System, method and computer program product for publishing non-malicious third party content to a data feed

US 9,148,438 B2
Filed: 05/06/2013
Issued: 09/29/2015
Est. Priority Date: 06/25/2012
Status: Active Grant

First Claim

Patent Images

1. A computer program product, comprising a non-transitory computer usable medium having a computer readable program code embodied therein, the computer readable program code adapted to be executed by a computer to implement a method, the method comprising:

receiving, by a first system providing a data feed as a service, a request to publish within the data feed to one or more users a link to content stored by a second system;

prior to publishing the link within the data feed, determining, by the first system, whether the content is at least potentially malicious, by applying at least one predefined rule to the link without retrieving the content from the second system;

when it is determined that the content is not at least potentially malicious, publishing the link within the data feed, by the first system, for allowing the one or more users to access the content from the second system via selection of the link within the data feed; and

,when it is determined that the content is at least potentially malicious;

retrieving, by the first system, the content from the second system using the link,determining, by the first system, which portion of the retrieved content is at least potentially malicious,cleaning, by the first system, the portion determined to be at least potentially malicious,storing the cleaned content in memory of the first system,creating, by the first system, a new link to the stored cleaned content, andpublishing within the data feed, by the first system, the new link to the stored cleaned content.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

In accordance with embodiments, there are provided mechanisms and methods for publishing non-malicious third party content to a data feed. These mechanisms and methods for publishing non-malicious third party content to a data feed can provide analysis of third party content requested to be published to a data feed, which can be used to safeguard against the publication of malicious content to the data feed.

160 Citations

12 Claims

1. A computer program product, comprising a non-transitory computer usable medium having a computer readable program code embodied therein, the computer readable program code adapted to be executed by a computer to implement a method, the method comprising:
- receiving, by a first system providing a data feed as a service, a request to publish within the data feed to one or more users a link to content stored by a second system;
  
  prior to publishing the link within the data feed, determining, by the first system, whether the content is at least potentially malicious, by applying at least one predefined rule to the link without retrieving the content from the second system;
  
  when it is determined that the content is not at least potentially malicious, publishing the link within the data feed, by the first system, for allowing the one or more users to access the content from the second system via selection of the link within the data feed; and
  
  ,when it is determined that the content is at least potentially malicious;
  
  retrieving, by the first system, the content from the second system using the link,determining, by the first system, which portion of the retrieved content is at least potentially malicious,cleaning, by the first system, the portion determined to be at least potentially malicious,storing the cleaned content in memory of the first system,creating, by the first system, a new link to the stored cleaned content, andpublishing within the data feed, by the first system, the new link to the stored cleaned content.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9)
- - 2. The computer program product of claim 1, wherein the request is received from a user via a user device separate from the second system storing the content and the first system providing the data feed as the service.
  - 3. The computer program product of claim 1, wherein the request includes the link that references the content at the second system.
  - 4. The computer program product of claim 1, wherein determining by the first system whether the content is at least potentially malicious is responsive to one of the users requesting access to the data feed for consumption of content published therein.
  - 5. The computer program product of claim 1, wherein cleaning the portion of the content determined to be at least potentially malicious includes removing from the content the portion of the content determined to be at least potentially malicious.
  - 6. The computer program product of claim 1, wherein cleaning the portion of the content determined to be at least potentially malicious includes changing an aspect of the portion of the content determined to be at least potentially malicious.
  - 7. The computer program product of claim 1, wherein the first system stores the at least one predefined rule and executes code to apply the at least one predefined rule to the link without retrieving the content from the second system.
  - 8. The computer program product of claim 1, wherein the second system is a third party server of a content provider separate from the first system providing the data feed as the service.
  - 9. The computer program product of claim 8, wherein the first system providing the data feed as the service is a multi-tenant on-demand database system.

10. A method, comprising:
- receiving, by a first system providing a data feed as a service, a request to publish within the data feed to one or more users a link to content stored by a second system;
  
  prior to publishing the link within the data feed, determining, by the first system, whether the content is at least potentially malicious, by applying at least one predefined rule to the link without retrieving the content from the second system;
  
  when it is determined that the content is not at least potentially malicious, publishing the link within the data feed, by the first system, for allowing the one or more users to access the content from the second system via selection of the link within the data feed; and
  
  when it is determined that the content is at least potentially malicious;
  
  retrieving, by the first system, the content from the second system using the link,determining, by the first system, which portion of the retrieved content is at least potentially malicious,cleaning, by the first system, the portion determined to be at least potentially malicious,storing the cleaned content in memory of the first system,creating, by the first system, a new link to the stored cleaned content, andpublishing within the data feed, by the first system, the new link to the stored cleaned content.

11. An apparatus, comprising:
- a first system providing a data feed as a service and having a processor for;
  
  receiving, by the first system providing the data feed as the service, a request to publish within the data feed to one or more users a link to content stored by a second system;
  
  prior to publishing the link within the data feed, determining, by the first system, whether the content is at least potentially malicious, by applying at least one predefined rule to the link without retrieving the content from the second system;
  
  when it is determined that the content is not at least potentially malicious, publishing the link within the data feed, by the first system, for allowing the one or more users to access the content from the second system via selection of the link within the data feed; and
  
  when it is determined that the content is at least potentially malicious;
  
  retrieving, by the first system, the content from the second system using the link,determining, by the first system, which portion of the retrieved content is at least potentially malicious,cleaning, by the first system, the portion determined to be at least potentially malicious,storing the cleaned content in memory of the first system,creating, by the first system, a new link to the stored cleaned content, andpublishing within the data feed, by the first system, the new link to the stored cleaned content.
- View Dependent Claims (12)
- - 12. The system of claim 11, wherein the processor is coupled to memory via a bus.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Salesforce.com, Inc.
Original Assignee
Salesforce.com, Inc.
Inventors
Qureshi, Shozub, Hui, Man Lung, Thaxton, Carter
Primary Examiner(s)
Lipman, Jacob

Application Number

US13/888,294
Publication Number

US 20130347061A1
Time in Patent Office

876 Days
Field of Search

726/22
US Class Current

1/1
CPC Class Codes

G06F 21/50   Monitoring users, programs ...

H04L 63/0227   Filtering policies mail mes...

H04L 63/10   for controlling access to d...

H04L 63/14   for detecting or protecting...

H04L 63/1416   Event detection, e.g. attac...

System, method and computer program product for publishing non-malicious third party content to a data feed

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

160 Citations

12 Claims

Specification

Solutions

Use Cases

Quick Links

System, method and computer program product for publishing non-malicious third party content to a data feed

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

160 Citations

12 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links