| CPC H04L 63/0272 (2013.01) [G06F 9/547 (2013.01); H04L 9/006 (2013.01); H04L 9/0894 (2013.01); H04L 9/14 (2013.01); H04L 9/30 (2013.01); H04L 9/3263 (2013.01); H04L 63/029 (2013.01); H04L 63/0823 (2013.01); H04L 63/0876 (2013.01); H04L 67/01 (2022.05); H04L 67/1021 (2013.01); H04L 61/4511 (2022.05); H04L 61/59 (2022.05)] | 17 Claims |
|
1. A method of protecting sensitive applications that are accessed from a user's device from an attack, the method comprising:
incorporating private application access software in a mobile application that operates on a user device to provide functionality to an end user, the private application access software enabling traffic associated with the mobile application to be forwarded to a cloud-based system;
deploying one or more virtual lightweight application connector instances in front of a private application that is accessed by the mobile application;
responsive to a request to access the private application, authenticating the end user through the mobile application;
responsive to the authentication, providing connection information via the cloud-based system to the mobile application and the one or more virtual lightweight application connector instances, wherein the virtual lightweight application connector instances are configured to only provide outbound connections on a per-application basis based on the connection information, and wherein the private application access software is adapted to route traffic through the cloud-based system based on the connection information, thereby protecting the private application from the attack; and
providing access to the private application through the mobile application via a plurality of secure tunnels.
|