Patent · US Active

System and method for achieving system XSS prevention in componentized form

US12395518B1 · kind B1 · utility

0Cited by

3References

8Claims

0Family size

Assignee

Three Gorges Hi-Tech Information Technology Co., Ltd · CN

Inventors

Chen Zhang · Nanhu, CN
Yunpeng Chen · Mansfield, US
Xiaobo Li · Shanghai, CN
Shengshun Qiu · 红钢城街道, CN
Jiandong Wang · Shanghai, CN
Yi Yao · 红钢城街道, CN
Huizhi Qin · 红钢城街道, CN
Qingfeng Chen · Nanhu, CN
Huimin Xie · Xiamen, CN

Key dates

Filing date	Sep 11, 2024
Grant date	Aug 19, 2025
Priority date	—
Expiry date	Sep 11, 2044

Classification

Technology area (CPC H)Electricity
CPC primaryH04L63/306
WIPO fieldDigital communication
WIPO sectorElectrical engineering

Abstract

Disclosed are a system and a method for achieving system cross-site scripting (XSS) prevention in a componentized form. The system includes: a request message receiving module, configured to receive a request message; a thread data enable judgment module, configured to enable thread data to acquire a thread data enable state when judging that interception on the request message is required; an annotation retrieval and storage module, configured to store a preset filter annotation in a class of the request message in the thread data to acquire final thread data; a component creation module, configured to generate a XSS prevention component based on the thread data enable state and the final thread data; an intercept data determination module, configured to acquire intercepted request thread data based on the XSS prevention component; and an intercept prevention execution module, configured to delete the intercepted request thread data and return a request result.

Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.