×

Cross-site scripting prevention in dynamic content

  • US 8,910,247 B2
  • Filed: 10/06/2010
  • Issued: 12/09/2014
  • Est. Priority Date: 10/06/2010
  • Status: Active Grant
First Claim
Patent Images

1. A method in a computing environment utilizing a processor and memory for suppressing cross-site scripting in a content delivery system, the method comprising:

  • identifying, at a server, a scripted item within content requested by a user, at a user computing device;

    determining, at the server, the scripted item includes an identifier, wherein the identifier is able to be used to identify authorized scripting elements within the content;

    determining, at the server, the identifier is not an appropriate identifier; and

    in response to determining that the identifier is not an appropriate identifier, preventing communication of the scripted item to the user, wherein preventing communication of the scripted item to the user comprises at least one of;

    (1) altering the scripted item to prevent execution of the scripted item by a computing device associated with the user, or(2) removing the scripted item from the content.

View all claims
  • 3 Assignments
Timeline View
Assignment View
    ×
    ×