Method and system for preventing fraudulent activities
First Claim
1. A method including:
- monitoring downloaded documents to determine their source; and
, for each downloaded document, displaying a security indicator to indicate a security ranking based on the source of the document.
1 Assignment
0 Petitions
Accused Products
Abstract
A method and system to protect users against potentially fraudulent activities associated with spoof web sites are described. According to one aspect of the present invention, the URL of a document downloaded via a web browser client is compared to the URLs in a list of URLs for known spoof sites. If the URL for the downloaded document is found in the list of URLs for known spoof sites, a security indicator is displayed to the user to indicate to the user that the downloaded document is associated with a known spoof site. According to another aspect of the invention, a security server maintains a master black list and periodically communicates updates of the master black list to the local list of a client security application.
259 Citations
78 Claims
-
1. A method including:
-
monitoring downloaded documents to determine their source; and
,for each downloaded document, displaying a security indicator to indicate a security ranking based on the source of the document. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13)
-
-
14. A method including:
-
comparing a URL of a document downloaded by a user to a list of URLs for documents associated with known spoof sites; and
,displaying a security warning if the URL of the document downloaded by the user matches a URL from the list of URLs for documents associated with known spoof sites. - View Dependent Claims (15, 16, 17, 18, 19)
-
-
20. A method including:
-
comparing a URL of a document downloaded by a user to a list of URLs for documents associated with known trusted sites; and
,displaying a security indicator to indicate the document downloaded by the user is from a trusted site if the URL of the document downloaded by the user matches a URL from the list of URLs for documents associated with known trusted sites. - View Dependent Claims (21, 22, 23, 24, 25)
-
-
26. A method including:
-
comparing an IP address associated with a server from which a document was served to a list of IP addresses of servers associated with known trusted sites; and
,displaying a security indicator to indicate the server that served the document is associated with a trusted site if the IP address of the server from which the document was served matches an IP address from the list of IP addresses of servers associated with known trusted sites. - View Dependent Claims (27, 28, 29, 30, 31)
-
-
32. A method including:
-
communicating a URL associated with a downloaded document to a security server;
receiving, from the security server, a message indicating a security ranking for the downloaded document; and
,displaying a security indicator to indicate the security ranking for the downloaded document. - View Dependent Claims (33, 34, 35, 36)
-
-
37. A system including:
-
a list of URLs for documents associated with known spoof sites;
a URL comparator module to compare a URL of a document downloaded by a user to a list of URLs for documents associated with known spoof sites; and
,a display indicator module to display a security warning if the URL of the document downloaded by the user matches a URL from the list of URLs for documents associated with known spoof sites. - View Dependent Claims (38, 39, 40, 41)
-
-
42. A system including:
-
a list of URLs for documents associated with known trusted sites;
a URL comparator module to compare a URL of a document downloaded by a user to a list of URLs for documents associated with known trusted sites; and
,a display indicator module to display a security indicator to indicate the document downloaded by the user is from a trusted site if the URL of the document downloaded by the user matches a URL from the list of URLs for documents associated with known trusted sites. - View Dependent Claims (43, 44, 45, 46)
-
-
47. A system including:
-
a list of IP addresses for servers associated with known trusted sites;
an IP comparator module to compare an IP address of a server from which a document was served to the list of IP addresses for servers associated with known trusted sites; and
,a display indicator module to display a security indicator to indicate the server from which the document was served is a trusted site if the IP address of the server from which the document was served matches an IP address from the list of IP addresses of servers associated with known trusted sites. - View Dependent Claims (48, 49, 50, 51)
-
-
52. A system including:
-
a server communication interface to communicate a URL of a document downloaded by a user to a security server, the security server to;
receive the URL of the document downloaded by the user;
compare the URL of the document downloaded by the user to a list of URLs for documents associated with known spoof sites; and
,communicate a security ranking to the server communication interface, the security ranking based on the comparison of the URL of the document downloaded by the user to the list of URLs for documents associated with known spoof sites; and
,a display indicator module to display the security ranking. - View Dependent Claims (53)
-
-
54. A system including:
-
a server communication interface to communicate a URL of a document downloaded by a user to a security server, the security server to;
receive the URL of the document downloaded by the user;
compare the URL of the document downloaded by the user to a list of URLs for documents associated with known trusted sites; and
,communicate a security ranking to the server communication interface, the security ranking based on the comparison of the URL of the document downloaded by the user to the list of URLs for documents associated with known trusted sites; and
,a display indicator module to display the security ranking. - View Dependent Claims (55)
-
-
56. A system including:
-
a master list of URLs for documents associated with known spoof sites; and
,a client communication interface to automatically communicate the master list of URLs for documents associated with known spoof sites to a client application on a periodic basis. - View Dependent Claims (57, 58)
-
-
59. A system including:
-
a master list of URLs for documents associated with known trusted sites; and
,a client communication interface to automatically communicate the master list of URLs for documents associated with known trusted sites to a client application on a periodic basis. - View Dependent Claims (60, 61)
-
-
62. A system comprising:
-
a master list of URLs for documents associated with known spoof sites;
a client communication interface to receive, from a client, a URL of a document downloaded by a user;
a URL comparator module to compare the URL of the document downloaded by the user to the list of URLs for documents associated with known spoof sites, wherein the client communication interface communicates a security warning to the client to indicate the URL of the document downloaded by the user is associated with a known spoof site, if the URL of the document downloaded by the user matches a URL from the master list of URLs. - View Dependent Claims (63)
-
-
64. A system comprising:
-
a master list of URLs for documents associated with known trusted sites;
a client communication interface to receive, from a client, a URL of a document downloaded by a user;
a URL comparator module to compare the URL of the document downloaded by the user to the list of URLs for documents associated with known trusted sites, wherein the client communication interface communicates a security ranking to the client to indicate the URL of the document downloaded by the user is associated with a known trusted site, if the URL of the document downloaded by the user matches a URL from the master list of URLs. - View Dependent Claims (65)
-
-
66. A method including:
-
detecting when a user is submitting a password associated with a particular account to a server not associated with the particular account; and
,warning the user that the password associated with the particular account is being submitted to a server not associated with the particular account. - View Dependent Claims (67, 68)
-
-
69. A system including:
-
a password detection module to detect when a user is submitting a password associated with a particular account to a server that is not associated with the particular account; and
,a display indicator module to display a security warning when the user attempts to submit the password associated with the particular account to the server that is not associated with the particular account. - View Dependent Claims (70, 71)
-
-
72. A machine-readable medium embodying a sequence of instructions, the instructions, when executed by a machine, cause the machine to:
-
monitor downloaded documents to determine their source; and
,for each downloaded document, display a security indicator to indicate a security ranking based on the source of the document. - View Dependent Claims (73, 74, 75)
-
-
76. A system including:
-
means for receiving a list of URLs for documents associated with known spoof sites;
means for comparing a URL of a document downloaded by a user to the list of URLs for documents associated with known spoof sites; and
,means for displaying a security warning if the URL of the document downloaded by the user matches a URL from the list of URLs for documents associated with known spoof sites.
-
-
77. A system including:
-
means for receiving a list of URLs for documents associated with known trusted sites;
means for comparing a URL of a document downloaded by a user to the list of URLs for documents associated with known trusted sites; and
,means for displaying a security indicator to indicate the document downloaded by the user is from a trusted site if the URL of the document downloaded by the user matches a URL from the list of URLs for documents associated with known trusted sites.
-
-
78. A system including:
-
means for receiving a list of IP addresses of servers associated with known trusted sites;
means for comparing an IP address associated with a server from which a document was served to the list of IP addresses of servers associated with known trusted sites; and
,means for displaying a security indicator to indicate the server that served the document is associated with a trusted site if the IP address of the server from which the document was served matches an IP address from the list of IP addresses of servers associated with known trusted sites.
-
Specification