公开(公告)号：US09954880B2

公开(公告)日：2018-04-24

申请号：US14928340

申请日：2015-10-30

Applicant: salesforce.com, inc.

Inventor： Paul Anthony Mason

IPC: H04L29/06 ,  H04L29/08 ,  G06F17/22 ,  G06F21/00 ,  G06F21/56

CPC classification number: H04L63/1425 ,  G06F17/2247 ,  G06F17/227 ,  G06F21/00 ,  G06F21/566 ,  H04L63/145 ,  H04L63/1483 ,  H04L67/02 ,  H04L67/42

Abstract: Techniques are disclosed relating to limiting malicious-code analysis of webpage content. In one embodiment, a computing system receives a webpage requested by a client device. The computing system randomly alters content of the webpage to limit analysis of the content by malicious code such that the altering does not affect how the webpage is displayed by the client device. The computing system may then serve the webpage with the altered content to the client device. In some embodiments, the altering includes searching the webpage for an HTML element that specifies a plurality of attributes in a particular ordering and rearranging the plurality of attributes to have a new ordering different from the particular ordering. In some embodiments, the altering includes parsing the webpage for an HTML element that specifies an identifier attribute and modifying an identifier attribute of the element.

公开(公告)号：US09774572B2

公开(公告)日：2017-09-26

申请号：US14708925

申请日：2015-05-11

Applicant: salesforce.com, inc.

Inventor： Paul Anthony Mason ,  Harsimranjit Singh Chabbewal

IPC: H04L29/06 ,  H04L29/08 ,  G06F17/30

CPC classification number: H04L63/0428 ,  G06F17/30887 ,  H04L63/0442 ,  H04L63/108 ,  H04L67/02

Abstract: Techniques are disclosed relating to protecting sensitive data in references to network resources. In some embodiments, a host system receives a request for a stored resource, where a first portion of the request is encrypted by a client device using a particular encryption technique and a second portion of the request is not encrypted using the particular encryption technique and where the first portion of the request includes a reference to the resource. In some embodiments, the host decrypts the reference to the resource and provides the resource to the requesting device based on the decrypted reference.

公开(公告)号：US20170134407A1

公开(公告)日：2017-05-11

申请号：US14936262

申请日：2015-11-09

Applicant: salesforce.com, inc.

Inventor： Paul Anthony Mason

IPC: H04L29/06 ,  G06F17/30 ,  H04L29/08

Abstract: A system and a method are disclosed for determining malicious web requests. The system processes incoming web requests to determine whether a request matches predetermined patterns of suspicious requests. The systems stores associations between patterns of suspicious requests, parts of the web request where each pattern occurs, and attack type associated with the pattern. If the system determines that an incoming web request matches a pattern of a suspicious request, the system determines whether to forward the request to the web server for processing or to hold the request. The system locks out a source of request for a period of time if the source sends requests that match certain attack patterns.