公开(公告)号：US20220070067A1

公开(公告)日：2022-03-03

申请号：US17521913

申请日：2021-11-09

Applicant: Salesforce.com, Inc.

Inventor： Kevin Venkiteswaran ,  Diego Ferreiro Val ,  Caridy Patino ,  Trevor James Bliss

IPC: H04L12/24 ,  G06F9/451 ,  G06F9/54 ,  H04L29/08 ,  G06F3/14 ,  H04L29/06 ,  G06F40/221 ,  G06F16/958 ,  G06N20/00 ,  G06F16/901 ,  G06F16/26 ,  G06F16/953 ,  G06F40/205 ,  G06F40/14

Abstract: Each of a plurality of wire web components predicted to be included in a graphical user interface (GUI) for presentation at a client machine. Each data object instance may be associated with a respective data object instance identifier and a respective one or more data object fields. A wire web component graph that includes a plurality of nodes may be constructed. A node may correspond to a wire web component, a data object field, or an application procedure interface (API). One or more of the data values may be retrieved from the respective APIs based on the wire web component graph. A GUI message including the retrieved data values and the wire web component graph may be transmitted to the client machine.

公开(公告)号：US11184249B2

公开(公告)日：2021-11-23

申请号：US16450598

申请日：2019-06-24

Applicant: Salesforce.com, Inc.

Inventor： Kevin Venkiteswaran ,  Diego Ferreiro Val ,  Caridy Patino ,  Trevor James Bliss

IPC: G06F40/14 ,  H04L12/24 ,  G06F9/451 ,  G06F9/54 ,  H04L29/08 ,  G06F3/14 ,  H04L29/06 ,  G06F40/221 ,  G06F16/958 ,  G06N20/00 ,  G06F16/901 ,  G06F16/26 ,  G06F16/953 ,  G06F40/205

Abstract: A wire web component may be included in a graphical user interface (GUI) being presented on a display device. The wire web component may include one or more data fields that are each associated with a respective data value. A designated node representing the designated wire web component may be removed from a wire web component graph that includes a plurality of nodes. Each of the data fields may be associated with a respective API in the wire web component graph. A document object model (DOM) tree stored in memory may be updated to remove the designated wire web component. The GUI presented on the display device may be updated based on the updated DOM tree.

公开(公告)号：US11038863B2

公开(公告)日：2021-06-15

申请号：US16557547

申请日：2019-08-30

Applicant: salesforce.com, inc.

Inventor： Kevin Venkiteswaran ,  Sergey Gorbaty ,  Bob Yao ,  Trevor James Bliss

IPC: H04L29/06 ,  H04L29/08 ,  G06F21/62 ,  G06F21/60 ,  G06F16/957

Abstract: Disclosed are some implementations of systems, apparatus, methods and computer program products for encrypting and securely storing session data during a browser session using a session-based cryptographic key. The session data may be decrypted during the browser session or other browser sessions using the session-based cryptographic key or other backwards compatible session-based cryptographic keys. In addition, session-based cryptographic keys may be shared among browser sessions to enable encrypted session data to be decrypted across page refreshes and browser tabs.

公开(公告)号：US10904105B2

公开(公告)日：2021-01-26

申请号：US16450544

申请日：2019-06-24

Applicant: Salesforce.com, Inc.

Inventor： Kevin Venkiteswaran ,  Diego Ferreiro Val ,  Caridy Patino ,  Trevor James Bliss

IPC: H04L12/24 ,  G06F9/451 ,  G06F40/205 ,  G06F40/221 ,  G06F16/901 ,  G06F16/953 ,  G06F16/958 ,  G06F16/26 ,  G06F40/14 ,  G06F9/54 ,  H04L29/08 ,  G06F3/14 ,  H04L29/06 ,  G06N20/00

Abstract: A wire web component graph may be constructed based on a request to provide a graphical user interface (GUI) at a client machine. The wire web component graph may include a plurality of nodes. Each of the nodes may correspond to a wire web component included in the GUI, a data value, or an application procedure interface (API). One or more API messages may be transmitted to retrieve the data values from the respective APIs based on the designated wire web component graph. A GUI including one or more of the retrieved data values may be displayed on a display device at the client machine.

公开(公告)号：US20190386971A1

公开(公告)日：2019-12-19

申请号：US16557547

申请日：2019-08-30

Applicant: salesforce.com, inc.

Inventor： Kevin Venkiteswaran ,  Sergey Gorbaty ,  Bob Yao ,  Trevor James Bliss

IPC: H04L29/06 ,  H04L29/08 ,  G06F21/62 ,  G06F21/60 ,  G06F16/957

Abstract: Disclosed are some implementations of systems, apparatus, methods and computer program products for encrypting and securely storing session data during a browser session using a session-based cryptographic key. The session data may be decrypted during the browser session or other browser sessions using the session-based cryptographic key or other backwards compatible session-based cryptographic keys. In addition, session-based cryptographic keys may be shared among browser sessions to enable encrypted session data to be decrypted across page refreshes and browser tabs.

公开(公告)号：US11201795B2

公开(公告)日：2021-12-14

申请号：US16450582

申请日：2019-06-24

Applicant: Salesforce.com, Inc.

Inventor： Kevin Venkiteswaran ,  Diego Ferreiro Val ,  Caridy Patino ,  Trevor James Bliss

IPC: G06F16/958 ,  G06F16/901 ,  G06F9/451 ,  G06F40/14 ,  H04L12/24 ,  G06F9/54 ,  H04L29/08 ,  G06F3/14 ,  H04L29/06 ,  G06F40/221 ,  G06N20/00 ,  G06F16/26 ,  G06F16/953 ,  G06F40/205

Abstract: Each of a plurality of wire web components predicted to be included in a graphical user interface (GUI) for presentation at a client machine. Each data object instance may be associated with a respective data object instance identifier and a respective one or more data object fields. A wire web component graph that includes a plurality of nodes may be constructed. A node may correspond to a wire web component, a data object field, or an application procedure interface (API). One or more of the data values may be retrieved from the respective APIs based on the wire web component graph. A GUI message including the retrieved data values and the wire web component graph may be transmitted to the client machine.

公开(公告)号：US10911324B2

公开(公告)日：2021-02-02

申请号：US16450592

申请日：2019-06-24

Applicant: Salesforce.com, Inc.

Inventor： Kevin Venkiteswaran ,  Diego Ferreiro Val ,  Caridy Patino ,  Trevor James Bliss

IPC: G06F9/451 ,  H04L12/24 ,  G06F9/54 ,  H04L29/08 ,  G06F3/14 ,  H04L29/06 ,  G06F40/221 ,  G06F16/958 ,  G06N20/00 ,  G06F16/901 ,  G06F16/26 ,  G06F16/953 ,  G06F40/205 ,  G06F40/14

Abstract: A wire web component graph that includes a plurality of nodes may be accessed to identify one or more application procedure interfaces (APIs) through which to update one or more data values included in a designated wire web component in a graphical user interface (GUI) being presented on a display device. Each of the data values may correspond to a respective data field represented in the wire web component graph, and each data field may be associated with a respective API in the wire web component graph. The graphical user interface may be updated based on one or more updated data values determined by communicating with the identified APIs over a network and via a communications interface.

公开(公告)号：US20200351176A1

公开(公告)日：2020-11-05

申请号：US16450592

申请日：2019-06-24

Applicant: Salesforce.com, Inc.

Inventor： Kevin Venkiteswaran ,  Diego Ferreiro Val ,  Caridy Patino ,  Trevor James Bliss

IPC: H04L12/24 ,  G06F9/451 ,  G06F9/54 ,  H04L29/08 ,  G06F17/27

Abstract: A wire web component graph that includes a plurality of nodes may be accessed to identify one or more application procedure interfaces (APIs) through which to update one or more data values included in a designated wire web component in a graphical user interface (GUI) being presented on a display device. Each of the data values may correspond to a respective data field represented in the wire web component graph, and each data field may be associated with a respective API in the wire web component graph. The graphical user interface may be updated based on one or more updated data values determined by communicating with the identified APIs over a network and via a communications interface.

公开(公告)号：US10129258B2

公开(公告)日：2018-11-13

申请号：US15364939

申请日：2016-11-30

Applicant: salesforce.com, inc.

Inventor： Doug Chasman ,  Caridy Patiño ,  Trevor James Bliss ,  Sergey Gorbaty

IPC: H04L29/06 ,  G06F21/62 ,  G06F17/30

Abstract: Disclosed are examples of systems, apparatus, methods and computer program products for providing a security model for component-based web applications. Documents for a web-based application are received, with the application containing custom components and Application Programming Interface (API) components. A Document Object Model (DOM) is processed corresponding to the web-based application, with the custom and API components modeled in hierarchical form. For each custom component, a key is assigned in accordance with the rules of capability security, accessible custom components are identified for which the custom component can provide the assigned key, a virtual DOM is generated for the custom component with the component and identified accessible custom components being modeled in hierarchical form, and the custom component is prohibited access to all inaccessible custom components.

公开(公告)号：US20180152456A1

公开(公告)日：2018-05-31

申请号：US15364929

申请日：2016-11-30

Applicant: salesforce.com, inc.

Inventor： Doug Chasman ,  Caridy Patiño ,  Trevor James Bliss ,  Sergey Gorbaty

IPC: H04L29/06

CPC classification number: H04L63/101 ,  G06F21/6218 ,  H04L63/06

Abstract: Disclosed are examples of systems, apparatus, methods and computer program products for providing a security model for component-based web applications. Documents for a web-based application are received, with the application containing custom components and Application Programming Interface (API) components. A Document Object Model (DOM) is processed corresponding to the web-based application, with the components modeled in hierarchical form. Each API component is assigned to a system mode setting, where the system mode setting is configured to provide the API component access to all of the components in the application. One or more secure documents are generated for each custom component, with each secure document containing a key in accordance with the rules of capability security. Each custom component is then assigned to a user mode setting, where the user mode setting is configured to provide custom components access to other components in the application for which a key can be provided.