Securely serving results of dynamic user-provided code over the web
US9826017B1 · kind B1 · utility
Assignee
Inventor
Key dates
| Filing date | Mar 8, 2013 |
| Grant date | Nov 21, 2017 |
| Priority date | — |
| Expiry date | Apr 30, 2034 |
Classification
- Technology area (CPC H)Electricity
- CPC primaryH04L67/568
- WIPO fieldDigital communication
- WIPO sectorElectrical engineering
Abstract
The disclosure relates to a system and method where a first user may submit untested or unverified code to a first server, which code may be accessed by a user via a browser. The first server provides results of the executed code to a second server via a redirect request. The redirected output is then sent from the second server back to the user's browser. For example, the results of the executed code can be returned to the user immediately without storage, such that malicious code embedded in a result of the executed code cannot access domain resources from the same domain as a URL associated with the executed code, and only the user requesting execution of the code can see the result.
Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.