| 发明名称 | Secure launching of browser from privileged process | ||
| 摘要 | Methods and apparatus include securely launching a web browser from a privileged process of a workstation to minimize enterprise vulnerabilities. The workstation includes a restricted-capability web browser pointed toward a web server. An executable file is wrapped about the browser and imposes restrictions, such as preventing the writing to a registry or installing ActiveX controls. It also has functionality to prevent users from linking to web locations in other than an https protocol or following links beyond an original host. Upon indication of a forgotten password/credential, the restricted-capability web is launched browser toward a web server. Upon authentication of identity, the user changes their password/credential for later logging-on to the workstation, but in a capacity without the limited functionality or the imposed browser restrictions. | ||
| 申请公布号 | US8806581(B2) | 申请公布日期 | 2014.08.12 |
| 申请号 | US201213366831 | 申请日期 | 2012.02.06 |
| 申请人 | Apple Inc. | 发明人 | Kiester W. Scott;Mashayekhi Cameron;Ford Karl E. |
| 分类号 | H04L29/06;G06F21/00 | 主分类号 | H04L29/06 |
| 代理机构 | Fish & Richardson P.C. | 代理人 | Fish & Richardson P.C. |
| 主权项 | 1. A computing device, comprising: one or more hardware processors configured to implement: a web browser;a user account with limited-functionality on the computing device, configured for imposing restrictions on capabilities of the web browser, where the restrictions on capabilities of the web browser are imposed by an executable file wrapped about the web browser; anda dynamic linked library configured to query a user as to whether the user forgot a password or other credential to log-on to the computing device and to log onto the user account with limited-functionality to launch the restricted-capability web browser toward a web server. | ||
| 地址 | Cupertino CA US | ||