METHOD AND APPARATUS FOR PROTECTING AGAINST ATTACKS FROM OUTSIDE CONTENT
First Claim
Patent Images
1. A method comprising:
- receiving a request from a user to access content from a second domain;
searching for an active session for the user with the second domain;
if no active session is found, then searching for an active session with a related first domain;
if an active session is found with the first domain, then establishing a session with the second domain based on the active session with the first domain; and
providing the requested content to the user based on the established session with the second domain.
1 Assignment
0 Petitions
Accused Products
Abstract
A method and apparatus for protecting against attacks from outside content is described. In one example, a request is received from a user to access content from a second domain. An active session for the user with the second domain is searched for. If no active session is found, then an active session with a related first domain is searched for. If an active session is found with the first domain, then a session is established with the second domain based on the active session with the first domain. The requested content is then provided to the user based on the established session with the second domain.
26 Citations
21 Claims
-
1. A method comprising:
-
receiving a request from a user to access content from a second domain; searching for an active session for the user with the second domain; if no active session is found, then searching for an active session with a related first domain; if an active session is found with the first domain, then establishing a session with the second domain based on the active session with the first domain; and providing the requested content to the user based on the established session with the second domain. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9)
-
-
10. An apparatus comprising:
an application server coupled to a first and a second database domain to receive a request from a user to access content from the second domain, the application server having a servlet to search for an active session for the user with the second domain, if no active session is found, then to search for an active session with a related first domain, and if an active session is found with the first domain, then to establishing a session with the second domain based on the active session with the first domain, the application server to provide the requested content to the user based on the established session with the second domain. - View Dependent Claims (11, 12, 13, 14)
-
15. A machine-readable medium carrying one or more sequences of instructions for providing content of a second domain from a first domain, which instructions, when executed by one or more processors, cause the one or more processors to carry out the steps of:
-
receiving a request from a user to access content from a second domain; searching for an active session for the user with the second domain; if no active session is found, then searching for an active session with a related first domain; if an active session is found with the first domain, then establishing a session with the second domain based on the active session with the first domain; and providing the requested content to the user based on the established session with the second domain. - View Dependent Claims (16, 17, 18)
-
-
19. An apparatus for providing content of a second domain from a first domain, the apparatus comprising:
-
a processor; and one or more stored sequences of instructions which, when executed by the processor, cause the processor to carry out the steps of; receiving a request from a user to access content from a second domain; searching for an active session for the user with the second domain; if no active session is found, then searching for an active session with a related first domain; if an active session is found with the first domain, then establishing a session with the second domain based on the active session with the first domain; and providing the requested content to the user based on the established session with the second domain. - View Dependent Claims (20, 21)
-
Specification