Session slicing of mirrored packets
US-12184680-B2 · Dec 31, 2024 · US
Method, system and computer program product for tagging content on uncontrolled Web application
US9401929B2 · US · B2
| Field | Value |
|---|---|
| Publication number | US-9401929-B2 |
| Application number | US-201313755537-A |
| Country | US |
| Kind code | B2 |
| Filing date | Jan 31, 2013 |
| Priority date | Sep 17, 2008 |
| Publication date | Jul 26, 2016 |
| Grant date | Jul 26, 2016 |
How to read this patent
A practical reading order for non-experts. Skip the full description unless you need deep technical detail.
- Title
What the patent document calls the invention.
- Abstract
A short plain-language summary of the technical disclosure.
- Assignees and inventors
Who owns or filed the patent and who is credited as inventor.
- Key dates
Filing, priority, publication, and grant dates set the timeline.
- First independent claim
The legal scope of protection — read this for what is actually claimed.
- CPC / IPC classifications
Technology tags used to group this patent with similar filings.
- Citations and related patents
Prior art links and similar publications in this corpus.
Abstract
Official abstract text for this publication.
Communications by a device in a private network to a site operating outside of the network can be programmatically inspected. Unstructured data, including messages and application content, originating from outside of the network may be dynamically converted to structured data that can be tagged. Interactions and activities can be monitored and processed differently according to internal policies and/or business rules. For example, at least a portion of the structured data can be modified prior to forwarding to the device, access by the device to at least a portion of the structured data can be blocked or limited, access by the device to one or more features associated with the structured data can be blocked or limited, etc.
First claim
Opening claim text (preview).
The invention claimed is: 1. A method for controlling access to a web site, comprising: performing, by a server computer in a network: continuously monitoring, while a user interacts with a site, access to the site by a multi-mode Web application on a device within the network, the site operating outside of the network and not controlled by the network, wherein the multi-mode Web application appears and functions substantially same as a Web application controlled by the site which is accessed by the multi-mode Web application; detecting, via the multi-mode Web application on the device, a particular type of user activity with the site operating outside of the network; based on access by the device in the network to the site operating outside of the network, receiving unstructured data from outside of the network and responsive to the detection of the particular type of user activity with the site operating outside of the network, dynamically converting at least part of the unstructured data to structured data utilizing application element types, wherein the application element types are parsed from the unstructured data utilizing one or more filters specific to the site operating outside of the network, wherein the unstructured data comprises source code data for the Web application controlled by the site operating outside the network, and wherein the structured data comprises a controlled version of the Web application; and applying a policy to the structured data, wherein the policy is internal to the network. 2. The method according to claim 1 , wherein applying the policy comprises blocking access by the device to the structured data or limiting access by the device to at least a portion of the structured data. 3. The method according to claim 1 , wherein applying the policy further comprises modifying at least a portion of the structured data prior to forwarding to the device in the network. 4. The method according to claim 1 , wherein applying the policy further comprises limiting access by the device to one or more features associated with the structured data. 5. The method according to claim 4 , wherein at least one of the one or more features associated with the structured data comprises posting or attempting to post content on the site operating outside of the network. 6. The method according to claim 1 , wherein the site is a social media site operating outside of the network. 7. The method according to claim 1 , wherein the unstructured data is received from the site operating outside of the network, and wherein the at least part of the unstructured data is dynamically converted to the structured data utilizing one or more of the application element types parsed from the unstructured data received from the site operating outside of the network. 8. The method according to claim 7 , wherein the application element types are specific to the site operating outside of the network. 9. The method according to claim 1 , further comprising tagging the structured data, wherein tagging the structured data comprises utilizing one or more of the application element types parsed from the unstructured data. 10. The method according to claim 9 , further comprising: tagging activities interacting with the site operating outside of the network; and applying one or more policies to the tagged activities. 11. A computer program product comprising at least one non-transitory computer readable medium storing instructions translatable by at least one processor, the instructions when translated causing a computer in a network to perform: continuously monitoring, while a user interacts with a site, access to the site by a multi-mode Web application on a device within the network, the site operating outside of the network and not controlled by the network, wherein the multi-mode Web application appears and functions substantially same as a Web application controlled by the site which is accessed by the multi-mode Web application; detecting, via the multi-mode Web application on the device, a particular type of user activity with the site operating outside of the network; based on access by the device in network to the site operating outside of the network, receiving unstructured data from outside of the network and responsive to the detection of the particular type of user activity with the site operating outside of the network, dynamically converting at least part of the unstructured data to structured data utilizing application element types, wherein the application element types are parsed from the unstructured data utilizing one or more filters specific to the site operating outside of the network, wherein the unstructured data comprises source code data for the Web application controlled by the site operating outside the network, and wherein the structured data comprises a controlled version of the Web application; and applying a policy to the structured data, wherein the policy is internal to the network. 12. The computer program product of claim 11 , wherein applying the policy further comprises blocking access by the device to the structured data or limiting access by the device to at least a portion of the structured data. 13. The computer program product of claim 11 , wherein applying the policy further comprises modifying at least a portion of the structured data prior to forwarding to the device in the network. 14. The computer program product of claim 11 , wherein applying the policy further comprises limiting access by the device to one or more features associated with the structured data. 15. The computer program product of claim 14 , wherein at least one of the one or more features associated with the structured data comprises posting or attempting to post content on the site operating outside of the network. 16. The computer program product of claim 11 , wherein the site is a social media site operating outside of the network. 17. The computer program product of claim 11 , wherein the unstructured data is received from the site operating outside of the network, and wherein the at least part of the unstructured data is dynamically converted to the structured data utilizing one or more of the application element types parsed from the unstructured data received from the site operating outside of the network. 18. The computer program product of claim 17 , wherein the application element types are specific to the site operating outside of the network. 19. The computer program product of claim 11 , wherein the instructions when translated further cause the computer in the network to perform: tagging the structured data, wherein tagging the structured data comprises utilizing one or more of the application element types parsed from the unstructured data. 20. The computer program product of claim 19 , wherein the instructions when translated further cause the computer in the network to perform: tagging activities interacting with the site operating outside of the network; and applying one or more policies to the tagged activities. 21. A system comprising: at least one processor; and at least one non-transitory computer readable medium storing instructions translatable by the at least one processor, the instructions when translated causing a computer in a network to perform: continuously monitoring, while a user interacts with a site, access to the site by a multi-mode Web application on a device within the network, the site operating outside of the network and not controlled by the network, w
Assignees
Inventors
Classifications
Tracking the activity of the user (network monitoring arrangements H04L43/00; recording of computer activity G06F11/34) · CPC title
- H04L63/20Primary
for managing network security; network security policies in general (filtering policies H04L63/0227) · CPC title
Multiple levels of security · CPC title
Grouping of entities · CPC title
Physics · mapped topic
Patent family
Related publications grouped by family.
External sources
Frequently asked questions
Answers are generated from the same data shown on this page.
- What does patent US9401929B2 cover?
- Communications by a device in a private network to a site operating outside of the network can be programmatically inspected. Unstructured data, including messages and application content, originating from outside of the network may be dynamically converted to structured data that can be tagged. Interactions and activities can be monitored and processed differently according to internal policie…
- Who is the assignee on this patent?
- Socialware Inc, Proofpoint Inc
- What technology area does this patent fall under?
- Primary CPC classification H04L63/20. Mapped technology areas include Electricity.
- When was this patent published?
- Publication date Tue Jul 26 2016 00:00:00 GMT+0000 (Coordinated Universal Time) (B2). Legal status and post-grant events are not shown on this page.
- What related patents are in patentsdb?
- We list 8 related publications on this page (citations in our corpus or others sharing the same primary CPC).