US 9,813,429 B2
Method for secure web browsing
Eric Kass, Mannheim (DE)
Assigned to International Business Machines Corporation, Armonk, NY (US)
Filed by International Business Machines Corporation, Armonk, NY (US)
Filed on Dec. 13, 2012, as Appl. No. 13/713,483.
Prior Publication US 2013/0174267 A1, Jul. 4, 2013
Int. Cl. H04L 29/06 (2006.01)
CPC H04L 63/14 (2013.01) [H04L 63/1441 (2013.01)] 15 Claims
OG exemplary drawing
 
1. A computer-implemented method for secure web browsing, the method comprising:
receiving, by a proxy module, a request submitted from a browser, the browser running in a default runtime environment, the request requesting content provided by a remote server;
determining, by the proxy module, whether at least one of the following is true: the received request requests insecure content, or the requested content comprises insecure content;
in case the request is determined to request insecure content and/or in case the requested content is determined to comprise insecure content, sending, by the proxy module, a copy of the received request to a receiver module, the receiver module running in a secure runtime environment separate from the default runtime environment, the secure runtime environment preventing any malicious code executed in said runtime environment to affect the default runtime environment of the browser;
responsive to sending, by the proxy module, a copy of the received request to the receiver module, receiving, from the receiver module, at least one of: a secure displayable version of a rendered form of the requested content, or a description enabling access to the secure displayable version of the rendered form of the requested content, the rendered form of the requested content comprising a form produced in the secure runtime environment by a process of interpreting the requested content in a way that a graphical representation of the requested content can be displayed via a graphical user interface to a user, the secure displayable version of the rendered form of the requested content comprising a secure displayable graphical representation of at least some insecure requested content; and
forwarding, by the proxy module, at least one of the secure displayable version of the rendered form of the requested content or the description enabling access to the secure displayable version of the rendered form of the requested content received from the receiver module, to the browser.