Invention Grant
- Patent Title: Method and apparatus for security validation of user input
- Patent Title (中): 用户输入安全验证的方法和装置
-
Application No.: US13512642Application Date: 2010-11-05
-
Publication No.: US08826421B2Publication Date: 2014-09-02
- Inventor: Lin Luo , Fan Jing Meng , Shun Xiang Yang , Yu Zhang
- Applicant: Lin Luo , Fan Jing Meng , Shun Xiang Yang , Yu Zhang
- Applicant Address: US NY Armonk
- Assignee: International Business Machines Corporation
- Current Assignee: International Business Machines Corporation
- Current Assignee Address: US NY Armonk
- Agent Trentice V. Bolar
- Priority: CN200910247132 20091130
- International Application: PCT/EP2010/066917 WO 20101105
- International Announcement: WO2011/064081 WO 20110603
- Main IPC: G06F21/00
- IPC: G06F21/00 ; G06F21/55
Abstract:
According to embodiments of the present invention, a computing device provides a security rules subset of a server-side protection element to a pre-validation component deployed at a client side. The computing device validates the user input based on the security rules. The computing device determines, in response to detecting a user input violation and that a violated security rule has/or has not been provided to the pre-validation component, the user as a first or second class of users. The computing device performs different security protection actions to the first and second class of users. The computing device asynchronously performs a dynamic update to the security rule subset provided to the pre-validation component. The security rule subset is screened from the security rules of the server-side protection means. A policy for screening the security rule subset is selected.
Public/Granted literature
- US20120304249A1 METHOD AND APPARATUS FOR SECURITY VALIDATION Public/Granted day:2012-11-29
Information query
