Rule generalization for web application entry point modeling

Invention Grant

US08695083B2 Rule generalization for web application entry point modeling 有权

Title translation: Web应用程序入口点建模的规则泛化

Please log in to see more content

Patent Title: Rule generalization for web application entry point modeling
Patent Title (中): Web应用程序入口点建模的规则泛化
Application No.: US12827415

Application Date: 2010-06-30
Publication No.: US08695083B2

Publication Date: 2014-04-08
Inventor: Abhishek Chauhan , Rajiv Mirani , Prince Kohli , Priya Nanduri
Applicant: Abhishek Chauhan , Rajiv Mirani , Prince Kohli , Priya Nanduri
Applicant Address: unknown Fort Lauderdale
Assignee: Citrix Systems, Inc.
Current Assignee: Citrix Systems, Inc.
Current Assignee Address: unknown Fort Lauderdale
Agency: Foley & Lardner LLP
Agent Christopher J. McKenna
Main IPC: H04L29/06
IPC: H04L29/06

Rule generalization for web application entry point modeling

Abstract:

A security gateway receives messages, such as URL requests, rejected by a message filter based on a set of rules. The security gateway maintains frequencies with which the messages were rejected by the rules. The security gateway finds rejected messages having a high frequency of occurrence. Since messages having a high frequency of occurrences are more likely to represent legitimate requests rather than malicious attacks, the security gateway generates exception rules, which would allow similar messages to pass through the gateway.

Abstract(Chinese):

安全网关接收基于一组规则的消息过滤器拒绝的消息，例如URL请求。安全网关维护消息被规则拒绝的频率。安全网关发现具有高频率发生的被拒绝消息。由于具有高频率发生的消息更有可能代表合法请求而不是恶意攻击，因此安全网关将生成异常规则，这将允许类似的消息通过网关。

Public/Granted literature

US20100269170A1 RULE GENERALIZATION FOR WEB APPLICATION ENTRY POINT MODELING Public/Granted day:2010-10-21

Information query

Espacenet