专利快速检索-快速检索全球专利，免费商用专利数据库-IPRDB

1. 发明授权

US09954893B1 Techniques for combating man-in-the-browser attacks 有权
公开(公告)号：US09954893B1
公开(公告)日：2018-04-24
申请号：US14861906
申请日：2015-09-22
申请人： Shape Security, Inc.
发明人： Yao Zhao , Xinran Wang
IPC分类号： H04L29/06 , G06F17/30
CPC分类号： H04L63/1466 , G06F17/3089 , H04L63/1416 , H04L63/1491
摘要： Methods and apparatus are described for automatically modifying web page code. Specific implementations relate to the modification of web page code for the purpose of combatting Man-in-the-Browser (MitB) attacks.

2. 发明申请

US20170041341A1 Polymorphic Treatment of Data Entered At Clients 审中-公开
标题翻译：在客户端进行数据的多态处理
公开(公告)号：US20170041341A1
公开(公告)日：2017-02-09
申请号：US15230540
申请日：2016-08-08
申请人： Shape Security, Inc.
发明人： Xinran Wang , Yao Zhao
IPC分类号： H04L29/06 , G06F17/22 , G06F17/24
CPC分类号： H04L63/1475 , G06F17/2247 , G06F17/243 , G06F21/14 , G06F21/556 , G06F21/6263 , H04L63/0281 , H04L63/0428 , H04L63/14 , H04L2463/144
摘要： A computer-implemented method includes identifying, in web code to be served to a client, presence of code for generating a form; generating additional, executable code to be run on the client device, the additional, executable code being arranged to identify user input on the client device and modify the form so that data from the user input is received into one or more alternative fields of the form other than a first field to which a user performing the input directed the input; receiving a request from the client device based on completion of input into the form; and converting data from the received request so that data for the one or more alternative fields of the form is directed to the first field of the form for processing by a web server system that initially generated the web code.
摘要翻译：计算机实现的方法包括在要提供给客户端的web代码中识别存在用于生成表单的代码; 生成要在所述客户端设备上运行的附加的可执行代码，所述附加的可执行代码被布置为识别所述客户端设备上的用户输入并修改所述表单，使得来自所述用户输入的数据被接收到所述表单的一个或多个替代字段中除了用户对其进行输入的第一字段之外; 基于完成对该表单的输入，从客户端设备接收请求; 以及从接收到的请求转换数据，使得用于表单的一个或多个替代字段的数据被引导到形式的第一字段，以便由最初生成web代码的web服务器系统进行处理。

3. 发明授权

US11743256B1 Security measures for extended sessions using multi-domain data 有权
公开(公告)号：US11743256B1
公开(公告)日：2023-08-29
申请号：US17087840
申请日：2020-11-03
申请人： Shape Security, Inc.
发明人： Mengmeng Chen , Sumit Agarwal , Yao Zhao
IPC分类号： H04L9/40 , H04L9/32
CPC分类号： H04L63/0876 , H04L9/32
摘要： A security server device, method, non-transitory computer readable medium and security system that receives request data for a request from a client to a web server system where the request comprises a session identifier (ID) for a session between an authenticated user and the web server system. A determination is made whether the client is a single-user device based on the request data and multi-domain data. Another determinations is made on whether the client is compromised based on the request data. In response to the determinations that the client is a single-user device and is not compromised an extension of the session between the authenticated user on the client and the web server system is caused.

4. 发明授权

US11366892B2 Detecting compromised credentials by improved private set intersection 有权
公开(公告)号：US11366892B2
公开(公告)日：2022-06-21
申请号：US16380958
申请日：2019-04-10
申请人： Shape Security, Inc.
发明人： Yao Zhao , Jian Jiang , Rundong Liu
IPC分类号： G06F21/45 , G06F16/901 , G06F21/62 , G06F21/60 , G06F21/56 , G06F21/64
摘要： In an embodiment, a method is configured to detect compromised credentials, comprising: generating a plurality of bloom filters, wherein each bloom filter corresponds to a particular subset of a set of compromised credentials; receiving an index value from a client computing device; in response to receiving the index value, determining a target bloom filter corresponding to the index value, and sending the target bloom filter to the client computing device; receiving a first value from the client computing device; in response to receiving the first value, generating a second value based on the first value, and sending the second value to the client computing device.

5. 发明申请

US20180121680A1 OBFUSCATING WEB CODE 审中-公开
公开(公告)号：US20180121680A1
公开(公告)日：2018-05-03
申请号：US15859694
申请日：2018-01-01
申请人： Shape Security, Inc.
发明人： Xinran Wang , Yao Zhao
IPC分类号： G06F21/64
CPC分类号： G06F21/64 , G06F21/125 , G06F21/54 , G06F21/55
摘要： A computer-implemented method, the method includes identifying a piece of data to be served from a server system to a client device that is remote from the server system; creating a plurality of expressions that, when executed, provide a result that corresponds to the piece of data; and providing the plurality of expressions to the client device with code for executing the plurality of expressions.

6. 发明授权

US09858440B1 Encoding of sensitive data 有权
公开(公告)号：US09858440B1
公开(公告)日：2018-01-02
申请号：US14286324
申请日：2014-05-23
申请人： Shape Security Inc.
发明人： Xinran Wang , Yao Zhao
IPC分类号： G06F21/10 , G06F21/64
CPC分类号： G06F21/64 , G06F21/125 , G06F21/54 , G06F21/55
摘要： A computer-implemented method, the method includes identifying a piece of data to be served from a server system to a client device that is remote from the server system; creating a plurality of expressions that, when executed, provide a result that corresponds to the piece of data; and providing the plurality of expressions to the client device with code for executing the plurality of expressions.

7. 发明申请

US20150339479A1 Polymorphic Treatment of Data Entered At Clients 有权
标题翻译：在客户端进行数据的多态处理
公开(公告)号：US20150339479A1
公开(公告)日：2015-11-26
申请号：US14286733
申请日：2014-05-23
申请人： Shape Security Inc.
发明人： Xinran Wang , Yao Zhao
IPC分类号： G06F21/55
CPC分类号： H04L63/1475 , G06F17/2247 , G06F17/243 , G06F21/14 , G06F21/556 , G06F21/6263 , H04L63/0281 , H04L63/0428 , H04L63/14 , H04L2463/144
摘要： A computer-implemented method includes identifying, in web code to be served to a client, presence of code for generating a form; generating additional, executable code to be run on the client device, the additional, executable code being arranged to identify user input on the client device and modify the form so that data from the user input is received into one or more alternative fields of the form other than a first field to which a user performing the input directed the input; receiving a request from the client device based on completion of input into the form; and converting data from the received request so that data for the one or more alternative fields of the form is directed to the first field of the form for processing by a web server system that initially generated the web code.
摘要翻译：计算机实现的方法包括在要提供给客户端的web代码中识别用于生成表单的代码的存在; 生成要在所述客户端设备上运行的附加的可执行代码，所述附加的可执行代码被布置为识别所述客户端设备上的用户输入并修改所述表单，使得来自所述用户输入的数据被接收到所述表单的一个或多个替代字段中除了用户对其进行输入的第一字段之外; 基于完成对该表单的输入，从客户端设备接收请求; 以及从接收到的请求转换数据，使得用于表单的一个或多个替代字段的数据被引导到形式的第一字段，以由最初生成web代码的web服务器系统进行处理。

8. 发明授权

US09529994B2 Call stack integrity check on client/server systems 有权
标题翻译：在客户端/服务器系统上调用堆栈完整性检查
公开(公告)号：US09529994B2
公开(公告)日：2016-12-27
申请号：US14552331
申请日：2014-11-24
申请人： SHAPE SECURITY, INC.
发明人： Yao Zhao , Xinran Wang
IPC分类号： G06F21/50 , H04L29/06 , G06F21/62
CPC分类号： G06F21/50 , G06F21/62 , G06F2221/033 , H04L63/102 , H04L67/42
摘要： Computer systems and methods in various embodiments are configured for improving the security and efficiency of client computers interacting with server computers through supervising instructions defined in a web page and/or web browser. In an embodiment, a computer system comprising one or more processors, coupled to a remote client computer, and configured to send, to the remote client computer, one or more instructions, which when executed by the remote client computer, cause a run-time environment on the remote client computer to: intercept, within the run-time environment, a first call to execute a particular function defined in the run-time environment by a first caller function in the run-time environment; determine a first caller identifier, which corresponds to the first caller function identified in a run-time stack maintained by the run-time environment; determine whether the first caller function is authorized to call the particular function based on the first caller identifier.
摘要翻译：各种实施例中的计算机系统和方法被配置为通过监视在网页和/或网络浏览器中定义的指令来提高与服务器计算机交互的客户端计算机的安全性和效率。在一个实施例中，一种包括一个或多个处理器的计算机系统，其耦合到远程客户端计算机，并被配置为向远程客户端计算机发送一个或多个指令，所述指令当由远程客户端计算机执行时引起运行时间远程客户端计算机上的环境：在运行时环境中截取在运行时环境中由第一调用者功能执行在运行时环境中定义的特定功能的第一次调用; 确定第一呼叫者标识符，其对应于由运行时环境维护的运行时栈中识别的第一呼叫者功能; 确定第一呼叫者功能是否被授权以基于第一呼叫者标识符来呼叫特定功能。

9. 发明授权

US09411958B2 Polymorphic treatment of data entered at clients 有权
标题翻译：在客户端输入的数据的多态处理
公开(公告)号：US09411958B2
公开(公告)日：2016-08-09
申请号：US14286733
申请日：2014-05-23
申请人： Shape Security Inc.
发明人： Xinran Wang , Yao Zhao
IPC分类号： H04L29/06 , G06F21/55 , G06F17/24 , G06F21/14
CPC分类号： H04L63/1475 , G06F17/2247 , G06F17/243 , G06F21/14 , G06F21/556 , G06F21/6263 , H04L63/0281 , H04L63/0428 , H04L63/14 , H04L2463/144
摘要： A computer-implemented method includes identifying, in web code to be served to a client, presence of code for generating a form; generating additional, executable code to be run on the client device, the additional, executable code being arranged to identify user input on the client device and modify the form so that data from the user input is received into one or more alternative fields of the form other than a first field to which a user performing the input directed the input; receiving a request from the client device based on completion of input into the form; and converting data from the received request so that data for the one or more alternative fields of the form is directed to the first field of the form for processing by a web server system that initially generated the web code.
摘要翻译：计算机实现的方法包括在要提供给客户端的web代码中识别存在用于生成表单的代码; 生成要在所述客户端设备上运行的附加的可执行代码，所述附加的可执行代码被布置为识别所述客户端设备上的用户输入并修改所述表单，使得来自所述用户输入的数据被接收到所述表单的一个或多个替代字段中除了用户对其进行输入的第一字段之外; 基于完成对该表单的输入，从客户端设备接收请求; 以及从接收到的请求转换数据，使得用于表单的一个或多个替代字段的数据被引导到形式的第一字段，以便由最初生成web代码的web服务器系统进行处理。

10. 发明授权

US11138463B1 Unsupervised and supervised machine learning approaches to detecting bots and other types of browsers 有权
公开(公告)号：US11138463B1
公开(公告)日：2021-10-05
申请号：US15669618
申请日：2017-08-04
申请人： Shape Security, Inc.
发明人： Xinran Wang , Yao Zhao
IPC分类号： G06F16/20 , G06K9/62 , G06N5/02 , G06F16/35 , G06N20/00
摘要： Unsupervised or supervised machine learning (“ML”) techniques discussed herein can be used to classify browsers as one or more types of browser or within one or more browser groups. For example, a computer system configured to improve security of server computers interacting with client computers through an intermediary computer, and comprising: a memory comprising processor logic; one or more processors coupled to the memory, wherein the one or more processors execute the processor logic, which causes the one or more processors to: receive a first plurality of requests from a first plurality of browsers; generate a first plurality of request-feature vectors from the first plurality of requests; generate a plurality of browser groups based on the first plurality of request-feature vectors; receive a first new request from a first client computer; generate a first new request-feature vector based on the first new request; determine that the first new request-feature vector belongs to a first browser group among the plurality of browser groups; determine that the first browser group is associated with a first rule, and in response, respond to the first new request according to the first rule.

你已经成功收藏专利！

检索式保存成功!

IPRDB

热门服务

关于我们

友情链接

联系方式