×

Endpoint segregation to prevent scripting attacks

  • US 10,044,728 B1
  • Filed: 07/06/2015
  • Issued: 08/07/2018
  • Est. Priority Date: 07/06/2015
  • Status: Active Grant
First Claim
Patent Images

1. A system, comprising:

  • a static content endpoint server implemented by one or more hardware computing devices, wherein the static content endpoint server is configured to;

    receive a content page request from a client application;

    generate a content page response to the content page request, wherein the content page response comprises a page including static content for the requested content page, an active content source reference that instructs the client application to download an active content loader from an active content endpoint, and a first policy setting that instructs the client application to not execute any active content for the content page unless a source of active content is the active content endpoint; and

    provide the content page response to the client application from a static content endpoint that is distinct from the active content endpoint;

    an active content endpoint server implemented by one or more hardware computing devices, wherein the active content endpoint server is configured to;

    receive a loader request from the client application for the active content loader, wherein the active content loader is configured to execute at the client application to download, from the active content endpoint, one or more active content files for active content specified for the content page and a filtering pipe for the active content specified for the content page, wherein the filtering pipe is configured to execute at the client application to filter parameters for methods of the active content files prior to the methods executing at the client application;

    generate a loader response to the loader request, wherein the loader response comprises the active content loader and a second policy setting that instructs the client application to not execute any active content for the content page unless a source of active content is the active content endpoint;

    provide the loader response to the client application from the active content endpoint;

    receive, from the active content loader at the client application, an active content request for the one or more active content files for active content specified for the content page;

    generate an active content response to the active content request, wherein the active content response comprises the one or more active content files and the second policy setting that instructs the client application to not execute any active content for the content page unless the source of the active content is the active content endpoint; and

    provide the active content response to the client application from the active content endpoint.

View all claims
  • 1 Assignment
Timeline View
Assignment View
    ×
    ×