Preventing URL confusion attacks
US9602520B2 · kind B2 · utility
Assignee
Inventors
Key dates
| Filing date | Nov 4, 2015 |
| Grant date | Mar 21, 2017 |
| Priority date | — |
| Expiry date | Nov 4, 2035 |
Classification
- Technology area (CPC H)Electricity
- CPC primaryH04L67/02
- WIPO fieldDigital communication
- WIPO sectorElectrical engineering
Abstract
Methods and apparatus are disclosed for detecting illegitimate or spoofed links on a web page. Illegitimate links can be detected by receiving a web link that includes link text and a link address, generating normalized link text based upon the link text, wherein characters in the link text that are visually similar are represented by a single normalized character identifier in the normalized text, determining whether the normalized link text is in the format of a link address, and determining that the text is safe when the normalized link text is not in the format of a link address. The techniques disclosed herein further involve determining whether the normalized link text matches the link address, determining that the text is safe when the normalized link text matches the link address, and determining that the text is unsafe when the normalized link text does not match the link address.
Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.