CROSS-DOMAIN ACCESS PREVENTION
First Claim
1. A method comprising:
- detecting a request from a first domain to access a second domain;
applying cross-domain access heuristics to determine whether to allow the request, the cross-domain access heuristics defining common ownership characteristics between the first domain and the second domain;
performing the requested access in response to determining that the request complies with at least one of the cross-domain access heuristics; and
blocking the requested access in response to determining that the request fails to comply with the cross-domain access heuristics.
7 Assignments
0 Petitions
Accused Products
Abstract
A method, system, and computer program product for cross-domain access prevention are provided. The method includes detecting a request from a first domain to access a second domain, and applying cross-domain access heuristics to determine whether to allow the request. The cross-domain access heuristics define common ownership characteristics between the first domain and the second domain. The method further includes performing the requested access in response to determining that the request complies with at least one of the cross-domain access heuristics, and blocking the requested access in response to determining that the request fails to comply with the cross-domain access heuristics.
-
Citations
20 Claims
-
1. A method comprising:
-
detecting a request from a first domain to access a second domain; applying cross-domain access heuristics to determine whether to allow the request, the cross-domain access heuristics defining common ownership characteristics between the first domain and the second domain; performing the requested access in response to determining that the request complies with at least one of the cross-domain access heuristics; and blocking the requested access in response to determining that the request fails to comply with the cross-domain access heuristics. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9)
-
-
10. A system comprising:
-
a processing system configured to receive content from a first domain; and a cross-domain access filter executing on the processing system, the cross-domain access filter performing; detecting a request from the first domain to access a second domain; applying cross-domain access heuristics to determine whether to allow the request, the cross-domain access heuristics defining common ownership characteristics between the first domain and the second domain; performing the requested access in response to determining that the request complies with at least one of the cross-domain access heuristics; and blocking the requested access in response to determining that the request fails to comply with the cross-domain access heuristics. - View Dependent Claims (11, 12, 13, 14)
-
-
15. A computer program product comprising:
a storage medium readable by a processing unit and storing instructions for execution by the processing unit for implementing a method, the method comprising; detecting a request from a first domain to access a second domain; applying cross-domain access heuristics to determine whether to allow the request, the cross-domain access heuristics defining common ownership characteristics between the first domain and the second domain; performing the requested access in response to determining that the request complies with at least one of the cross-domain access heuristics; and blocking the requested access in response to determining that the request fails to comply with the cross-domain access heuristics. - View Dependent Claims (16, 17, 18, 19, 20)
Specification