Invention Grant
US07827311B2 Client side protection against drive-by pharming via referrer checking
有权
客户端通过引荐来源检查来防范驱动程序
- Patent Title: Client side protection against drive-by pharming via referrer checking
- Patent Title (中): 客户端通过引荐来源检查来防范驱动程序
-
Application No.: US11746188Application Date: 2007-05-09
-
Publication No.: US07827311B2Publication Date: 2010-11-02
- Inventor: Shaun Cooley , Rowan Trollope
- Applicant: Shaun Cooley , Rowan Trollope
- Applicant Address: US CA Mountain View
- Assignee: Symantec Corporation
- Current Assignee: Symantec Corporation
- Current Assignee Address: US CA Mountain View
- Agency: Gunnison, McKay & Hodgson, L.L.P.
- Agent Forrest Gunnison
- Main IPC: G06F15/16
- IPC: G06F15/16 ; G06F15/173 ; G06F11/00
Abstract:
HTTP requests initiated from a web browser of a client computer system are proxied prior to release to a router, such as a home router. HTTP requests identifying a referrer URL corresponding to routable, public IP address and a target URL corresponding to a non-routable, private IP address are determined to be indicative of a drive-by pharming attack, and are blocked from sending to the router. HTTP requests not identifying a referrer URL corresponding to a routable, public IP address and a target URL corresponding to a non-routable, private IP address, the HTTP request are not determined to be indicative of a drive-by pharming attack, and are released for sending to the router. In some embodiments, an HTTP response received in response to a released HTTP request is proxied prior to release to the web browser. An HTTP response having content of type text/html or script is modified as indicated to prevent malicious activity and released to the web browser.
Public/Granted literature
- US20080281983A1 CLIENT SIDE PROTECTION AGAINST DRIVE-BY PHARMING VIA REFERRER CHECKING Public/Granted day:2008-11-13
Information query
