Invention Grant
- Patent Title: Automatic code and data separation of web application
-
Application No.: US13921169Application Date: 2013-06-18
-
Publication No.: US09774620B2Publication Date: 2017-09-26
- Inventor: Weidong Ciu , Adam Loe Doupe , Mariusz H. Jakubowski , Marcus Peinado
- Applicant: Microsoft Technology Licensing, LLC
- Applicant Address: US WA Redmond
- Assignee: Microsoft Technology Licensing, LLC
- Current Assignee: Microsoft Technology Licensing, LLC
- Current Assignee Address: US WA Redmond
- Main IPC: H04L29/06
- IPC: H04L29/06
Abstract:
Aspects of the subject disclosure are directed towards detecting instances within a web application where code and data are not separated, e.g., inline code in the application. One or more implementations automatically transform the web application into a transformed version where code and data are clearly separated, e.g., inline code is moved into external files. The transformation protects against a large class of cross-site scripting attacks.
Public/Granted literature
- US20140373087A1 Automatic Code and Data Separation of Web Application Public/Granted day:2014-12-18
Information query
