Reputation based redirection service
First Claim
Patent Images
1. One or more computer-readable storage devices, storing processor-executable instructions that, when executed on a processor, configure a processor to perform acts for Uniform Resource Locator (URL) wrapping, the acts comprising:
- receiving an input of a URL for accessing a document available over a network;
determining a characteristic associated with the received URL;
creating a security hash based on the received URL and the characteristic associated with the received URL, wherein the characteristic comprises an identifier of a user who originally posted the received URL;
outputting a wrapped URL comprising the received URL, the characteristic associated with the received URL, and the security hash;
validating that the wrapped URL has not been tampered with based at least in part upon authenticating the wrapped URL with the security hash;
outputting a redirection decision, wherein if the received URL is invalid, abusive, or unknown, the redirection decision redirects a user to a web page; and
logging the redirection decision and click-through telemetry information associated with the web page.
2 Assignments
0 Petitions
Accused Products
Abstract
A reputation based redirection service is usable to build URL wrappers for un-trusted and unknown URLs. Such URL wrappers can be used to protect Web users by, for example, redirecting traffic to interstitial Web pages. Additionally, reputation decisions can be made by the service to further protect users from malicious URLs.
-
Citations
20 Claims
-
1. One or more computer-readable storage devices, storing processor-executable instructions that, when executed on a processor, configure a processor to perform acts for Uniform Resource Locator (URL) wrapping, the acts comprising:
-
receiving an input of a URL for accessing a document available over a network; determining a characteristic associated with the received URL; creating a security hash based on the received URL and the characteristic associated with the received URL, wherein the characteristic comprises an identifier of a user who originally posted the received URL; outputting a wrapped URL comprising the received URL, the characteristic associated with the received URL, and the security hash; validating that the wrapped URL has not been tampered with based at least in part upon authenticating the wrapped URL with the security hash; outputting a redirection decision, wherein if the received URL is invalid, abusive, or unknown, the redirection decision redirects a user to a web page; and logging the redirection decision and click-through telemetry information associated with the web page. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9)
-
-
10. A system for implementing a URL redirection service comprising:
-
memory and a processor; a policy module, stored in the memory and executable on the processor, configured to exclude URLs on a same network as the URL redirection service from the URL redirection service and to directly load a destination URL on the same network as the URL redirection service; a redirection server interface module, stored in the memory and executable on the processor, configured to receive a request for handling a wrapped URL comprising the destination URL, a characteristic of the destination URL, and a security hash; a URL validation/verification module, stored in the memory and executable on the processor, configured to verify that the received wrapped URL has not been tampered with based at least in part upon authenticating the wrapped URL with the security hash; a reputation lookup module, stored in the memory and executable on the processor, configured to determine a reputation rating for the destination URL; a redirection logic module, stored in the memory and executable on the processor, configured to output a confidence score and a redirection decision based on validity of the received wrapped URL, the reputation rating of the destination URL, and a characteristic of the destination URL; a telemetry service module, stored in the memory and executable on the processor, configured to receive click-through telemetry information from an interstitial page; and a logging module, stored in the memory and executable on the processor, configured to create a telemetry report based on the click-through telemetry information and a log report based on the redirection decision. - View Dependent Claims (11, 12, 13, 14, 15)
-
-
16. One or more computer-readable storage devices, storing processor-executable instructions that, when executed on a processor, configure the processor to perform acts for URL Web service calls, the acts comprising:
-
receiving a Web service call for a destination URL; creating a security hash based on the destination URL and a characteristic associated with the destination URL, wherein the characteristic comprises an identifier of a user who posted the destination URL; outputting a wrapped URL comprising the destination URL, the characteristic associated with the destination URL, and the security hash; validating that the wrapped URL has not been tampered with based at least in part upon authenticating the wrapped URL with the security hash; determining a redirection decision for the destination URL; outputting the redirection decision, wherein if the destination URL is invalid, abusive, or unknown, the redirection decision redirects a user to a web page; and logging the redirection decision and click-through telemetry information associated with the web page. - View Dependent Claims (17, 18, 19, 20)
-
Specification