US 12,341,822 B2
Method and apparatus for providing isolated asset access in a layered security system
Craig Shue, Worcester, MA (US); and Lane Harrison, Worcester, MA (US)
Assigned to Worcester Polytechnic Institute, Worcester, MA (US)
Filed by Worcester Polytechnic Institute, Worcester, MA (US)
Filed on Sep. 16, 2022, as Appl. No. 17/946,595.
Claims priority of provisional application 63/245,524, filed on Sep. 17, 2021.
Prior Publication US 2023/0086957 A1, Mar. 23, 2023
Int. Cl. H04L 9/40 (2022.01); G06F 21/53 (2013.01)
CPC H04L 63/20 (2013.01) [G06F 21/53 (2013.01)] 20 Claims
OG exemplary drawing
 
1. A method to provide isolated access to an asset by a server device, comprising:
establishing a first secure environment with a client device, the first secure environment having an associated server asset policy, the server asset policy defining at least one restriction on utilization of the asset by the client device;
providing the asset to the client device via the first secure environment;
receiving a request from the client device, via the first secure environment, to utilize the asset with a user-selected application according to a user-selected asset policy, the user-selected asset policy defining a change to the server asset policy, the user-selected asset policy selected by a user of the client device from changed server asset policies provided by the server device;
establishing a second secure environment with the client device, the second secure environment having the user-selected application and the associated user-selected asset policy and the second secure environment isolated from the first secure environment; and
providing the asset to the client device via the second secure environment.