White-list firewall based on the document object model
US8601565B1 · kind B1 · utility
Assignee
Inventors
Key dates
| Filing date | Jul 10, 2013 |
| Grant date | Dec 3, 2013 |
| Priority date | — |
| Expiry date | Jul 10, 2033 |
Classification
- Technology area (CPC G)Physics
- CPC primaryG06F21/606
- WIPO fieldComputer technology
- WIPO sectorElectrical engineering
Abstract
Some embodiments provide firewalls and methods for guarding against attacks by leveraging the Document Object Model (DOM). The firewall renders the DOM tree to produce a white-list rendering of the data which presents the non-executable elements of the data and, potentially, outputs of the executable elements of the data without the executable elements that could be used to carry a security threat. Some embodiments provide control over which nodes of the DOM tree are included in producing the white-list rendering. Specifically, a configuration file is specified to white-list various nodes from the DOM tree and the white-list rendering is produced by including the DOM tree nodes that are specified in the white-list of the configuration file while excluding those nodes that are not in the white-list. Some embodiments provide a hybrid firewall that executes a set of black-list rules over white-listed nodes of the DOM tree.
Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.