User session dependent URL masking
First Claim
Patent Images
1. A method, comprising:
- intercepting web content to be displayed in a web page by a browser client;
analyzing, by a processor, the web content for one or more references within the web content, the references being one or more Uniform Resource Locators (URLs);
during a first session, selecting a first set of masking parameters from a masking parameter queue based on one or more static or transient parameters;
editing the web content by masking a reference with the selected first set of masking parameters, the masked reference to be displayed in the web page by the browser client;
during a second session, selecting a second set of masking parameters from the masking parameter queue based on one or more of the static or transient parameters, wherein the first and second sets of masking parameters include at least one different type of parameter; and
editing the web content by masking a second reference with the selected second set of masking parameters, the second masked reference to be displayed in a second web page by the browser client, wherein within each respective session, each occurrence of a same URL with the web content is masked in a different manner than other versions of the same URL in the web content.
25 Assignments
0 Petitions
Accused Products
Abstract
The present invention is directed toward a method, device, and system for enhancing web security by masking a URL embedded in at least some portion of web content. A session dependent URL is generated and masked on a server side prior to being distributed to a customer for viewing. The session dependent URL is only active during the session in which it was generated. After the session has ended information relating to the session, web content, and masking of the URL is purged from memory.
24 Citations
22 Claims
-
1. A method, comprising:
-
intercepting web content to be displayed in a web page by a browser client; analyzing, by a processor, the web content for one or more references within the web content, the references being one or more Uniform Resource Locators (URLs); during a first session, selecting a first set of masking parameters from a masking parameter queue based on one or more static or transient parameters; editing the web content by masking a reference with the selected first set of masking parameters, the masked reference to be displayed in the web page by the browser client; during a second session, selecting a second set of masking parameters from the masking parameter queue based on one or more of the static or transient parameters, wherein the first and second sets of masking parameters include at least one different type of parameter; and editing the web content by masking a second reference with the selected second set of masking parameters, the second masked reference to be displayed in a second web page by the browser client, wherein within each respective session, each occurrence of a same URL with the web content is masked in a different manner than other versions of the same URL in the web content. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12)
-
-
13. An information server, comprising:
-
an input operable to receive a request from a client for Web content to be displayed in a web page by a browser client, the Web content comprising at least one reference to further Web content; a URL manager that intercepts the web content to be displayed in the web page by the browser client and analyzes the web content for one or more references within the web content, the references being one or more Uniform Resource Locators (URLs); a reference manager and processor operable to select a first set of parameters from a masking parameter queue based on one or more static or transient parameters for masking the at least one reference in the web page in a first session and a second set of parameters from the masking parameter queue based on one or more of the static or transient parameters, that includes at least one parameter that differs from the first set of parameters, for masking the at least one reference in a web page in a second session, wherein the reference manager is further operable to replace the at least one reference in the web page with a masked version of the at least one reference, thus resulting in an altered Web content comprising the masked version of the at least one reference; and an output operable to distribute the altered Web content including the masked version of the at least one reference to the client for display by the browser client, wherein within each respective session, each occurrence of a same URL with the web content is masked in a different manner than other versions of the same URL in the web content. - View Dependent Claims (14, 15, 16, 17, 18, 19, 20, 21, 22)
-
Specification