Method and system for extracting application protocol characteristics
First Claim
1. A method executed on a gateway device for defining a set of allowable actions that may be taken by a client in communication with an application program residing on a server, the method comprising:
- receiving a server communication addressed to the client;
extracting application protocol data from the server communication to determine the set of allowable actions which may be taken in response to the server communication, the set of allowable actions being for a particular communication session between the client and the application program residing on the server;
stripping communication protocol data from the server communication;
parsing the stripped communication protocol data to extract a network address of the client; and
storing the extracted application protocol data in a protocol database in association with the communication protocol data representing the network address of the client to thereby enable the particular communication session with the client.
1 Assignment
0 Petitions
Accused Products
Abstract
A method and computer program for automatically and continually extracting application protocols (i.e., defining a set of allowable or authorized actions) for any application. The method involves receiving a message from a server before it is sent or in parallel with sending to a client. The message may be in response to a specific request for it from the client. The program then extracts the application protocol data from the server message. Working with a copy of the message, the program strips off the communications protocol(s) from the message and parses the remaining message to identify user-selectable options contained in the message such as commands, fields, etc. These items represent the set of allowable or authorized user actions for the particular “stage” of the current version of the application as set forth in the message. The set of allowable user actions is then stored by the extraction program in a protocol database accessible to a gateway or filter module.
45 Citations
20 Claims
-
1. A method executed on a gateway device for defining a set of allowable actions that may be taken by a client in communication with an application program residing on a server, the method comprising:
-
receiving a server communication addressed to the client; extracting application protocol data from the server communication to determine the set of allowable actions which may be taken in response to the server communication, the set of allowable actions being for a particular communication session between the client and the application program residing on the server; stripping communication protocol data from the server communication; parsing the stripped communication protocol data to extract a network address of the client; and storing the extracted application protocol data in a protocol database in association with the communication protocol data representing the network address of the client to thereby enable the particular communication session with the client. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8)
-
-
9. A computer-readable storage medium having instructions stored thereon that when executed by a computer causes the computer to:
-
receive a server communication addressed to a client; extract application protocol data from the server communication to determine a set of allowable actions which may be taken in response to the server communication, the set of allowable actions being for a particular communication session between the client and the server; strip communication protocol data from the server communication; parse the stripped communication protocol data to extract a network address of the client; and store the extracted application protocol data in a protocol database in association with the communication protocol data representing the network address of the client to thereby enable the particular communication session with the client. - View Dependent Claims (10, 11, 12)
-
-
13. A communication system comprising:
-
a server having an application stored thereon for use by a client; a protocol extraction module for extracting application protocol data for a plurality of protocols from a message sent by the server to the client, after stripping communication protocol data from the message, wherein the extracted application protocol data include a hyperlink; a protocol database for storing the extracted application protocol data; and a filter module for selectively allowing actions by the client in communication with the application, the allowed actions being based on the application protocol data stored on the protocol database. - View Dependent Claims (14, 15, 19)
-
-
16. A computing apparatus, that includes computer hardware modules to perform actions for defining a set of actions by a client, comprising:
-
a protocol extraction module that extracts application protocol data in real-time for a particular communication session between the client and an application residing on a server, the application protocol data being extracted for a plurality of protocols from a message sent by the server to the client, after stripping communication protocol data from the message, wherein the extracted application protocol data include a hyperlink; a protocol database that stores the extracted application protocol data; and a filter module that selectively allows the actions by the client in communication with the application, the allowed actions being based on the application protocol data stored on the protocol database. - View Dependent Claims (17, 18, 20)
-
Specification