公开(公告)号：US11936671B1

公开(公告)日：2024-03-19

申请号：US18214326

申请日：2023-06-26

Applicant: Kolide, Inc.

Inventor： Jason Meller ,  Joseph Sokol-Margolis ,  Levi C. Kennedy

IPC: G06F21/00 ,  G06F21/30 ,  G06F21/31 ,  H04L9/32 ,  H04L9/40

CPC classification number: H04L63/1416 ,  G06F21/30 ,  G06F21/31 ,  H04L9/3271

Abstract: A zero trust application enables access to a protected resource from a client device associated with a user. The client device has a browser, and an agent running locally and accessible via a local loopback interface. During an authentication flow, a browser-based script executes in the browser to deliver a challenge to the agent, and to collect a response to that challenge from the agent using a graphics file-based encoding scheme, and to deliver that information to the application for verifying the client device and its security posture. Depending on that security posture, the authentication flow may be permitted to complete. If a failure of the security posture is identified, the user may be permitted during the on-going authentication flow to address that failure and request a re-check of the posture.

公开(公告)号：US20240430275A1

公开(公告)日：2024-12-26

申请号：US18609582

申请日：2024-03-19

Applicant: Kolide, Inc.

Inventor： Jason Meller ,  Joseph Sokol-Margolis ,  Levi C. Kennedy

IPC: H04L9/40 ,  G06F21/30 ,  G06F21/31 ,  H04L9/32

Abstract: A zero trust application enables access to a protected resource from a client device associated with a user. The client device has a browser, and an agent running locally and accessible via a local loopback interface. During an authentication flow, a browser-based script executes in the browser to deliver a challenge to the agent, and to collect a response to that challenge from the agent using a graphics file-based encoding scheme, and to deliver that information to the application for verifying the client device and its security posture. Depending on that security posture, the authentication flow may be permitted to complete. If a failure of the security posture is identified, the user may be permitted during the on-going authentication flow to address that failure and request a re-check of the posture.

公开(公告)号：US20240430259A1

公开(公告)日：2024-12-26

申请号：US18214373

申请日：2023-06-26

Applicant: Kolide, Inc.

Inventor： Jason Meller ,  Frederick Ifert-Miller

IPC: H04L9/40

Abstract: A zero trust application enables access to a protected resource from a client device associated with a user. The client device has a browser, and an agent running locally and accessible via a local loopback interface. During an authentication flow, a browser-based script executes in the browser to deliver a challenge to the agent, and to collect a response to that challenge from the agent using a graphics file-based encoding scheme, and to deliver that information to the application for verifying the client device and its security posture. Depending on that security posture, the authentication flow may be permitted to complete. If a failure of the security posture is identified, the user may be permitted during the on-going authentication flow to address that failure and request a re-check of the posture.