Bitglass Bags Second Patent for Cloud Access Control

Enterprise Security Magazine | Friday, December 18, 2020

Bitglass has bagged U.S. Patent No. 10,855,671 for another fundamental invention in transparent, contextual access control of cloud services.

FREMONT, CA: Bitglass, the Total Cloud Security Company, secures U.S. Patent No. 10,855,671 for another fundamental invention in transparent, contextual access control of cloud services. The announcement comes based on a first foundational patent for contextual access control.

These inventions allow the transparent enforcement of contextual access control on cloud applications through a control point (CASB) inserted between an Application and an Identity Provider. In U.S. Patent No. 10,757,090, the insertion is in the order Application -> CASB -> IdP. In US Patent No. 10,855,671, the insertion is Application -> IdP -> CASB. Since their primary filings in August 2013, these patented inventions have been adopted extensively by other leading cloud security vendors seeking online security. They are now considered the industry standard for addressing business-vital security applications.

In U.S. Patent No. 10,855,671, once an Identity Provider has authenticated the user, the CASB decides the user's risk profile and decides the level of access to give. The CASB may allow direct access to the application, proxied, and managed access to the application with data and threat protection, or deny access altogether. In comparison, in U.S. Patent No. 10,757,090, the CASB intercedes between the application and the IdP and is aware of successful and unsuccessful login attempts, thereby enabling stronger anomaly identification Denial of Service protection.

The CASB platform can integrate with any IdP users in place and secure access to any cloud resource. Because this approach is cloud-native and requires no agents, it’s transparent to the end-user and guards any device, including employees’ endpoints. This patent firmly establishes that Bitglass invented the foundations of contextual access control for the cloud. This is why CASB remains the industry standard for organizations that need real-time security. This same CASB is now a part of the Secure Access Service Edge offering, along with the SmartEdge Secure Web Gateway and the real-time ZTNA.

Weekly Brief