公开(公告)号：US09027108B2

公开(公告)日：2015-05-05

申请号：US13776358

申请日：2013-02-25

Applicant: Box, Inc.

Inventor： Simon Tan ,  David Scott Maynard ,  Rico Yao ,  Don Cung

IPC: H04L29/06 ,  G06F21/60 ,  G06F21/31 ,  G06F21/53

CPC classification number: H04L63/0428 ,  G06F17/30165 ,  G06F21/31 ,  G06F21/335 ,  G06F21/53 ,  G06F21/606 ,  G06F2221/2107 ,  H04L63/04 ,  H04L63/0807 ,  H04L63/102

Abstract: Systems and methods for secure file portability between mobile applications in a cloud-based environment or cloud-based collaboration and file sharing environment. In one embodiment, a server-based key generation service generates an encryption key that is unique to each file transfer transaction between mobile applications accessed via a mobile device. Data packages leaving a mobile application are then encrypted using the encryption key to provide secure file portability between mobile applications. In another embodiment, a background service triggered by a mobile application detects when a user is logged out of the mobile application and revalidates the user session with the mobile application to maintain portability of files between mobile applications. The background service presents a minimal user interface to get the user's credentials for the mobile application, without the user having to switch to the mobile application, and obtains an authentication token from a remote server using the user's credentials.

Abstract translation: 基于云环境的移动应用程序或基于云的协作和文件共享环境之间的安全文件可移植性的系统和方法。 在一个实施例中，基于服务器的密钥生成服务生成对经由移动设备访问的移动应用之间的每个文件传输交易是唯一的加密密钥。 然后使用加密密钥对离开移动应用程序的数据包进行加密，以提供移动应用程序之间的安全文件可移植性。 在另一个实施例中，由移动应用程序触发的后台服务检测用户何时退出移动应用程序，并重新验证与移动应用程序的用户会话，以维护移动应用程序之间文件的可移植性。 后台服务提供了最小的用户界面来获取移动应用程序的用户凭据，而无需用户切换到移动应用程序，并使用用户凭据从远程服务器获取身份验证令牌。