Abstract: Disclosed embodiments relate to systems and methods for securing sensitive data during web sessions. Techniques include initiating, by a browser component executing on an endpoint device, a browser session associated with a user; monitoring, by the browser component, browser session data associated with the browser session, the browser session data being derived from one or more actions taken by the user; detecting at least one sensitive data element within the browser session data; determining whether the at least one sensitive data element triggers a control action; and based on a determination that the at least one sensitive data element triggers the control action, causing the control action to be performed.

Abstract: Disclosed embodiments relate to systems and methods for controlling web sessions. Techniques include identifying, by a browser component executing on an endpoint device, navigation by a user to a web application, the web application including at least one interface element; accessing, based on an identifier of the at least one interface element, at least one rule associated with the at least one interface element; identifying an interaction with the at least one interface element by the user; determining whether the interaction with the at least one interface element triggers the at least one rule; and based on a determination that the interaction with the at least one interface element triggers the at least one rule, causing a control action to be performed.

Abstract: Disclosed embodiments relate to systems and methods for detecting and addressing security risks in remote native access sessions. Techniques include identifying a remote native access session between a client and a target resource. The techniques may further include identifying connection data associated with the remote native access session obtained by a connection agent, wherein the connection data originates from the client and from a mobile device associated with a user, and comprises data indicative of at least one of: hardware of the client or mobile device, configuration settings of the client or mobile device, and network connection attributes of the client or mobile device. Techniques may further include comparing a first portion of the connection data associated with the client with a second portion of the connection data associated with the mobile device; and determining, based on the comparing, a security risk associated with the remote native access session.

Abstract: Disclosed embodiments relate to systems and methods for securely and seamlessly provisioning credentials for use by personal computing devices. Techniques include obtaining a session identifier; making available an encoded representation to a personal computing device, the encoded representation encoding the session identifier; wherein the personal computing device is configured to: decode the encoded representation, access an identity credential stored on the personal computing device, encrypt the identity credential using a first cryptographic key, and send, to a mediator resource, the session identifier and the encrypted identity credential; receiving, from the mediator resource, the session identifier and the encrypted identity credential; and storing the encrypted identity credential.

Abstract: Disclosed embodiments relate to systems and methods for securely and seamlessly provisioning credentials for use by personal computing devices. Techniques include obtaining a session identifier; making available an encoded representation to a personal computing device, the encoded representation encoding the session identifier; wherein the personal computing device is configured to: decode the encoded representation, access an identity credential stored on the personal computing device, encrypt the identity credential using a first cryptographic key, and send, to a mediator resource, the session identifier and the encrypted identity credential; receiving, from the mediator resource, the session identifier and the encrypted identity credential; and storing the encrypted identity credential.