Information security – Monitoring or scanning of software or data including attack...
Reexamination Certificate
2011-06-28
2011-06-28
Dinh, Minh (Department: 2432)
Information security
Monitoring or scanning of software or data including attack...
C726S023000
Reexamination Certificate
active
07971245
ABSTRACT:
A method and system to verify active content in a server system include receiving a communication (e.g., an e-mail message or an e-commerce listing) that includes active content to be made accessible by the server system. A reference (e.g., a URL) within the active content is identified, the reference pointing to further data that is not included within the communication. This further data is to be retrieved when the active content is rendered. The reference is stored at the server system, and the further data, to which the reference points, is repetitively and periodically retrieved. Subsequent to each retrieval of the further data, a determination is made as to whether the further data is malicious.
REFERENCES:
patent: 6088803 (2000-07-01), Tso et al.
patent: 6272641 (2001-08-01), Ji
patent: 6721721 (2004-04-01), Bates et al.
patent: 6785732 (2004-08-01), Bates et al.
patent: 6829708 (2004-12-01), Peinado et al.
patent: 6952776 (2005-10-01), Chess
patent: 7080407 (2006-07-01), Zhao et al.
patent: 7096215 (2006-08-01), Bates et al.
patent: 7096500 (2006-08-01), Roberts et al.
patent: 7107618 (2006-09-01), Gordon et al.
patent: 7237265 (2007-06-01), Reshef et al.
patent: 7260847 (2007-08-01), Sobel et al.
patent: 7269735 (2007-09-01), Raley et al.
patent: 7328454 (2008-02-01), Strickland et al.
patent: 7418731 (2008-08-01), Touboul
patent: 7526810 (2009-04-01), Lalonde et al.
patent: 2002/0174341 (2002-11-01), Logue et al.
patent: 2003/0018779 (2003-01-01), Hughes et al.
patent: 2003/0023708 (2003-01-01), Jung
patent: 2003/0097591 (2003-05-01), Pham et al.
patent: 2003/0120952 (2003-06-01), Tarbotton et al.
patent: 2003/0144904 (2003-07-01), Beckman et al.
patent: 2003/0212913 (2003-11-01), Vella
patent: 2004/0078569 (2004-04-01), Hotti
patent: 2004/0088570 (2004-05-01), Roberts et al.
patent: 2004/0148281 (2004-07-01), Bates et al.
patent: 2004/0268145 (2004-12-01), Watkins et al.
patent: 2005/0005160 (2005-01-01), Bates et al.
patent: 2005/0283833 (2005-12-01), Lalonde et al.
patent: 2005/0283835 (2005-12-01), Lalonde et al.
patent: 2009/0187990 (2009-07-01), Lalonde et al.
patent: 10126752 (2001-12-01), None
patent: 2368163 (2002-04-01), None
patent: WO 2002099689 (2002-12-01), None
patent: WO 2006009961 (2006-01-01), None
patent: WO 2006009961 (2006-01-01), None
“What is Active Content?”,A word definition from the Webopedia Company,(Visited Jun. 13, 2005),1-2.
Carr, Katherine, “Active content: Friend or foe?”,2002 Sophos Plc.,(Jan. 2002),10 pages.
Ioannidis, Sotiris, et al., “Sub-Operating Systems: A New Approach to Application Security”,Technical Report MS-CIS-01-06. University of Pennsylvania,(Feb. 2000),12 pages.
Josang, Audun, et al., “Web Security: The Emperors New Armour”,Proceedings of the European Conference on Information Systems(ECIS2001), (Jun. 2001),11 pages.
Wallach; Dan S., et al., “Extensible Security Architectures for Java”,16th Symposium on Operating Systems Principles,(Oct. 1997),26 Pages.
Woods, Bob, “Active Internet Content Dangerous-Report”,Instant Messaging Planet:Security,(Sep. 18, 2002),1-2.
U.S. Appl. No. 10/875,443, filed Jun. 23, 2004, Method and System to Verify Data Received, at a Server System, for Access and/or Publication Via the Server System.
U.S. Appl. No. 10/876,336, Jun. 23, 2004, A Render Engine, and Method of Using the Same, to Verify Data for Access and/or Publication Via a Computer System.
“U.S. Appl. No. 10/875,443, Non-Final Office Action mailed Dec. 6, 2007”, 13.
“U.S. Appl. No. 10/875,443, Response filed Apr. 7, 2008 to Non-Final Office Action mailed Dec. 6, 2007”, 15 pgs.
“U.S. Appl. No. 10/876,336, Non-Final Office Action mailed Jan. 31, 2008”, 8 pgs.
“Regular expression”, http://en.wikipedia.org/wiki/Regular—expression, From Wikipedia, the free encyclopedia,(Apr. 3, 2008).
“Regular Expression—Definitions from Dictionary.com”, http://dictionary.reference.com/browse/regular%20expression, (2008).
“Regular Expressions—The Single UNIX Specification, Version 2”, http://www.opengroup.org/onlinepubs/007908799/xbd/re.html, The Open Group,(1997).
Schmall, Markus , “Heuristic Techniques in AV Solutions: An Overview”, SecurityFocus.com, http://www.securityfocus.com/infocus/1542, (Feb. 2002).
Westermann, Erik , “Learn XML in a Weekend”, ISBN 159200-010-x, (Oct. 2002).
Zdziarski, Jonathan , “A Plan for Spam”, www.paulgraham.com/spam.html, (Aug. 2002).
U.S. Appl. No. 10/876,336, Final Office Action mailed Oct. 6, 2009, 7 pgs.
U.S. Appl. No. 10/876,336, Response filed Dec. 7, 2009 to Final Office Action mailed Oct. 6, 2009, 11 pgs.
U.S. Appl. No. 10/876,336, Preliminary Amendment filed Aug. 5, 2005, 5 pgs.
U.S. Appl. No. 10/876,336, Response filed Dec. 22, 2008 to Final Office Action mailed Aug. 20, 2008, 11 pgs.
U.S. Appl. No. 10/876,336, Pre-Appeal Brief Request filed Apr. 29, 2010, 5 pgs.
U.S. Appl. No. 10/876,336, Final Office Action mailed Mar. 4, 2010, 6 pgs.
U.S. Appl. No. 10/876,336, Non-Final Office Action mailed Jul, 21, 2010, 6 pgs.
“U.S. Appl. No. 10/875,443, Advisory Action mailed Jun. 27, 2007”, 3 pgs.
“U.S. Appl. No. 10/875,443, Advisory Action mailed Jul. 14, 2006”, 3 pgs.
“U.S. Appl. No. 10/875,443, Appeal Brief filed Sep. 10, 2007”, 32 pgs.
“U.S. Appl. No. 10/875,443, Final Office Action mailed Apr. 6, 2007”, 9 pgs.
“U.S. Appl. No. 10/875,443, Final Office Action mailed Apr. 24, 2006”, 11 pgs.
“U.S. Appl. No. 10/875,443, Non Final Office Action mailed Oct. 18, 2005”, 6 pgs.
“U.S. Appl. No. 10/875,443, Non Final Office Action mailed Oct. 18, 2006”, 7 pgs.
“U.S. Appl. No. 10/875,443, Preliminary Amendment mailed Aug. 5, 2005”, 3 pgs.
“U.S. Appl. No. 10/875,443, Response filed Jan. 18, 2007 to Non Final Office Action mailed Oct. 18, 2006”, 13 pgs.
“U.S. Appl. No. 10/875,443, Response filed Feb. 7, 2006 to Non Final Office Action mailed Oct. 18, 2005”, 16 pgs.
“U.S. Appl. No. 10/875,443, Response filed Jun. 6, 2007 to Final Office Action mailed Apr. 6, 2007”, 25 pgs.
“U.S. Appl. No. 10/875,443, Response filed Jun. 26, 2006 to Final Office Action mailed Apr. 24, 2006”, 18 pgs.
“U.S. Appl. No. 10/876,336, Response filed Nov. 16, 2010 to Final Office Action mailed Nov. 4, 2010”, 10 pgs.
“U.S. Appl. No. 10/876,336, Final Office Action mailed Nov. 4, 2010”, 6.
“U.S. Appl. No. 10/876,336, Advisory Action mailed Dec. 1, 2010”, 3 pgs.
“U.S. Appl. No. 10/876,336, Response filed Aug. 24, 2010 to Non Final Office Action mailed Jul. 21, 2010”, 10 pgs.
“U.S. Appl. No. 12/414,508, Preliminary Amendment mailed May 21, 2009”, 4 pgs.
“European Application Serial No. 05762657.4, Supplementary European Search Report mailed Jul. 26, 2010”, 3 pgs.
U.S. Appl. No. 10/875,443, Notice of Allowance mailed Dec. 19, 2008, 10 pgs.
U.S. Appl. No. 10/875,443, Response filed Oct. 2, 2008 to Final Office Action mailed Jul. 2, 2008, 15 pgs.
U.S. Appl. No. 10/875,443, Final Office Action mailed Jul. 2, 2008, 15 pgs.
U.S. Appl. No. 10/876,336, Response filed Jun. 2, 2008 to Non-Final Office Action mailed Jan. 31, 2008, 14 pgs.
U.S. Appl. No. 10/876,336, Non Final Office Action mailed Mar. 12, 2009, 7 pgs.
U.S. Appl. No. 10/876,336, Response filed Jun. 12, 2009 to Non Final Office Action mailed Mar. 12, 2009, 8 pgs.
U.S. Appl. No. 10/876,336, Final Office Action mailed Aug. 20, 2008, 6 pgs.
Black Kevin
Brown Andrew
Henley Mathew
Lalonde Chris
Pham Quang
Dinh Minh
eBay Inc.
Perungavoor Venkat
Schwegman Lundberg & Woessner, P.A.
LandOfFree
Method and system to detect externally-referenced malicious... does not yet have a rating. At this time, there are no reviews or comments for this patent.
If you have personal experience with Method and system to detect externally-referenced malicious..., we encourage you to share that experience with our LandOfFree.com community. Your opinion is very important and Method and system to detect externally-referenced malicious... will most certainly appreciate the feedback.
Profile ID: LFUS-PAI-O-2643245