| 发明名称 |
Method and apparatus for cookie anonymization and rejection |
| 摘要 |
Example embodiments of the present invention provide a method, an apparatus and a computer program product for cookie anonymization and rejection. The method includes receiving a cookie included in a data stream transmitted from a source intended for a destination. A lexical analysis of the cookie included in the data stream is then performed to determine state information associated with the cookie. The state information associated with the cookie then may be forwarded to the destination according to the lexical analysis. Example embodiments of the present invention specifically targets cookies and beacons that flow through a system, and historically track cookie and beacon traffic in order to perform drill-down inspection on the contents. This inspection allows for detection of sensitive information such as credit cards, location, and any other personal info, as well as the potential presence of malware which is performing unusual behavior within the private system. |
| 申请公布号 |
US9152820(B1) |
申请公布日期 |
2015.10.06 |
| 申请号 |
US201213436702 |
申请日期 |
2012.03.30 |
| 申请人 |
EMC Corporation |
发明人 |
Pauley, Jr. Wayne A.;Todd Stephen J.;Fisher Michel F. |
| 分类号 |
H04L29/06;G06F21/62 |
主分类号 |
H04L29/06 |
| 代理机构 |
|
代理人 |
Gupta Krishnendu;Kazanjian Gerald P. |
| 主权项 |
1. A computer-implemented method comprising:
receiving a cookie included in a data stream transmitted from a source device intended for a destination device by an intercepting device other than the source device and the destination device, not otherwise required for transmission of the data stream from the source device to the destination device and collocated with the source device in a network at a location in a data path between the source device and the destination device before the data stream leaves the network; performing a lexical analysis of the cookie included in the data stream to determine state information associated with the cookie; inspecting context and content of the cookie included in the data stream; creating a cookie fingerprint based on the context and the content of the cookie included in the data stream; determining whether the context and the content of the cookie included in the data stream requires transformation of the state information associated with the cookie according to a determination of whether the cookie fingerprint matches a target allowance according to a policy; performing a transformation on the state information associated with the cookie according to the determination to generate a transformed cookie as part of a transformed data stream; and forwarding the transformed data stream out of the network toward the destination device. |
| 地址 |
Hopkinton MA US |
