公开(公告)号：US09942267B1

公开(公告)日：2018-04-10

申请号：US14792010

申请日：2015-07-06

Applicant: Amazon Technologies, Inc.

Inventor： Aridaman Tripathi ,  Thibault Candebat

IPC: H04L29/06

CPC classification number: H04L63/1466 ,  H04L63/20

Abstract: A secure and efficient technique to prevent cross-site scripting attacks based on segregating the content within a given content page among independent endpoints, or servers, where static content is provided from one endpoint, active content for downloading a filtering component to enforce filtering of content passed to active content methods is provided from a loader endpoint, and active content is provided from an active content endpoint. Together, the different endpoints make up an endpoint segregation system. Further, security features of HTTP/HTML are used to restrict sources from which active content may be executed according to the division of static and active content among the endpoints of the endpoint segregation system.

公开(公告)号：US10044728B1

公开(公告)日：2018-08-07

申请号：US14792003

申请日：2015-07-06

Applicant: Amazon Technologies, Inc.

Inventor： Aridaman Tripathi ,  Thibault Candebat

IPC: H04L29/06 ,  H04L29/08

Abstract: A secure and efficient technique to prevent cross-site scripting attacks based on segregating the content within a given content page among independent endpoints, or servers, where static content is provided from one endpoint and active content is provided from another endpoint. Together, the different endpoints make up an endpoint segregation system. Further, security features of HTTP/HTML are used to restrict sources from which active content may be executed according to the division of static and active content among the endpoints of the endpoint segregation system.