than the particular information channel. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 10, 11, 12, 13, 14, 15, 16, 17)
-
-
9. A computer program product, encoded on a computer-readable medium, operable to cause data processing apparatus to perform operations comprising:
-
retrieving a permission indicator from a persistent storage device, the permission indicator associated with a protected activity; associating the permission indicator with a particular one of a plurality of interactive information channels; providing the permission indicator to a remote device; and providing content data for the plurality of information channels to the remote device, the content data for at least one of the information channels including a sequence of instructions executable by a virtual machine on the remote device, with the sequence of instructions including at least one instruction associated with the protected activity, wherein the remote device is operable to; store the at least one permission indicator; store the content data for each of the plurality of interactive information channels; execute, using a virtual machine, the sequence of instructions for a particular information channel including at least one instruction associated with the protected activity to present, through a user interface on the remote device, content defined by the content data in response to a selection of the particular information channel through the user interface of the remote device; determine, using the virtual machine, that the protected activity is permitted based, at least in part, on the permission indicator; and execute the at least one instruction associated with the protected activity, wherein executing the instruction comprises performing the protected activity, wherein the protected activity includes accessing additional content data stored by the remote device for one or more of the plurality of information channels other than the particular information channel.
-
-
18. A system comprising:
-
a persistent storage device; and one or more processors operable to interact with the persistent storage device and to; retrieve a permissions data structure from the persistent storage device, the permissions data structure comprising at least one permission indicator, the at least one permission indicator associated with at least one protected activity, wherein the protected activity includes accessing additional content data for one of a plurality of information channels; associate the permissions data structure with content data of at least one of the plurality of information channels, the content data including a sequence of instructions executable by a virtual machine; assemble a transmission comprising the sequence of instructions and the permissions data structure; and provide the transmission to a remote device, wherein the remote device is operable to; store the at least one permission indicator; store the content data for each of the plurality of information channels; execute, using a virtual machine, the sequence of instructions for a particular information channel to present, through a user interface on the remote device, content defined by the content data in response to a selection of the particular information channel through the user interface of the remote device; determine, using the virtual machine, that a first protected activity is prohibited based, at least in part, on the at least one permission indicator; and execute the sequence of instructions, wherein executing the sequence of instructions comprises blocking the first protected activity. - View Dependent Claims (19, 20, 21, 22, 23, 24, 25)
-
Specification