Selective filtering of network traffic requests
First Claim
1. A method of selectively filtering network traffic, comprising:
- receiving, on a client computing device, an initial request for network-accessible content generated by a networking program on said client computing device;
determining whether said initial request is allowable by a filtering service on said client computing device that is configured to monitor said networking program;
generating, by said filtering service, a special identifier corresponding to said initial request if said initial request is allowable with reference to a filtering policy;
passing, by said filtering service, identifier to an application or object installed on said client computing device that is configured to intercept requests for network-accessible content generated by said networking program and to include said special identifier corresponding to said initial request in subsequent requests for network-accessible content intercepted from said networking program which are related to said initial request for network-accessible content;
receiving, at said filtering service, a subsequent request for network-accessible content generated by said networking program; and
allowing, by said filtering service, said subsequent request without reference to said filtering policy if said subsequent request includes said special identifier corresponding to said initial request.
2 Assignments
0 Petitions
Accused Products
Abstract
Several approaches to selectively filtering network traffic are described. One approach involves a system for selectively filtering network traffic. The system includes a helper application, which is coupled to a networking program, and is used to identify a user-initiated request. A network filter driver is coupled to the networking program, for intercepting the user-initiated request. A filtering service is coupled to both the helper application and the network filter driver, and is used to determine if the user-initiated request is allowable. If the request is allowable, the filtering service is configured to generate a special identifier, which the helper application is configured to include in a subsequent request. The filtering service is configured to allow a subsequent request which includes the special identifier, and the network filter driver'"'"'s configured to strip a special identifier from subsequent requests.
26 Citations
20 Claims
-
1. A method of selectively filtering network traffic, comprising:
-
receiving, on a client computing device, an initial request for network-accessible content generated by a networking program on said client computing device; determining whether said initial request is allowable by a filtering service on said client computing device that is configured to monitor said networking program; generating, by said filtering service, a special identifier corresponding to said initial request if said initial request is allowable with reference to a filtering policy; passing, by said filtering service, identifier to an application or object installed on said client computing device that is configured to intercept requests for network-accessible content generated by said networking program and to include said special identifier corresponding to said initial request in subsequent requests for network-accessible content intercepted from said networking program which are related to said initial request for network-accessible content; receiving, at said filtering service, a subsequent request for network-accessible content generated by said networking program; and allowing, by said filtering service, said subsequent request without reference to said filtering policy if said subsequent request includes said special identifier corresponding to said initial request. - View Dependent Claims (2, 3, 4, 5, 6, 7)
-
-
8. A system for selectively filtering network traffic, comprising:
-
a helper application on a client computing device, coupled to a networking program on said client computing device, for identifying a user-initiated request for network-accessible content generated by said networking program; and a filtering service on said client computing device, coupled to said helper application, for determining if said user-initiated request is allowable, wherein; said filtering service is configured to monitor said networking program on said client computing device, generate a special identifier corresponding to said user-initiated request if said user-initiated request is allowable with reference to a filtering policy, and pass said special identifier to said helper application; said helper application is configured to intercept requests for network-accessible content generated by said networking program and include said special identifier corresponding to said user-initiated request in subsequent requests for network accessible content intercepted from said networking program which are related to said user-initiated request; and said filtering service is configured to allow said subsequent request without reference to said filtering policy if said subsequent request includes said special identifier corresponding to said user-initiated request and instruct a network filter driver to remove said special identifier corresponding to said user-initiated request from said subsequent request. - View Dependent Claims (9, 10, 11, 12, 13)
-
-
14. A computer-readable storage medium storing computer-executable instructions that, when executed, cause a client computing device to perform steps comprising:
-
receiving a user-initiated request for network-accessible content generated by a networking program on said client computing device; determining whether said user-initiated request is allowable; generating an identifier corresponding to said user-initiated request if said user-initiated request is allowable with reference to a filtering policy; passing said identifier to an application or object installed on said client computing device that is configured to intercept requests for network-accessible content generated by said networking program and to include said identifier corresponding to said user-initiated request in subsequent request requests for network-accessible content intercepted from said networking program which are related to said user-initiated request; receiving a subsequent request for network-accessible content generated by said networking program; determining that said subsequent request includes said identifier corresponding to said user-initiated request; determining that said identifier corresponding to said user-initiated request is valid; and allowing said subsequent request, without reference to said filtering policy. - View Dependent Claims (15, 16, 17, 18, 19, 20)
-
Specification