Stateful application firewall
First Claim
Patent Images
1. A method of securing a network system comprising:
- receiving a request for content from an application server by a remote browser;
at an application firewall located between the application server and the remote browser comparing the request to a list of Uniform Resource Locators (URL'"'"'s) previously sent from the application server;
processing the request if a URL of the request is included in the list; and
performing a security evaluation of the request if the URL of the request is not included in the list.
1 Assignment
0 Petitions
Accused Products
Abstract
A method and system to protect web applications from malicious attacks is described. A stateful means of distinguishing between valid (e.g., harmless) and invalid (e.g., harmful) accesses is provided. A request from a content browser for content from an application server is forwarded by a firewall to the application server if it includes a URL that was previously transmitted from the application server. The firewall performs a security evaluation of the request if the URL of the request was not previously transmitted from the application server.
44 Citations
20 Claims
-
1. A method of securing a network system comprising:
-
receiving a request for content from an application server by a remote browser;
at an application firewall located between the application server and the remote browser comparing the request to a list of Uniform Resource Locators (URL'"'"'s) previously sent from the application server;
processing the request if a URL of the request is included in the list; and
performing a security evaluation of the request if the URL of the request is not included in the list. - View Dependent Claims (2, 3, 4)
-
-
5. A method of securing an application server comprising:
-
maintaining a list of Uniform Resource Locators (URL'"'"'s) sent from the application server;
receiving a Hyper Text Transfer Protocol (HTTP) request from a remote browser to access the application server;
at an application firewall located between the application server and the remote browser comparing the HTTP request to the list of URL'"'"'s; and
forwarding the HTTP request to the application server if the HTTP request contains a URL matching a URL of the list. - View Dependent Claims (6, 7, 8, 9)
-
-
10. An application firewall comprising:
a processor coupled to communicate with a content browser and coupled to communicate with an application server, wherein the processor maintains a list of Uniform Resource Locators (URL'"'"'s) sent from the application server, compares an HTTP request communicated from the content browser to the list of URL'"'"'s, and forwards the HTTP request to the application server if the HTTP request contains a URL matching a URL of the list. - View Dependent Claims (11, 12)
-
13. A method of securing a network system comprising:
-
receiving a request for content from an application server;
processing the request if a URL of the request was previously transmitted from the application server; and
performing a security evaluation of the request if the URL of the request was not previously transmitted from the application server. - View Dependent Claims (14, 15, 16)
-
-
17. A server comprising:
-
a network interface to interface the server to a network; and
a processor to;
maintain a list of Uniform Resource Locators (URL'"'"'s) sent from the application server;
receive a Hyper Text Transfer Protocol (HTTP) request from a remote browser to access the application server;
at an application firewall located between the application server and the remote browser, compare the HTTP request to the list of URL'"'"'s; and
forward the HTTP request to the application server if the HTTP request contains a URL matching a URL of the list. - View Dependent Claims (18, 19)
-
-
20. An application firewall comprising:
-
means for receiving a request for content from an application server;
means for comparing the request to a list of Uniform Resource Locators (URL'"'"'s) previously sent from the application server;
means for processing the request if a URL of the request is included in the list; and
means for performing a security evaluation of the request if the URL of the request is not included in the list.
-
Specification