Safe mode for inverse query evaluations
US7899817B2 · kind B2 · utility
Assignee
Inventors
Key dates
| Filing date | Oct 5, 2005 |
| Grant date | Mar 1, 2011 |
| Priority date | — |
| Expiry date | Apr 2, 2026 |
Classification
- Technology area (CPC G)Physics
- CPC primaryG06F16/8373
- WIPO fieldComputer technology
- WIPO sectorElectrical engineering
Abstract
Embodiments herein prevent or mitigate attacks on inverse query engines by providing safe mode routines that allow for the acceptance of third party messages and/or query expressions, as well as prevent trusted sources from accidental attacks. The mitigations fall into two categories: compile-time and runtime. Compile-time mitigations prevent query expressions from being accepted and compiled that are susceptible to known attacks. For example, the complexity of query expressions may be limited to functions with linear runtimes; constant memory usage; or ones that do not create large strings. Further, language constructs for the criteria in the query expression may not allow for nested predicates complexities. Runtime mitigations, on the other hand, monitor the data size and processing lengths of messages against the various query expressions. If these runtime quotas are exceeded, an exception or other violation indication may be thrown (e.g., abort), deeming the evaluation as under attack.
Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.