Web content defacement protection system
First Claim
1. A machine-implemented method for Web content defacement protection, comprising:
- receiving Web content from an origin server at a Web cache server in a content delivery network (CDN) operated by a content delivery network service provider on behalf of a content owner who uses the CDN to serve said Web content from the origin server to requesting clients, wherein said Web content is associated with a digital signature;
decoding the digital signature at the Web cache server to obtain a supplied content validity value, wherein said supplied content validity value is associated with at least one portion of said Web content;
computing a determined content validity value for said at least one portion of said Web content;
determining whether said supplied content validity value and said determined content validity value are the same;
storing said Web content in a cache local to the Web cache server when said supplied content validity value and said determined content validity value are the same, the cache local to the Web cache server storing a plurality of content associated with a plurality of content owners using the CDN to serve the plurality of content to requesting clients;
in response to receiving a request for said Web content from a requesting client, retrieving said Web content from said cache local to the Web cache server, and delivering, by the Web cache server, said retrieved Web content to the requesting client;
taking an action other than storing said Web content in the cache local to the Web cache server for delivery to requesting clients, when said supplied content validity value and said determined content validity value are different;
wherein the content delivery network service provider receives information from the content owner that configures the action to be taken when said supplied content validity value and said determined content validity value are different.
2 Assignments
0 Petitions
Accused Products
Abstract
A method and mechanism for protecting a website against defacement are provided. A content owner may associate content with a digital signature. The digital signature allows a recipient of the content to verify that the content originated from the content owner, and that the content has not been defaced. The digital signature may be comprised within the content, or stored external to the content, e.g., in a repository accessible to a Web cache server serving the content. To construct the digital signature, initially, the content owner creates a content validity value for a portion of content, the content validity value is encrypted to create the digital signature. The Web cache server may use the digital signature to determine whether the content has been defaced.
56 Citations
46 Claims
-
1. A machine-implemented method for Web content defacement protection, comprising:
-
receiving Web content from an origin server at a Web cache server in a content delivery network (CDN) operated by a content delivery network service provider on behalf of a content owner who uses the CDN to serve said Web content from the origin server to requesting clients, wherein said Web content is associated with a digital signature; decoding the digital signature at the Web cache server to obtain a supplied content validity value, wherein said supplied content validity value is associated with at least one portion of said Web content; computing a determined content validity value for said at least one portion of said Web content; determining whether said supplied content validity value and said determined content validity value are the same; storing said Web content in a cache local to the Web cache server when said supplied content validity value and said determined content validity value are the same, the cache local to the Web cache server storing a plurality of content associated with a plurality of content owners using the CDN to serve the plurality of content to requesting clients; in response to receiving a request for said Web content from a requesting client, retrieving said Web content from said cache local to the Web cache server, and delivering, by the Web cache server, said retrieved Web content to the requesting client; taking an action other than storing said Web content in the cache local to the Web cache server for delivery to requesting clients, when said supplied content validity value and said determined content validity value are different; wherein the content delivery network service provider receives information from the content owner that configures the action to be taken when said supplied content validity value and said determined content validity value are different. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15)
-
-
16. An apparatus for Web content defacement protection, comprising:
-
one or more processors; memory storing instructions that, upon execution by the one or more processors, will cause the apparatus to perform the steps of; receiving Web content from an origin server at a Web cache server in a content delivery network (CDN) operated by a content delivery network service provider on behalf of a content owner who uses the CDN to serve said Web content from the origin server to requesting clients, wherein said Web content is associated with at least one digital signature; decoding the at least one digital signature at the Web cache server to obtain a supplied content validity value, wherein said supplied content validity value is associated with at least one portion of said Web content; computing a determined content validity value for said at least one portion of said Web content; determining whether said supplied content validity value and said determined content validity value are the same; storing said Web content in a cache local to the Web cache server when said supplied content validity value and said determined content validity value are the same, the cache local to the Web cache server storing a plurality of content associated with a plurality of content owners and used for delivery by the Web cache server to requesting clients; retrieving said Web content from said cache local to the Web cache server in response to the Web cache server receiving a request for said Web content from a client; delivering said retrieved Web content to the client taking an action other than storing said Web content in the cache local to the Web cache server for delivery to requesting clients, when said supplied content validity value and said determined content validity value are different; wherein the content delivery network service provider receives information from the content owner that configures the action to be taken when said supplied content validity value and said determined content validity value are different. - View Dependent Claims (17, 18, 19, 20, 21, 22, 23, 24, 25, 26, 27, 28, 29, 30, 31)
-
-
32. A non-transitory machine-readable medium carrying one or more sequences of instructions for performing Web content defacement protection, wherein execution of the one or more sequences of instructions by one or more processors causes the one or more processors to perform the steps of:
-
receiving Web content from an origin server at a Web cache server in a content delivery network (CDN) operated by a content delivery network service provider on behalf of a content owner who uses the CDN to serve said Web content from the origin server to requesting clients, wherein said Web content is associated with at least one digital signature; decoding the at least one digital signature at the Web cache server to obtain a supplied content validity value, wherein said supplied content validity value is associated with at least one portion of said Web content and; computing a determined content validity value for said at least one portion of said Web content; determining whether said supplied content validity value and said determined content validity value are the same; storing said Web content in a cache local to the Web cache server when said supplied content validity value and said determined content validity value are the same, the cache local to the Web cache server storing a plurality of content associated with a plurality of content owners and used for delivery by the Web cache server to requesting clients; in response to receiving a request for said Web content from a requesting client, retrieving said Web content from the cache local to the Web cache server;
delivering by the Web cache server said retrieved Web content to the requesting client;taking an action other than storing said Web content in the cache local to the Web cache server for delivery to requesting clients, when said supplied content validity value and said determined content validity value are different; wherein the content delivery network service provider receives information from the content owner that configures the action to be taken when said supplied content validity value and said determined content validity value are different. - View Dependent Claims (33, 34, 35, 36, 37, 38, 39, 40, 41, 42, 43, 44, 45, 46)
-
Specification