Patent application number | Description | Published |
20080313648 | PROTECTION AND COMMUNICATION ABSTRACTIONS FOR WEB BROWSERS - Systems and methodologies for accessing resources associated with a Web-based application in accordance with one or more embodiments disclosed herein may include a browser that obtains at least first resources from a first domain and second resources from a second domain and a resource management component that facilitates controlled communication between the first resources and the second resources and prevents the first resources and the second resources from accessing other resources that the first resources and the second resources are not permitted to access. The resource management component may be further operable to contain restricted services in a sandbox containment structure and/or to isolate access-controlled resources in a service instance. In addition, the resource management component may be operable to facilitate the flexible display of resources from disparate domains and/or controlled communication therebetween. | 12-18-2008 |
20090070663 | PROXY ENGINE FOR CUSTOM HANDLING OF WEB CONTENT - Processes and techniques for protecting web users from malicious executable code are described. A proxy engine is implemented that intercepts communications between a web browser and a script engine. The proxy engine can invoke a variety of custom event handlers that are configured to handle specific types of events (e.g., script events) that occur in the processing of web content. A script shield event handler detects the presence of script in pre-defined script-free zones and prevents the script from being executed on a user's device. | 03-12-2009 |
20090070869 | PROXY ENGINE FOR CUSTOM HANDLING OF WEB CONTENT - Processes and techniques for protecting web users from malicious executable code are described. A proxy engine is implemented that intercepts communications between a web browser and a script engine. The proxy engine can invoke a variety of custom event handlers that are configured to handle specific types of events (e.g., script events) that occur in the processing of web content. A script shield event handler detects the presence of script in pre-defined script-free zones and prevents the script from being executed on a user's device. | 03-12-2009 |
20090299862 | ONLINE AD SERVING - Online ad hosting (e.g., hosting ads from one domain on a webpage from a different domain) is accomplished using a cross-domain frame (e.g., an inline frame (IFrame)), a secure inter-frame communications channel, and a source code interface (e.g., a set of application program interfaces (APIs)). That is, a cross-domain IFrame may be created in a host webpage, which can isolate an ad from the host webpage. An inter-frame communications channel may be utilized to communicate between the contents of the cross-domain frame and the host webpage. Further, a source code interface may be used to communicate a host's preferences for an ad's parameters and restrictions. | 12-03-2009 |
20090300496 | USER INTERFACE FOR ONLINE ADS - A user interface may be utilized to allow a user to control display properties of online ad content on a hosting webpage (e.g., hosting ads from one domain on a webpage from a different domain). This may be accomplished by creating a cross-domain frame in the hosting webpage, which can contain the ad content. An instantiation of a user interface may be created on the hosting webpage that has an ability to control display properties of the cross-domain frame, thereby controlling display properties of the ad content in the cross-domain frame. Further, a task manager may be utilized as part of the user interface to facilitate a host of the hosting webpage to manage ad content. | 12-03-2009 |
20090327869 | ONLINE AD SERVING - Online ad hosting (e.g., hosting ads from one domain on a webpage from a different domain) is accomplished using an insulator cross-domain frame (e.g., an inline frame (IFrame)), into which a third party may load content, source code to detect events associated with the third party content (e.g., detecting if ad content wishes to expand), and a communicator same-domain IFrame for sending requests to the host webpage associated with detected events. That is, a cross-domain IFrame may be created in a host webpage, which can isolate an ad from the host webpage. A communicator frame may be utilized to communicate text messages between the contents of the cross-domain frame and the host webpage. Further, an API can be used to apply parameters, restrictions and allowable events to the third party content in the insulator IFrame. | 12-31-2009 |
20100017883 | LOCKBOX FOR MITIGATING SAME ORIGIN POLICY FAILURES - Systems and methods to manage same-origin-policy (SOP) failures that occur in a computing environment are provided. In an illustrative implementation, an exemplary computing environment comprises a lockbox module, and an instruction set comprising at least one instruction directing the lockbox module to process data and/or computing application execution commands representative of and a request for a selected operation/feature according to a selected SOP management paradigm. In the illustrative implementation, the SOP management paradigm comprises one or more instructions to deploy a “lockbox” computing application element allowing for the management, monitoring, and control of computing application features/operations operable under a same origin policy. | 01-21-2010 |
20100031287 | AUTOMATION-RESISTANT, ADVERTISING-MERGED INTERACTIVE SERVICES - Systems and methodologies for implementing automation-resistant interactive computing services are provided herein. Function invocation mechanisms can be utilized as described herein to facilitate invocation and/or activation of one or more functions of an interactive service upon performance of an interaction falling within a predefined class of interaction with selected multimedia content. The described functionality invocation mechanisms can operate similarly to a traditional captcha image by requiring interaction that is easily understandable and performable by a human user but is prohibitively difficult for an automated program to carry out. Techniques such as masking relationships between user interaction and function invocation and varying elements of the selected multimedia content for respective accesses can be utilized to provide additional resistance to automation. Described invocation mechanisms can additionally be merged with advertising, which can optionally be targeted to a particular user(s). | 02-04-2010 |
20100058293 | DETOURING IN SCRIPTING SYSTEMS - A system described herein includes a receiver component that receives third party code for execution in a host environment, wherein the third party code corresponds to a dynamic programming language, and wherein the third party code has at least one object reference to a first object that is used by the third party code. A detouring component automatically replaces the first object referenced by the third party code with a proxy object such that the third party code at runtime calls the proxy object instead of the first object. | 03-04-2010 |
20130339162 | DETOURING IN SCRIPTING SYSTEMS - A system described herein includes a receiver component that receives third party code for execution in a host environment, wherein the third party code corresponds to a dynamic programming language, and wherein the third party code has at least one object reference to a first object that is used by the third party code. A detouring component automatically replaces the first object referenced by the third party code with a proxy object such that the third party code at runtime calls the proxy object instead of the first object. | 12-19-2013 |