Advanced responses to online fraud
First Claim
1. A method of responding to a web site, the method comprising:
- receiving at a web server an electronic message comprising a uniform resource locator (“
URL”
) referencing a web site;
accessing the web site by the web server referenced by the URL;
downloading by the web server an online form provided by the web site, the online form comprising a plurality of fields configured to allow a user to provide information to the web site;
identifying by the web server a test on the web site, the test being designed to identify a user by reference to an electronic message transmitted by an operator of the web site and comprising a URL referencing the web site;
creating by the web server a set of safe data comprising a plurality of data elements, each of the data elements corresponding to one of the online form'"'"'s plurality of fields; and
ensuring by the web server that the set of safe data does not violate the test on the web site by identifying a user to whom the operator of the web site believes an electronic message was transmitted.
8 Assignments
0 Petitions
Accused Products
Abstract
Various embodiments of the invention provide solutions (including inter alia, systems, methods and software) for dealing with online fraud. In particular, various embodiments of the invention provide advanced responses to an identified instance of online fraud. Such advanced responses can incorporate one or more of a variety of strategies for defeating an attempt by a server to filter and/or otherwise avoid responses to its fraudulent activity. Merely by way of example, in accordance with some embodiments, one or more HTTP responses to a server'"'"'s request (such as an online form, etc.) may be submitted and/or transmitted for reception by the server. In some cases, each of the submitted responses may appear to comprise valid information responsive to the server'"'"'s request. In other cases, one or more countermeasures may be implemented to defeat an attempt by a phisher (or any other operator of an illegitimate server) to filter responses.
-
Citations
44 Claims
-
1. A method of responding to a web site, the method comprising:
-
receiving at a web server an electronic message comprising a uniform resource locator (“
URL”
) referencing a web site;accessing the web site by the web server referenced by the URL; downloading by the web server an online form provided by the web site, the online form comprising a plurality of fields configured to allow a user to provide information to the web site; identifying by the web server a test on the web site, the test being designed to identify a user by reference to an electronic message transmitted by an operator of the web site and comprising a URL referencing the web site; creating by the web server a set of safe data comprising a plurality of data elements, each of the data elements corresponding to one of the online form'"'"'s plurality of fields; and ensuring by the web server that the set of safe data does not violate the test on the web site by identifying a user to whom the operator of the web site believes an electronic message was transmitted. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8)
-
-
9. A method of analyzing an online form, the method comprising:
-
accessing a web site by a web server; downloading by the web server an online form from the web site, the online form comprising a plurality of fields corresponding to information requested by the web site; identifying by the web server an embedded test associated with the online form, the embedded test comprising executable code, wherein the embedded test is used by an operator of the web site to determine the validity of responses to the online form; analyzing by the web server the executable code to identify a response that conforms with the embedded test; and creating by the web server a set of safe data comprising a plurality of data elements, each of the data elements comprising information corresponding to one of the plurality of the online form'"'"'s fields, wherein at least one of the data elements comprises a response that conforms with the embedded test. - View Dependent Claims (10, 11, 12, 13, 14)
-
-
15. A computer system for responding to a web site, the computer system comprising a processor and a computer readable memory with instructions executable by the processor to:
-
receive an electronic message comprising a uniform resource locator (“
URL”
) referencing a web site;access the web site referenced by the URL; download an online form provided by the web site, the online form comprising a plurality of fields configured to allow a user to provide information to the web site; identify a test on the web site, the test being designed to identify a user by reference to an electronic message transmitted by an operator of the web site and comprising a URL referencing the web site; create a set of safe data comprising a plurality of data elements, each of the data elements corresponding to one of the online form'"'"'s plurality of fields; and ensure that the set of safe data does not violate the test on the web site by identifying a user to whom the operator of the web site believes an electronic message was transmitted. - View Dependent Claims (16, 17, 18, 19, 20)
-
-
21. A computer system for analyzing an online form, the computer system comprising a processor and a computer readable memory with instructions executable by the processor to:
-
access a web site; download an online form from the web site, the online form comprising a plurality of fields corresponding to information requested by the web site; identify an embedded test associated with the online form, the embedded test comprising executable code, wherein the embedded test is used by an operator of the web site to determine the validity of responses to the online form; analyze the executable code to identify a response that conforms with the embedded test; and create a set of safe data comprising a plurality of data elements, each of the data elements comprising information corresponding to one of the plurality of the online form'"'"'s fields, wherein at least one of the data elements comprises a response that conforms with the embedded test. - View Dependent Claims (22, 23, 24, 25, 26)
-
-
27. A software program embodied on a computer readable memory, the software program comprising instructions executable by one or more computers to:
-
receive an electronic message comprising a uniform resource locator (“
URL”
) referencing a web site;access the web site referenced by the URL; download an online form provided by the web site, the online form comprising a plurality of fields configured to allow a user to provide information to the web site; identify a test on the web site, the test being designed to identify a user by reference to an electronic message transmitted by an operator of the web site and comprising a URL referencing the web site; create a set of safe data comprising a plurality of data elements, each of the data elements corresponding to one of the online form'"'"'s plurality of fields; and ensure that the set of safe data does not violate the test on the web site by identifying a user to whom the operator of the web site believes an electronic message was transmitted. - View Dependent Claims (28, 29, 30, 31, 32, 33, 34, 35, 36)
-
-
37. A software program embodied on a computer readable memory, the software program comprising instructions executable by one or more computers to:
-
access a web site; download an online form from the web site, the online form comprising a plurality of fields corresponding to information requested by the web site; identify an embedded test associated with the online form, the embedded test comprising executable code, wherein the embedded test is used by an operator of the web site to determine the validity of responses to the online form; analyze the executable code to identify a response that conforms with the embedded test; and create a set of safe data comprising a plurality of data elements, each of the data elements comprising information corresponding to one of the plurality of the online form'"'"'s fields, wherein at least one of the data elements comprises a response that conforms with the embedded test. - View Dependent Claims (38, 39, 40, 41, 42)
-
-
43. A system, comprising:
-
means for receiving an electronic message comprising a uniform resource locator (“
URL”
) referencing a web site;means for accessing the web site referenced by the URL; means for downloading an online form provided by the web site, the online form comprising a plurality of fields configured to allow a user to provide information to the web site; means for identifying a test on the web site, the test being designed to identify a user by reference to an electronic message transmitted by an operator of the web site and comprising a URL referencing the web site; means for creating a set of safe data comprising a plurality of data elements, each of the data elements corresponding to one of the online form'"'"'s plurality of fields; and means for ensuring that the set of safe data does not violate the test on the web site by identifying a user to whom the operator of the web site believes an electronic message was transmitted.
-
-
44. A system, comprising:
-
means for accessing a web site; means for downloading an online form from the web site, the online form comprising a plurality of fields corresponding to information requested by the web site; means for identifying an embedded test associated with the online form, the embedded test comprising executable code, wherein the embedded test is used by an operator of the web site to determine the validity of responses to the online form; means for analyzing the executable code to identify a response that conforms with the embedded test; and means for creating a set of safe data comprising a plurality of data elements, each of the data elements comprising information corresponding to one of the plurality of the online form'"'"'s fields, wherein at least one of the data elements comprises a response that conforms with the embedded test.
-
Specification