×

Browser protection module

  • US 8,239,939 B2
  • Filed: 06/27/2006
  • Issued: 08/07/2012
  • Est. Priority Date: 07/15/2005
  • Status: Active Grant
First Claim
Patent Images

1. A computer-implementable method comprising:

  • receiving code, at a firewall device, from a server in response to a user request, the code including mark-up language code and script code;

    prior to runtime execution, employing a first translation function and a second translation function to transform the code to prevent exploitation of vulnerabilities of a web browser application, wherein;

    the first translation function;

    parses the mark-up language code;

    identifies one or more first order exploits in the parsed mark-up language code; and

    removes the one or more first order exploits identified; and

    the second translation function;

    parses the script code;

    identifies one or more second order exploits in the parsed script code; and

    inserts one or more checks configured to virtualize the one or more second order exploits identified at runtime execution by modifying statements and expressions in the script code; and

    providing the transformed code to a client device that applies the first translation function to new mark-up language code during runtime execution based on the one or more checks inserted, and applies the second translation function to incoming script code during runtime execution based on the one or more checks inserted, to ensure runtime safety.

View all claims
  • 2 Assignments
Timeline View
Assignment View
    ×
    ×