Invention Grant
- Patent Title: Systems and methods for prevention of JSON attacks
- Patent Title (中): 防止JSON攻击的系统和方法
-
Application No.: US12645913Application Date: 2009-12-23
-
Publication No.: US09094435B2Publication Date: 2015-07-28
- Inventor: Craig Anderson , Anoop Reddy , Yariv Keinan
- Applicant: Craig Anderson , Anoop Reddy , Yariv Keinan
- Applicant Address: US FL Fort Lauderdale
- Assignee: CITRIX SYSTEMS, INC.
- Current Assignee: CITRIX SYSTEMS, INC.
- Current Assignee Address: US FL Fort Lauderdale
- Agency: Foley & Lardner LLP
- Agent Christopher J. McKenna
- Main IPC: G06F12/14
- IPC: G06F12/14 ; H04L29/06
Abstract:
Described herein is a method and system for prevention of personal computing attacks, such as JavaScript Objection Notation (JSON) attacks. An intermediary device is deployed between a plurality of clients and servers. A firewall executes on the intermediary device. A client sends a request to the server and the server sends a response to the request. The intermediary device intercepts the response and identifies that the response may contain possibly harmful content. The application firewall parses the content of the response and determines whether it contains any harmful content. If it does, the application firewall blocks the response from being sent to its destination. Additionally, the method and system can provide other security checks, such as content hijacking protection and data validation.
Public/Granted literature
- US20110154472A1 SYSTEMS AND METHODS FOR PREVENTION OF JSON ATTACKS Public/Granted day:2011-06-23
Information query
