PROTECTING END USERS FROM MALWARE USING ADVERTISING VIRTUAL MACHINE

US 20130160120A1
Filed: 12/20/2011
Published: 06/20/2013
Est. Priority Date: 12/20/2011
Status: Abandoned Application

First Claim

Patent Images

1. A method of providing advertisement (ad) security comprising at least the following steps implemented by a computer configured to browse content:

requesting content;

receiving the content and an ad or an ad call;

detecting the ad, or detecting the ad call and calling the ad;

performing the ad in a sandbox;

monitoring performance of the ad in the sandbox; and

reporting abusive performance of the ad to an ad database that receives reports of abusive performance of a plurality of ads from a plurality of computers configured to browse content.

View all claims

3 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

Techniques are disclosed for an AdVM (Advertising Virtual Machine) system, modules, components and methods that provide multiple layers of ad security for end-users. AdVM browsers isolate, monitor and restrict ads in sandboxes. AdVM browsers are configurable to monitor, report abuse and restrict ad performance based on configurable parameters such as system usage, security, privacy, inadvertent clicks, required ad ratings, permissions (whitelisting) and denials (blacklisting). AdVM browser abuse reports are used to generate profiles, whitelists and blacklists for ads, advertisers and other ad participants, which AdVM browsers use to allow or deny ad performances. Publishers assist AdVM browsers with ad detection by declaring ads in content. Ad security is improved by participation of advertisers, ad networks and an ad quality authority in creating trusted or rated ads that can be selected and verified over untrusted or unrated ads. Improving end-user trust in online advertising protects both end-users and legitimate online advertising.

Citations

21 Claims

1. A method of providing advertisement (ad) security comprising at least the following steps implemented by a computer configured to browse content:
- requesting content;
  
  receiving the content and an ad or an ad call;
  
  detecting the ad, or detecting the ad call and calling the ad;
  
  performing the ad in a sandbox;
  
  monitoring performance of the ad in the sandbox; and
  
  reporting abusive performance of the ad to an ad database that receives reports of abusive performance of a plurality of ads from a plurality of computers configured to browse content.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16)
- - 2. The method of claim 1, further comprising:
    - isolating the ad in a sandbox.
  - 3. The method of claim 2, further comprising:
    - configuring the sandbox.
  - 4. The method of claim 3, further comprising:
    - configuring the sandbox to automatically report abusive performance by the ad.
  - 5. The method of claim 3, further comprising:
    - configuring the sandbox to restrict performance of the ad.
  - 6. The method of claim 5, further comprising:
    - configuring the sandbox to restrict access by the ad to at least one of;
      
      cookies, a document object model (DOM), bandwidth, a processor, a memory.
  - 7. The method of claim 3, further comprising:
    - configuring the sandbox to prevent inadvertent clicking of the ad.
  - 8. The method of claim 3, further comprising:
    - configuring the sandbox to require the ad to be a trusted ad.
  - 9. The method of claim 8, further comprising:
    - configuring the sandbox to require the trusted ad to have at least one of a minimum, maximum and specific rating.
  - 10. The method of claim 9, wherein the at least one of a minimum, maximum and specific rating comprises at least one of content rating and quality rating.
  - 11. The method of claim 8, further comprising:
    - verifying the ad is a trusted ad by authenticating a digital signature of the ad.
  - 12. The method of claim 1, further comprising:
    - accessing a blacklist or a whitelist of at least one of ads, advertisers and domains maintained by the ad base;
      
      comparing the ad to the blacklist or whitelist; and
      
      using the blacklist or whitelist to, respectively, deny or allow performance of the ad based on the comparison.
  - 13. The method of claim 1, wherein an ad tag in the content marks the ad or the ad call and detecting the ad or the ad call comprises detecting the ad tag.
  - 14. The method of claim 1, wherein the method of providing ad security is provided by a browser application on the computer or a plug-in or an extension to the browser application on the computer.
  - 15. The method of claim 3, wherein placing the ad in a sandbox comprises wrapping the ad in a JavaScript function configured by the configuring of the sandbox.
  - 16. The method of claim 1, wherein the ad database receives reports of abusive performance of a plurality of ads from an ad testing computer.

17. A system for providing advertising security comprising:
- an ad testing computer that sandboxes ads during ad performance testing;
  
  a plurality of audience computers that sandbox ads during ad performance; and
  
  an ad database that receives reports of abusive performance of a plurality of ads from the ad testing computer and the plurality of audience computers.
- View Dependent Claims (18, 19, 20)
- - 18. The system of claim 17, further comprising:
    - a publishing computer that performs at least one of;
      
      declaring an ad zone in content to assist an audience computer in detecting and sandboxing the ad;
      
      requesting a trusted ad or rejecting an untrusted ad to be provided with the content;
      
      verifying an ad to be provided with the content is a trusted ad.
  - 19. The system of claim 17, further comprising:
    - an ad qualification computer that qualifies ads, wherein the plurality of audience computers are configurable to require qualified ads.
  - 20. The system of claim 17, further comprising:
    - an ad network computer configured to differentiate between and select among trusted and untrusted ads or rated and unrated ads in response to an ad call that specifies at least one of a trusted ad and an ad rating level.

21. A computer readable medium comprising computer-executable instructions for an advertising security module that, when executed by an audience computer, provides advertisement (ad) security for the audience computer comprising:
- permitting user configuration to selectively monitor performance of the ad and to report or restrict performance of the ad;
  
  detecting an ad or a call for the ad in publisher content;
  
  sandboxing the ad to create a sandboxed ad;
  
  executing the sandboxed ad; and
  
  monitoring performance of the ad and reporting or restricting performance of the sandboxed ad according to the configuration.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Oath Inc. (Verizon Communications Inc.)
Original Assignee
Yahoo! Inc. (Apollo Global Management, Inc.)
Inventors
Kamat, Gajendra Nishad, Malaviya, Paritosh

Application Number

US13/331,523
Publication Number

US 20130160120A1
Time in Patent Office

Days
Field of Search
US Class Current

726/23
CPC Class Codes

G06F 21/53   by executing in a restricte...

G06F 21/552   involving long-term monitor...

G06F 21/577   Assessing vulnerabilities a...

G06F 2221/2115   Third party

G06Q 30/0241   Advertisements

G06Q 30/0244   Optimization

G06Q 30/0248   Avoiding fraud

PROTECTING END USERS FROM MALWARE USING ADVERTISING VIRTUAL MACHINE

First Claim

3 Assignments

0 Petitions

Accused Products

Abstract

Citations

21 Claims

Specification

Solutions

Use Cases

Quick Links

PROTECTING END USERS FROM MALWARE USING ADVERTISING VIRTUAL MACHINE

First Claim

3 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

Citations

21 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links