&#xfeff;<html>
  <head>
    <META http-equiv="Content-Type" content="text/html; charset=utf-8">
<link rel="stylesheet" type="text/css" href="html_style_eog.css"/>
<script type="text/javascript">
          function printpage()
          {
          window.print()
          }
        </script>
<script type="text/javascript" src="https://components.uspto.gov/js/ais/40-patentsgazette.js"></script></head>
  <body bgcolor='#FFFFFF' onload='javascript: if ((navigator.appName.indexOf("Netscape")!=-1) && parent.leftFrame!=null) parent.leftFrame.location.reload();'>
    <basefont face="Times New Roman, Times New Roman, Times New Roman " size="2">
      <div style="margin-left: +10pt">
        <table width="90%" border="0" rules="none" align="center">
          <tr align="center">
            <td width="20%" colspan="1" rowspan="2" align="left" valign="top"><a href="https://ppubs.uspto.gov/pubwebapp/external.html?q=11838299.pn.&amp;db=USPAT" target="popup"><input type="button" class="button" value="   Full Text   "></a></td>
            <td class="table_data"><b>US 11,838,299 B2</b></td>
            <td width="20%" colspan="1" rowspan="2" align="right" valign="top">
              <form><input type="button" value="Print this page" onclick="printpage()"></form>
            </td>
          </tr>
          <tr align="center">
            <td colspan="1" class="table_data" style="text-transform: uppercase"><b>Cloud-based web content processing system providing client threat isolation and data integrity</b></td>
          </tr>
          <tr align="center">
            <td colspan="3" class="table_data"><b> Uli P. Mittermaier,  Boston, MA (US); and  Alex-Marian Negrea,  Bucharest (RO)</b></td>
          </tr>
          <tr align="center">
            <td colspan="3" class="table_data"><b>Assigned to  Zscaler, Inc.,  San Jose, CA (US)</b></td>
          </tr>
          <tr align="center">
            <td colspan="3" class="table_data"><b>Filed by  Zscaler, Inc.,  San Jose, CA (US)</b></td>
          </tr>
          <tr align="center">
            <td colspan="3" class="table_data"><b>Filed on Dec.  4, 2019, as Appl. No. 16/702,889.</b></td>
          </tr>
          <tr>
            <td colspan="3" class="table_data" align="center"><b>Claims priority of provisional application 62/823,220, filed on Mar.  25, 2019.</b></td>
          </tr>
          <tr align="center">
            <td colspan="3" class="table_data"><b>Prior Publication US 2020/0314121 A1, Oct.  1, 2020</b></td>
          </tr>
          <tr align="center">
            <td colspan="3" class="table_data"><b>Int. Cl. </b><i><b>H04L 9/40</b></i> (2022.01); <i><b>G06F 21/53</b></i> (2013.01)</td>
          </tr>
        </table>
        <table width="90%" border="0" rules="none" align="center">
          <colgroup>
            <col width="75%">
            <col width="15%">
          </colgroup>
          <tr align="left">
            <td class="table_data" align="left"><b>CPC </b><i><b>H04L 63/1416</b></i> (2013.01)&#xa0;[<i><b>G06F 21/53</b></i> (2013.01); <i><b>H04L 63/20</b></i> (2013.01)]</td>
            <td class="table_data" align="right"><b>20 Claims</b></td>
          </tr>
        </table>
        <center><img src="US11838299-20231205-D00000.gif" alt="OG exemplary drawing"></center>
        <table width="90%" border="0" rules="none" align="center">
          <colgroup>
            <col width="90%">
          </colgroup>
          <tr>
            <td class="table_data" align="center">&#xa0;</td>
          </tr>
          <tr>
            <td valign="top" class="para_text">
              <div class="claim_text_root">1. A non-transitory computer-readable medium comprising instructions that, when executed, cause one or more processors to perform the steps of:<div class="claim_text">receiving a request for resources that are one of web content and a cloud application from a user device;</div>
                <div class="claim_text">determining the request requires isolation based on any of policy, category of the web content, type of the user device, and location of the user device, wherein app gating provides the capability to tag/detect endpoint and transparently redirect Software as a Service (SaaS) apps to isolation using a Security Assertion Markup Language (SAML) proxy, wherein the policy is configured to enforce tagging of the user device by generating and sending a cryptographically secure cookie to a native browser of the user device, thereby providing a mechanism to recognize the native browser for the determining;</div>
                <div class="claim_text">in response to the request for resources being from the web content that requires isolation, creating an isolated session by rendering the web content associated with the request in a cloud based secure environment that is isolated from the user device and providing image content to the user device based on the web content rendered, the image content based on the web content rendered being graphics files including passive, safe pixels;</div>
                <div class="claim_text">in response to the request for resources being the cloud application that requires isolation, creating an isolated session by isolating the cloud application in the cloud based secure environment and providing image content to the user device based on data from the cloud application, the image content based on the data from the cloud application being graphics files including passive, safe pixels; and</div>
                <div class="claim_text">taking one or more snapshots at one of regular intervals or before a logout event of a user of cookies and the isolated session created, wherein the snapshots include user-related information and information associated with the isolated session environment, and wherein the snapshots are encrypted and stored for future use.</div>
              </div>
            </td>
          </tr>
        </table>
      </div>
    
  </body>
</html>