Data driven system for responding to security vulnerability

摘要

A data-driven system for fast response to security vulnerability, in one example embodiment, comprises a request detector, a content type evaluator, and a presentation module. A request detector may be configured to detect a request to display content. A content type evaluator may be configured to determine a type of the requested content. A presentation module may be configured to selectively display the requested content based on the determined type of the requested content. The content type evaluator and the presentation module may utilize a data file that stores information related to potential vulnerabilities associated with a content viewing application. Example data file may be an XML file.

主权项

1. A system comprising:
a request detector to detect a request to render a content element in a viewing application; a content parser to determine a characteristic of the content element, wherein the characteristic is associated with a type of the content element; a security data file parser to interrogate a security data file with the determined characteristic, wherein an entry in the security data file reflects a vulnerability associated with the type of content element; and a decision module to determine, using at least one hardware processor, whether to disallow operations relating to the content element in the viewing application based on a result of the interrogating of the security data file.