ITUB20155056A1 - METHOD FOR IDENTIFICATION AND PREVENTION OF CLIENT SIDE WEB ATTACKS - Google Patents

METHOD FOR IDENTIFICATION AND PREVENTION OF CLIENT SIDE WEB ATTACKS

Info

Publication number
ITUB20155056A1
ITUB20155056A1 ITUB2015A005056A ITUB20155056A ITUB20155056A1 IT UB20155056 A1 ITUB20155056 A1 IT UB20155056A1 IT UB2015A005056 A ITUB2015A005056 A IT UB2015A005056A IT UB20155056 A ITUB20155056 A IT UB20155056A IT UB20155056 A1 ITUB20155056 A1 IT UB20155056A1
Authority
IT
Italy
Prior art keywords
prevention
identification
client side
side web
web attacks
Prior art date
Application number
ITUB2015A005056A
Other languages
Italian (it)
Inventor
Giorgio Fedon
Paola Stefano Di
Original Assignee
Minded Security S R L
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Minded Security S R L filed Critical Minded Security S R L
Priority to ITUB2015A005056A priority Critical patent/ITUB20155056A1/en
Priority to PCT/IT2016/000220 priority patent/WO2017056121A1/en
Publication of ITUB20155056A1 publication Critical patent/ITUB20155056A1/en

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/14Network architectures or network communication protocols for network security for detecting or protecting against malicious traffic
    • H04L63/1441Countermeasures against malicious traffic
    • H04L63/1466Active attacks involving interception, injection, modification, spoofing of data unit addresses, e.g. hijacking, packet injection or TCP sequence number attacks
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/14Network architectures or network communication protocols for network security for detecting or protecting against malicious traffic
    • H04L63/1433Vulnerability analysis
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/16Implementing security features at a particular protocol layer
    • H04L63/168Implementing security features at a particular protocol layer above the transport layer

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Security & Cryptography (AREA)
  • Computer Hardware Design (AREA)
  • Computing Systems (AREA)
  • General Engineering & Computer Science (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Computer And Data Communications (AREA)
  • Data Exchanges In Wide-Area Networks (AREA)
ITUB2015A005056A 2015-09-28 2015-09-28 METHOD FOR IDENTIFICATION AND PREVENTION OF CLIENT SIDE WEB ATTACKS ITUB20155056A1 (en)

Priority Applications (2)

Application Number Priority Date Filing Date Title
ITUB2015A005056A ITUB20155056A1 (en) 2015-09-28 2015-09-28 METHOD FOR IDENTIFICATION AND PREVENTION OF CLIENT SIDE WEB ATTACKS
PCT/IT2016/000220 WO2017056121A1 (en) 2015-09-28 2016-09-26 Method for the identification and prevention of client-side web attacks

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
ITUB2015A005056A ITUB20155056A1 (en) 2015-09-28 2015-09-28 METHOD FOR IDENTIFICATION AND PREVENTION OF CLIENT SIDE WEB ATTACKS

Publications (1)

Publication Number Publication Date
ITUB20155056A1 true ITUB20155056A1 (en) 2017-03-28

Family

ID=55070096

Family Applications (1)

Application Number Title Priority Date Filing Date
ITUB2015A005056A ITUB20155056A1 (en) 2015-09-28 2015-09-28 METHOD FOR IDENTIFICATION AND PREVENTION OF CLIENT SIDE WEB ATTACKS

Country Status (2)

Country Link
IT (1) ITUB20155056A1 (en)
WO (1) WO2017056121A1 (en)

Cited By (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN114499926A (en) * 2021-12-13 2022-05-13 广东电力通信科技有限公司 Dynamic protection method of intelligent WEB protection system
CN115051832A (en) * 2022-05-11 2022-09-13 杭州安恒信息技术股份有限公司 Traceable reverse system method, device, equipment and medium

Families Citing this family (8)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN107172033B (en) * 2017-05-10 2020-11-13 深信服科技股份有限公司 WAF misjudgment identification method and device
CN110245491B (en) * 2019-06-11 2021-01-08 国网安徽省电力有限公司 Network attack type determination method and device, memory and processor
CN112883372B (en) * 2019-11-29 2024-02-09 中国电信股份有限公司 Cross-site scripting attack detection method and device
CN113127862B (en) * 2019-12-31 2023-05-12 深信服科技股份有限公司 XXE attack detection method and device, electronic equipment and storage medium
CN112131249A (en) * 2020-09-28 2020-12-25 绿盟科技集团股份有限公司 Attack intention identification method and device
CN113158197B (en) * 2021-05-26 2022-05-17 北京安普诺信息技术有限公司 SQL injection vulnerability detection method and system based on active IAST
CN115065534B (en) * 2022-06-14 2023-11-28 北京知道创宇信息技术股份有限公司 Dynamic script attack interception method and device, electronic equipment and readable storage medium
CN116112273B (en) * 2023-02-16 2023-10-20 上海云砺信息科技有限公司 Anti-fraud man-machine identification method and system

Citations (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
WO2009039434A2 (en) * 2007-09-21 2009-03-26 Breach Security, Inc. System and method for detecting security defects in applications
US20140165204A1 (en) * 2010-03-19 2014-06-12 Aspect Security Inc. Detection of vulnerabilities in computer systems

Patent Citations (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
WO2009039434A2 (en) * 2007-09-21 2009-03-26 Breach Security, Inc. System and method for detecting security defects in applications
US20140165204A1 (en) * 2010-03-19 2014-06-12 Aspect Security Inc. Detection of vulnerabilities in computer systems

Non-Patent Citations (2)

* Cited by examiner, † Cited by third party
Title
DAVIDE BALZAROTTI ET AL: "Saner: Composing Static and Dynamic Analysis to Validate Sanitization in Web Applications", SECURITY AND PRIVACY, 2008. SP 2008. IEEE SYMPOSIUM ON, IEEE, PISCATAWAY, NJ, USA, 18 May 2008 (2008-05-18), pages 387 - 401, XP031259118, ISBN: 978-0-7695-3168-7 *
GABRIEL SERME ET AL: "Enforcing Input Validation through Aspect Oriented Programming", CORRECT SYSTEM DESIGN; [LECTURE NOTES IN COMPUTER SCIENCE; LECT.NOTES COMPUTER], SPRINGER INTERNATIONAL PUBLISHING, CHAM, no. 558, 1 January 2014 (2014-01-01), pages 316 - 332, XP047269039, ISSN: 0302-9743, ISBN: 978-3-642-54568-9 *

Cited By (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN114499926A (en) * 2021-12-13 2022-05-13 广东电力通信科技有限公司 Dynamic protection method of intelligent WEB protection system
CN115051832A (en) * 2022-05-11 2022-09-13 杭州安恒信息技术股份有限公司 Traceable reverse system method, device, equipment and medium

Also Published As

Publication number Publication date
WO2017056121A1 (en) 2017-04-06

Similar Documents

Publication Publication Date Title
ITUB20155056A1 (en) METHOD FOR IDENTIFICATION AND PREVENTION OF CLIENT SIDE WEB ATTACKS
DK3285803T3 (en) METHODS OF TREATMENT OR PREVENTION OF MIGRINE HEAD PAIN
BR112017024253A2 (en) methods of treating inflammation or neuropathic pain.
FI20145763A (en) RFID reader method and RFID reader
IL273249A (en) Device, system, and method of eradicating parasites
FR3022664B1 (en) AUTHENTICATION METHOD AND SYSTEM
FI20155621A (en) Method and product
FR3031641B1 (en) METHOD OF IDENTIFYING AN ENTITY
FR3043811B1 (en) METHOD OF IDENTIFYING AN ENTITY
IT201700120942A1 (en) EQUIPMENT FOR ELECTROFILING AND ELECTROFILING METHOD.
FI20165861A (en) Track-lifting equipment and method for controlling it
FI20165503A (en) Helmet AND METHOD FOR MANUFACTURING IT
DK3132279T3 (en) Targeting method and system
FI20165381A (en) Method and system
PL3380983T3 (en) Method for the identification of security processors
BR112017019373A2 (en) computer-implemented method and computer-readable media
ITUB20152047A1 (en) Method and system for monitoring the vital parameters of an individual
IT201700093131A1 (en) PACKAGING EQUIPMENT AND METHOD OF PACKAGING
ITUB20152119A1 (en) DEVICE FOR STERILIZATION OF OBJECTS AND ASSOCIATED STERILIZATION METHOD.
FR3037692B1 (en) BIOMETRIC IDENTIFICATION METHOD
FR3044256B1 (en) ELEMENT AND SECURITY DOCUMENT
FI20145860A (en) SYSTEM AND METHOD FOR PRODUCTING VISUAL EFFECTS
FI20165246A (en) Method and system
KR20180085030A (en) Adaptive Alignment Method and System
IT201600092684A1 (en) GUARDRAIL SYSTEM AND ASSEMBLY PROCEDURE FOR THIS