Computer security system and method based on user-intended final destination

US 10,320,746 B2
Filed: 09/19/2018
Issued: 06/11/2019
Est. Priority Date: 05/12/2014
Status: Active Grant

First Claim

Patent Images

1. A system for protecting applications and computing devices against malicious URL links, the system comprising:

a computing device comprising a processor and an associated memory;

a software application running on the computing device and comprising a link;

a communications network;

a final destination determination process; and

a user process for connecting the software application to a remote destination;

wherein the computing device is communicatively connected to the communications network;

wherein the final destination determination process identifies a final destination of the link;

wherein the user process connects to the final destination;

wherein the computing device provides a connect option that may be toggled between;

(i) a user-selectable instruction to follow a path to connect from the link to the final destination, wherein the path comprises one or more sites between the link and the final destination, or (ii) a user-selectable instruction to connect directly to the final destination without following the path.

View all claims

0 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A system and method is described for protecting applications against malicious URL links by identifying a final destination. The system and method also includes enabling a user process to directly connect to the final destination, bypassing the original URL altogether; thereby bypassing the hacker'"'"'s ability to use that URL to programmatically send the application to a malicious site.

18 Citations

View as Search Results

28 Claims

1. A system for protecting applications and computing devices against malicious URL links, the system comprising:
- a computing device comprising a processor and an associated memory;
  
  a software application running on the computing device and comprising a link;
  
  a communications network;
  
  a final destination determination process; and
  
  a user process for connecting the software application to a remote destination;
  
  wherein the computing device is communicatively connected to the communications network;
  
  wherein the final destination determination process identifies a final destination of the link;
  
  wherein the user process connects to the final destination;
  
  wherein the computing device provides a connect option that may be toggled between;
  
  (i) a user-selectable instruction to follow a path to connect from the link to the final destination, wherein the path comprises one or more sites between the link and the final destination, or (ii) a user-selectable instruction to connect directly to the final destination without following the path.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14)
- - 2. The system of claim 1, wherein the final destination is not an original URL of the link.
  - 3. The system of claim 1, wherein the computing device automatically transmits the link to the final destination determination process.
  - 4. The system of claim 1, wherein the final destination determination process is installed on a second computing device.
  - 5. The system of claim 1, wherein the user process connects directly to the final destination if the user selects a connect option.
  - 6. The system of claim 1, wherein the software application comprises a web browser, an e-mail application, a text message application, an instant message application, a chat application, a web application, a client-side application, a social media application, or any other software application capable of displaying a link that is selectable to connect to the remote destination.
  - 7. The system of claim 1, further comprising a display communicatively connected to the computing device;
    - and wherein the display shows the final destination.
  - 8. The system of claim 1, wherein the final destination determination process and the user process are merged together into a single process.
  - 9. The system of claim 7, wherein the display shows a connect option, wherein the user process connects to the final destination when the connect option is selected and does not connect to the final destination if the connect option is not selected.
  - 10. The system of claim 1, wherein the computing device or a device that is connected to the computing device provides an audible or visual representation of the final destination, wherein the representation comprises at least one of a hyperlink, a URL, a domain name, or a name of an owner of the final destination.
  - 11. The system of claim 1, wherein the link is automatically transmitted to the final destination determination process before being displayed on a display that is communicatively connected to the computing device.
  - 12. The system of claim 1, wherein the computing device transmits the link to the final destination determination process when the user selects the link using a user input device, wherein the final destination determination process is remotely located from the computing device.
  - 13. The system of claim 1, wherein the user process bypasses connections to all other remote destinations in a path associated with the link when the user process directly connects to the final destination.
  - 14. The system of claim 1, wherein the final destination determination process transmits the final destination of the link to the computing device.

15. A system for protecting applications and computing devices against malicious URL links, the system comprising:
- a computing device comprising a processor and an associated memory;
  
  a software application running on the computing device and comprising a link;
  
  a display communicatively connected to the computing device;
  
  a user input device communicatively connected to the computing device;
  
  a communications network;
  
  a final destination determination process; and
  
  a user process for connecting the software application to a remote destination via the communications network;
  
  wherein the computing device is communicatively connected to the communications network;
  
  wherein the final destination determination process identifies a final destination;
  
  wherein the final destination of the link is shown on the display upon selection of the link;
  
  wherein a user makes a user selection using the user input device to produce an instruction to connect to the final destination or declines to connect to the final destination based on the final destination shown by the display;
  
  wherein the computing device allows or disallows a connection to the final destination based on the instruction;
  
  wherein the computing device provides a connect option that may be toggled between;
  
  (i) a user-selectable instruction to follow a path to connect from the link to the final destination, wherein the path comprises one or more sites between the link and the final destination, or (ii) a user-selectable instruction to connect directly to the final destination without following the path.
- View Dependent Claims (16, 17, 18, 19, 20, 21, 22, 23, 24, 25, 26, 27)
- - 16. The system of claim 15, wherein the final destination is not an original URL of the link.
  - 17. The system of claim 15, wherein the computing device automatically transmits the link to the final destination determination process.
  - 18. The system of claim 15, wherein the final destination determination process is installed on a second computing device.
  - 19. The system of claim 15, wherein the user process is installed on the computing device and connects directly to the final destination if the user selects a connect option.
  - 20. The system of claim 15, wherein the software application comprises a web browser, an e-mail application, a text message application, an instant message application, a chat application, a web application, a client-side application, a social media application, or any other software application capable of displaying a link that is selectable to connect to the remote destination.
  - 21. The system of claim 15, wherein the display shows a connect option, wherein the user process connects to the final destination when the connect option is selected and does not connect to the final destination if the connect option is not selected.
  - 22. The system of claim 15, wherein the display shows a connect option or a block option, wherein the user process connects to the final destination when the connect option is selected and blocks connection to the final destination if the block option is selected.
  - 23. The system of claim 15, wherein the display provides a representation of the final destination, wherein the representation comprises at least one of a hyperlink, a URL, a domain name, or a name of an owner of the final destination.
  - 24. The system of claim 15, wherein the link is automatically transmitted to the final destination determination process before being displayed on the display.
  - 25. The system of claim 15, wherein the computing device transmits the link to the final destination determination process when the user selects the link using the user input device.
  - 26. The system of claim 15, wherein the user process bypasses connections to all other remote destinations in a path associated with the link when the user process directly connects to the final destination.
  - 27. The system of claim 15, wherein the final destination determination process transmits the final destination of the link to the computing device.

28. A method for protecting applications and computing devices against malicious URL links, the method comprising the steps of:
- (a) protecting a software application and a computing device against malicious URL links using a system comprising;
  
  (i) the computing device, which comprises a processor and an associated memory;
  
  (ii) the software application, which runs on the computing device and comprises a link;
  
  (iii) a communications network;
  
  (iv) a final destination determination process; and
  
  (v) a user process for connecting the software application to a remote destination;
  
  wherein the computing device is communicatively connected to the communications network;
  
  (b) using the final destination determination process, identifying a final destination of the link; and
  
  (c) using the user process, connecting to the final destination;
  
  wherein the computing device provides a connect option that may be toggled between;
  
  (i) a user-selectable instruction to follow a path to connect from the link to the final destination, wherein the path comprises one or more sites between the link and the final destination, or (ii) a user-selectable instruction to connect directly to the final destination without following the path.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Michael C. Wood
Original Assignee
Michael C. Wood
Inventors
Wood, Michael C.
Primary Examiner(s)
Su, Sarah

Application Number

US16/135,810
Publication Number

US 20190020625A1
Time in Patent Office

265 Days
Field of Search
US Class Current
CPC Class Codes

H04L 2101/622   Layer-2 addresses, e.g. med...

H04L 45/66   Layer 2 routing, e.g. in Et...

H04L 61/4511   using domain name system [DNS]

H04L 61/5038   for local use, e.g. in LAN ...

H04L 61/5069   for group communication, mu...

H04L 63/0227   Filtering policies mail mes...

H04L 63/0236   Filtering by address, proto...

H04L 63/101   Access control lists [ACL]

H04L 63/1408   by monitoring network traff...

H04L 63/168   above the transport layer

H04L 67/02   based on web technology, e....

H04L 67/12   specially adapted for propr...

Computer security system and method based on user-intended final destination

First Claim

0 Assignments

0 Petitions

Accused Products

Abstract

18 Citations

28 Claims

Specification

Solutions

Use Cases

Quick Links

Computer security system and method based on user-intended final destination

First Claim

0 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

18 Citations

28 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links