What technology area does this patent fall under?

Primary CPC classification H04L63/1433. Mapped technology areas include Electricity.

When was this patent published?

Publication date Tue Apr 21 2020 00:00:00 GMT+0000 (Coordinated Universal Time) (B2). Legal status and post-grant events are not shown on this page.

What related patents are in patentsdb?

We list 8 related publications on this page (citations in our corpus or others sharing the same primary CPC).

Security data aggregation and business intelligence for web applications

US10630711B2 · US · B2

Patent metadata
Field	Value
Publication number	US-10630711-B2
Application number	US-201514968178-A
Country	US
Kind code	B2
Filing date	Dec 14, 2015
Priority date	Sep 27, 2012
Publication date	Apr 21, 2020
Grant date	Apr 21, 2020

How to read this patent

A practical reading order for non-experts. Skip the full description unless you need deep technical detail.

Title
What the patent document calls the invention.
Abstract
A short plain-language summary of the technical disclosure.
Assignees and inventors
Who owns or filed the patent and who is credited as inventor.
Key dates
Filing, priority, publication, and grant dates set the timeline.
First independent claim
The legal scope of protection — read this for what is actually claimed.
CPC / IPC classifications
Technology tags used to group this patent with similar filings.
Citations and related patents
Prior art links and similar publications in this corpus.

Abstract

Official abstract text for this publication.

Systems and methods may provide for detecting a browser request for web content. Additionally, interaction information associated with a plurality of sources may be determined in response to the browser request, and a risk profile may be generated based on the interaction. The risk profile may include at least a portion of the interaction information as well as recommended control actions to mitigate the identified risk. In one example, the risk profile is presented to a user associated with the browser request as well as to a security control module associated with the platform.

First claim

Opening claim text (preview).

We claim: 1. An apparatus comprising: a browser interface to detect a browser request that is to be issued from a browser of a platform for remote web content, wherein the web content is to be presented on the platform in response to the browser request; and a security module to: determine interaction information including a web content call to a hardware component of the platform by the web content during one or more of a retrieval of the web content and a presentation of the web content on the platform; and in response to determination of the interaction information: generate a risk profile based on the interaction information to document a risk associated with access by the web content to the hardware component of the platform; and disallow the access by the web content to the hardware component of the platform. 2. The apparatus of claim 1 , wherein the security module includes a sensor interface to determine interaction information including a web content call to a sensor by the web content, wherein the sensor includes one or more of a Wi-Fi sensor, a global positioning system (GPS) sensor, a cellular sensor, a near field communications (NFC) sensor, an audio sensor and a motion sensor. 3. The apparatus of claim 2 , wherein the sensor interface is to determine interaction information including the web content call to the sensor by the web content when the sensor is to be accessed by the web content to determine a location of the platform. 4. The apparatus of claim 1 , wherein the security module includes a hardware security reference to determine interaction information including a web content call by the web content to one or more of platform memory, a platform input output (IO) component, a platform processor, a platform runtime context interface and a platform user setting location, wherein the platform IO component includes one or more of a file system component, a networking component and a graphics component. 5. The apparatus of claim 1 , wherein the security module includes: a first data aggregator to obtain interaction information from one or more of a platform sensor, platform memory, a platform IO component, a platform processor, a platform runtime context interface and a platform user setting location; and a second data aggregator to obtain interaction information from one or more of a remote peer-to-peer (P2P) application, a remote social network, a remote cloud service and a remote enterprise database. 6. The apparatus of claim 1 , further including a control interface to send the risk profile to a security control module in response to one or more of a control request from the security control module and a trigger condition associated with the risk profile. 7. The apparatus of claim 1 , wherein the web content is to be written in one or more of a just in time (JIT) language and a runtime environment language that is to expose the hardware component, and wherein the runtime environment language is to include HyperText Markup Language 5 (HTML5). 8. The apparatus of claim 1 , wherein the security module is to determine interaction information including an application programming interface function call to the hardware component by the web content. 9. At least one non-transitory computer readable storage medium comprising a set of instructions which, if executed by a processor, cause a computer to: detect a browser request that is to be issued from a browser of a platform for remote web content, wherein the web content is to be presented on the platform in response to the browser request; determine interaction information including a web content call to a hardware component of the platform by the web content during one or more of a retrieval of the web content and a presentation of the web content on the platform; and in response to determination of the interaction information: generate a risk profile based on the interaction information to document a risk associated with access by the web content to the hardware component of the platform; and disallow the access by the web content to the hardware component of the platform. 10. The at least one computer readable storage medium of claim 9 , wherein the instructions, if executed, cause a computer to determine interaction information including a web content call to a sensor by the web content, wherein the sensor includes one or more of a Wi-Fi sensor, a global positioning system (GPS) sensor, a cellular sensor, a near field communications (NFC) sensor, an audio sensor and a motion sensor. 11. The at least one computer readable storage medium of claim 10 , wherein the instructions, if executed, cause a computer to determine interaction information including the web content call to the sensor by the web content when the sensor is to be accessed by the web content to determine a location of the platform. 12. The at least one computer readable storage medium of claim 9 , wherein the instructions, if executed, cause a computer to determine interaction information including a web content call by the web content to one or more of platform memory, a platform input output (IO) component, a platform processor, a platform runtime context interface and a platform user setting location, wherein the platform IO component includes one or more of a file system component, a networking component and a graphics component. 13. The at least one computer readable storage medium of claim 9 , wherein the instructions, if executed, cause a computer to: obtain interaction information from one or more of a platform sensor, platform memory, a platform IO component, a platform processor, a platform runtime context interface and a platform user setting location; and obtain interaction information from one or more of a remote peer-to-peer (P2P) application, a remote social network, a remote cloud service and a remote enterprise database. 14. The at least one computer readable storage medium of claim 9 , wherein the instructions, if executed, cause a computer to send the risk profile to a security control module in response to one or more of a control request from the security control module and a trigger condition associated with the risk profile. 15. The at least one computer readable storage medium of claim 9 , wherein the web content is to be written in one or more of a just in time (JIT) language and a runtime environment language that is to expose the hardware component, and wherein the runtime environment language is to include HyperText Markup Language 5 (HTML5). 16. The at least one computer readable storage medium of claim 9 , wherein the instructions, if executed, cause a computer to determine interaction information including an application programming interface function call to the hardware component by the web content. 17. A method comprising: detecting a browser request that is issued from a browser of a platform for remote web content, wherein the web content is presented on the platform in response to the browser request; determining interaction information including a web content call to a hardware component of the platform by the web content during one or more of a retrieval of the web content and a presentation of the web content on the platform; and in response to determination of the interaction information: generating a risk profile based on the interaction information to document a risk associated with access by the web content to the hardware component of the platform; and disallowing the access by the web content to the hardware component of the platform. 18. The method of claim 17 ,

Assignees

Intel Corp

Inventors

Classifications

H04L63/1433Primary
Vulnerability analysis · CPC title
G06F21/51Primary
at application loading time, e.g. accepting, rejecting, starting or inhibiting executable software based on integrity or source reliability · CPC title
H04L67/02
based on web technology, e.g. hypertext transfer protocol [HTTP] · CPC title

Patent family

Related publications grouped by family.

View patent family 50340311

External sources

Frequently asked questions

Answers are generated from the same data shown on this page.

What does patent US10630711B2 cover?: Systems and methods may provide for detecting a browser request for web content. Additionally, interaction information associated with a plurality of sources may be determined in response to the browser request, and a risk profile may be generated based on the interaction. The risk profile may include at least a portion of the interaction information as well as recommended control actions to mi…
Who is the assignee on this patent?: Intel Corp
What technology area does this patent fall under?: Primary CPC classification H04L63/1433. Mapped technology areas include Electricity.
When was this patent published?: Publication date Tue Apr 21 2020 00:00:00 GMT+0000 (Coordinated Universal Time) (B2). Legal status and post-grant events are not shown on this page.
What related patents are in patentsdb?: We list 8 related publications on this page (citations in our corpus or others sharing the same primary CPC).