专利快速检索-快速检索全球专利，免费商用专利数据库-IPRDB

31. 发明授权

US08892687B1 Client/server security by an intermediary rendering modified in-memory objects 有权
标题翻译：客户端/服务器的安全性由中间层渲染修改的内存中对象
公开(公告)号：US08892687B1
公开(公告)日：2014-11-18
申请号：US14175923
申请日：2014-02-07
申请人： Shape Security, Inc.
发明人： Justin Call
IPC分类号： G06F15/16 , H04L29/06 , G06F9/455
CPC分类号： H04L63/04 , G06F9/45529 , H04L29/06972 , H04L63/0281 , H04L63/1466 , H04L67/42
摘要： In an embodiment, a method comprises intercepting, from a server computer, a first set of instructions that define one or more objects and one or more operations that are based, at least in part, on the one or more objects; generating, in memory, one or more data structures that correspond to the one or more objects; performing the one or more operations on the one or more data structures; updating the one or more data structures, in response to performing the one or more operations, to produce one or more updated data structures; rendering a second set of instructions, which when executed by a remote client computer cause the remote client computer to generate the updated data structures in memory on the remote client computer, wherein the second set of instructions are different than the first set of instructions; sending the second set of instructions to the remote client computer.
摘要翻译：在一个实施例中，一种方法包括从服务器计算机拦截定义一个或多个对象的第一组指令和至少部分地基于所述一个或多个对象的一个或多个操作; 在存储器中产生对应于所述一个或多个对象的一个或多个数据结构; 对所述一个或多个数据结构执行所述一个或多个操作; 响应于执行所述一个或多个操作来更新所述一个或多个数据结构以产生一个或多个更新的数据结构; 呈现第二组指令，当由远程客户端计算机执行时，远程客户端计算机在远程客户端计算机上的存储器中生成更新的数据结构，其中第二组指令与第一组指令不同; 将第二组指令发送到远程客户端计算机。

32. 发明申请

US20140283038A1 Safe Intelligent Content Modification 审中-公开
标题翻译：安全智能内容修改
公开(公告)号：US20140283038A1
公开(公告)日：2014-09-18
申请号：US14055704
申请日：2013-10-16
申请人： Shape Security Inc.
发明人： Justin D. Call , Xiaoming Zhou , Xiaohan Huang , Subramanian Varadarajan , Roger S. Hoover
IPC分类号： H04L29/06
CPC分类号： H04L63/1441 , G06F21/54 , G06F21/566 , H04L63/168 , H04L67/02 , H04L67/1002 , H04L2463/144
摘要： A computer-implemented method for deflecting abnormal computer interactions includes receiving, at a computer server system and from a client computer device that is remote from the computer server system, a request for web content; identifying, by computer analysis of mark-up code content that is responsive to the request, executable code that is separate from, but programmatically related to, the mark-up code content; generating groups of elements in the mark-up code content and the related executable code by determining that the elements within particular groups are programmatically related to each other; modifying elements within particular ones of the groups consistently so as to prevent third-party code written to interoperate with the elements from modifying from interoperating with the modified elements, while maintain an ability of the modified elements within each group to interoperate with each other; and recoding the mark-up code content and the executable code to include the modified elements.
摘要翻译：用于偏转异常计算机交互的计算机实现的方法包括在计算机服务器系统和远离计算机服务器系统的客户端计算机设备接收对web内容的请求; 通过对响应于请求的标记代码内容的计算机分析来识别与标记代码内容分开但与编程有关的可执行代码; 通过确定特定组中的元素在程序上相互关联来生成标记代码内容中的元素组和相关的可执行代码; 一致地修改特定组中的元素，以防止编写的第三方代码与要修改的元素进行互操作，同时保持每个组内的修改元素彼此互操作的能力; 以及对所述标记代码内容和所述可执行代码重新编码以包括所述修改的元素。

33. 发明申请

US20140041030A1 SYSTEM FOR FINDING CODE IN A DATA FLOW 审中-公开
标题翻译：在数据流中查找代码的系统
公开(公告)号：US20140041030A1
公开(公告)日：2014-02-06
申请号：US14110659
申请日：2013-02-15
申请人： Justin David Call , Oscar Hunter Steele, III
发明人： Justin David Call , Oscar Hunter Steele, III
IPC分类号： G06F21/50
CPC分类号： G06F21/50 , G06F21/55 , G06F21/554 , G06F21/56 , G06F21/562 , G06F21/577 , H04L63/1425
摘要： A code finder system deployed as a software module, a web service or as part of a larger security system, identifies and processes well-formed code sequences. For a data flow that is expected to be free of executable or interpreted code, or free of one or more known styles of executable or interpreted code, the code finder system can protect participants in the communications network. Examples of payload carried by data flows that can be monitored include, but are not limited to, user input data provided as part of interacting with a web application, data files or entities, such as images or videos, and user input data provided as part of interacting with a desktop application.
摘要翻译：部署为软件模块，Web服务或作为更大安全系统的一部分的代码查找器系统识别和处理格式良好的代码序列。对于期望没有可执行或解释代码或没有一个或多个已知风格的可执行或解释代码的数据流，代码查找器系统可以保护通信网络中的参与者。可以被监视的数据流携带的有效负载的例子包括但不限于作为与web应用程序交互的一部分提供的用户输入数据，诸如图像或视频的数据文件或实体，以及作为部分提供的用户输入数据与桌面应用程序进行交互。

34. 发明授权

US11483324B2 Detection of malicious activity using behavior data 有权
公开(公告)号：US11483324B2
公开(公告)日：2022-10-25
申请号：US15986709
申请日：2018-05-22
申请人： SHAPE SECURITY, INC.
发明人： Ye Xu , Yao Zhao , Xinran Wang , Jarrod Overson
IPC分类号： H04L29/06 , H04L9/40 , G06N3/04 , G06N20/00
摘要： Techniques are provided for detection of malicious activity using behavior data. A behavior model is trained with behavior data generated in association with a plurality of requests. Data is received that describes a particular request from a particular client device to a server system hosting a website. The data includes particular behavior data generated at the particular client device in association with the particular request. The particular behavior data is analyzed using the behavior model to generate a behavior model result. An automation determination for the particular request is generated based on the behavior model result. The particular request is handled based on the automation determination for the particular request.

35. 发明授权

US11258820B2 Request modification for web security challenge 有权
公开(公告)号：US11258820B2
公开(公告)日：2022-02-22
申请号：US16730725
申请日：2019-12-30
申请人： Shape Security, Inc.
发明人： Marc R. Hansen
IPC分类号： H04L29/06 , G06F21/31 , G06Q20/38 , H04L67/01
摘要： Techniques are provided for request modification for web security challenge. Data corresponding to a web page request by a client computing device for a web page is received. The web page comprises web code that allows a user to submit a request to initiate a web transaction with a web server system. Challenge code is generated that determines one or more values that are a valid solution to a challenge. The challenge code is provided for integrated code to be served in response to the web page request. The integrated code comprises the challenge code and modified web code that adds one or more parameters for the valid solution to the request. A particular request is received to initiate the web transaction. It is determined that the one or more parameter values are not a valid solution. In response, the web server system is prevented from processing the particular request.

36. 发明授权

US11139966B2 Security code for integration with an application 有权
公开(公告)号：US11139966B2
公开(公告)日：2021-10-05
申请号：US16732123
申请日：2019-12-31
申请人： Shape Security, Inc.
发明人： Carl Schroeder , Ariya Hidayat , Chandrasekhar Rentachintala , Ricky Y. Chiu
IPC分类号： H04L9/00 , H04L29/06 , G06F21/44 , H04L9/08 , H04L9/32 , H04L9/06
摘要： Techniques are provided for security code for integration with an application. A first request associated with a request by an application to an application server is received. The application includes security code that performs a set of one or more operations on one or more input parameters. The application is provided one or more parameter values, wherein the security code generates a secret cryptographic key based on the one or more parameter values. A security key is received that includes encrypted client data collected at the client device that is encrypted using the secret cryptographic key. The secret cryptographic key is generated based on the one or more parameter values and knowledge of the set of one or more operations. It is determined that the decrypted client data matches a pattern of data associated with malware. The application server is prevented from processing a second request.

37. 发明申请

US20210258330A1 DETECTING COMPROMISED CREDENTIALS IN A CREDENTIAL STUFFING ATTACK 有权
公开(公告)号：US20210258330A1
公开(公告)日：2021-08-19
申请号：US17232999
申请日：2021-04-16
申请人： Shape Security, Inc.
发明人： Daniel G. Moen , Carl Schroeder
IPC分类号： H04L29/06 , H04L29/08
摘要： Techniques are provided for detecting compromised credentials in a credential stuffing attack. A set model is trained based on a first set of spilled credentials. The set model does not comprise any credential of the first set of spilled credentials. A first request is received from a client computer with a first candidate credential to login to a server computer. The first candidate credential is tested for membership in the first set of spilled credentials using the set model. In response to determining the first set of spilled credentials includes the first candidate credential using the set model, one or more negative actions is performed.

38. 发明授权

US11095443B1 Proof-of-work based on runtime compilation 有权
公开(公告)号：US11095443B1
公开(公告)日：2021-08-17
申请号：US16653951
申请日：2019-10-15
申请人： Shape Security, Inc.
发明人： Bei Zhang
IPC分类号： H04L9/08 , G06F9/44 , G06F8/41 , G06F9/445
摘要： Techniques are provided for proof-of-work based on runtime compilation. Key generation code is partitioned into a set of code blocks. The key generation code generates an expected key value when compiled and executed. A shuffled set of code blocks is generated by reordering the set of code blocks. A client computing device is provided the shuffled set of code blocks and problem-solving code that, when executed at the client computing device, reconstructs the key generation code to generate a submission value by performing one or more compiling iterations. Each compiling iteration comprising reordering the shuffled set of code blocks to generate test code, and attempting to compile and execute the test code to generate the submission value. It is determined that the client computing device fully executed the problem-solving code based on the verifying the submission value.

39. 发明授权

US11032243B2 Using individualized APIs to block automated attacks on native apps and/or purposely exposed APIs with forced user interaction 有权
公开(公告)号：US11032243B2
公开(公告)日：2021-06-08
申请号：US16553085
申请日：2019-08-27
申请人： Shape Security, Inc.
发明人： Marc Hansen
IPC分类号： H04L29/06 , H04W12/084 , H04W12/086 , H04W12/122 , H04W12/126
摘要： An API call filtering system filters responses to API call requests received, via a network, from UEs. The API call filtering system is configured to require personalized API call requests wherein each API call (except for some minor exceptions) includes a unique UE identifier (“UEIN”) of the UE making the request. Using the UEIN, the web service or other service protected by the API call filtering system can be secured against excessive request iterations from a set of rogue UEs while allowing for ordinary volumes of requests of requests the UEs, wherein one or more boundaries between what is deemed to be an ordinary volume of requests and what is deemed to be excessive request iterations are determined by predetermined criteria.

40. 发明申请

US20210120010A1 SECURITY MEASURES FOR EXTENDED SESSIONS 有权
公开(公告)号：US20210120010A1
公开(公告)日：2021-04-22
申请号：US16654513
申请日：2019-10-16
申请人： Shape Security, Inc.
发明人： Mengmeng Chen , Sumit Agarwal , Yao Zhou
IPC分类号： H04L29/06 , H04L29/08
摘要： Techniques are provided for security measures for extended sessions. Request data for a request is received from a client computing device to a web server system. The request comprises a session identifier (ID) for a session between an authenticated user and the web server system. It is determined, based on the request data, that the client computing device is a single-user device. It is determined, based on the request data, that the client computing device is not compromised. In response to determining that the client computing device is a single-user device and that the client computing device is not compromised, extension of the session between the authenticated user on the client computing device and the web server system is caused.

你已经成功收藏专利！

检索式保存成功!

IPRDB

热门服务

关于我们

友情链接

联系方式