Patent · US Active

Scripting attack detection and mitigation using content security policy violation reports

US11997118B1 · kind B1 · utility

0Cited by

2References

20Claims

0Family size

Assignee

Intuit Inc. · US

Inventors

Siddhesh Yawalkar · Sunnyvale, US
Hemant Puri · Milpitas, US
Swapnil Bhalode · San Jose, US
Sandeep Bhatkar · Sunnyvale, US
Anant Agrawal · Cupertino, US
Sangam Shankar · Mumbai, IN
Gabe Gallagher · San Diego, US
Erick D. Lee · Santa Clara, US

Key dates

Filing date	Jul 24, 2023
Grant date	May 28, 2024
Priority date	—
Expiry date	Jul 24, 2043

Classification

Technology area (CPC H)Electricity
CPC primaryH04L63/20
WIPO fieldDigital communication
WIPO sectorElectrical engineering

Abstract

Certain aspects of the present disclosure provide techniques for Scripting attack detection and mitigation. A method generally includes receiving a first report indicating a first violation for a first security policy applied to a first web application; identifying a first plurality of features associated with the first violation; classifying the first violation as a first JavaScript attack based on the first plurality of features; and taking action to mitigate the first JavaScript attack on the first web application.

Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.