IPC분류정보
국가/구분 |
United States(US) Patent
등록
|
국제특허분류(IPC7판) |
|
출원번호 |
US-0277041
(2011-10-19)
|
등록번호 |
US-8627467
(2014-01-07)
|
발명자
/ 주소 |
- Levy, Yuval
- Talmor, Ron
- Serfaty, Beni
|
출원인 / 주소 |
|
대리인 / 주소 |
LeClairRyan, A Professional Corporation
|
인용정보 |
피인용 횟수 :
3 인용 특허 :
126 |
초록
▼
A system and method for selectively storing one or more web objects in a memory is disclosed. A server response is received at a network traffic management device, wherein the server response is associated with a client request sent from a client device and includes at least one web object. The serv
A system and method for selectively storing one or more web objects in a memory is disclosed. A server response is received at a network traffic management device, wherein the server response is associated with a client request sent from a client device and includes at least one web object. The server response is analyzed using a security module of the network traffic management device which determines if the at least a portion of the server response contains suspicious content in relation to one or more defined policy parameters handled by the security module. An instruction is sent from the security module to a cache module of the network traffic management device upon determining that the at least a portion of the server response contains suspicious information, wherein the cache module does not store the at least one web object upon receiving the instruction.
대표청구항
▼
1. A method of selectively storing one or more web objects in a memory, the method comprising: receiving a server response at a network traffic management device interposed between and separate from a client device and a server over a network, wherein the server response is associated with a client
1. A method of selectively storing one or more web objects in a memory, the method comprising: receiving a server response at a network traffic management device interposed between and separate from a client device and a server over a network, wherein the server response is associated with a client request sent from the client device, wherein the server response includes at least one web object;analyzing the server response using a security module of the network traffic management device;determining if the at least a portion of the server response contains suspicious content in relation to one or more defined policy parameters handled by the security module; andsending an instruction from the security module to a cache module of the network traffic management device upon the security module determining that the at least a portion of the server response contains suspicious information, wherein the cache module does not store the at least one web object upon receiving the instruction when the network traffic management device replies to the client device. 2. The method of claim 1, further comprising determining if the network traffic management device is operating in a blocking mode based on the at least a portion of the server response in relation to the one or more defined policy parameters. 3. The method of claim 2, further comprising sending a blocked response page to the client device upon determining the security module is operating in the blocking mode, wherein at least a portion of the block response page is not stored in the memory by the cache module. 4. The method of claim 2, further comprising: sending the server response to the client device upon determining that the network traffic management device is not operating in the blocking mode, wherein at least a portion of the server response is not stored in the memory by the cache module. 5. The method of claim 1, further comprising: inquiring in the memory if at least a portion of the client request was identified by the security module as being suspicious with respect to the one or more defined security policy parameters; sending the server response to the client device upon determining from the memory that the at least a portion of the client request was identified as being suspicious, wherein the at least a portion of the server response is not stored in the memory by the cache module. 6. The method of claim 1, wherein the at least a portion of the server response that is determined to be suspicious further comprises: analyzing the at least one web object in the server response to determine if the at least one web object is protected with respect to the one or more defined security policy parameters. 7. A non-transitory machine readable medium having stored thereon instructions for selectively storing one or more web objects in a memory, comprising machine executable code which, when executed by at least one machine of a network traffic management device, causes the machine to: receive a server response from a server at a network traffic management device interposed between and separate from the server and a client device, wherein the server response is associated with a client request sent from the client device, wherein the server response includes at least one web object; analyze the server response; determine if at least a portion of the server response is suspicious in relation to one or more defined policy parameters; and send an instruction to a cache module upon determining that the at least a portion of the server response is suspicious in relation to the one or more defined policy parameters, wherein the cache module does not store the at least one web object in a memory upon receiving the instruction when the network traffic management device replies to the client device. 8. The machine readable medium of claim 7, further comprising causing the machine to determine if the machine is operating in a blocking mode based on the at least a portion of the server response in relation to the one or more defined policy parameters. 9. The machine readable medium of claim 8, further comprising causing the machine to send a blocked response page to the client device upon determining that the machine is operating in the blocking mode, wherein at least a portion of the block response page is not stored in the memory by the cache module. 10. The machine readable medium of claim 8, further comprising causing the machine to send the server response to the client device upon determining that the machine is not operating in the blocking mode, wherein the at least a portion of the server response is not stored in the memory by the cache module. 11. The machine readable medium of claim 7, wherein the machine is further configured to: inquire in the memory if at least a portion of the client request was identified as being suspicious with respect to the one or more defined security policy parameters; send the server response to the client device upon determining from the memory that the at least a portion of the client request was identified as being suspicious, wherein the at least one web object in the server response is not stored in the memory by the cache module. 12. The machine readable medium of claim 7, wherein the at least a portion of the server response that is determined by the machine to be suspicious, the machine further configured to: analyze the at least one of the web object in the server response to determine if the at least one web object is protected with respect to the one or more defined security policy parameters. 13. A network traffic management device comprising: a network interface capable of receiving and transmitting client requests and server responses between at least one client device and at least one server over one or more networks, the network traffic management device being interposed between and separate from the at least one client device and the at least one server; a memory configured to store one or more programming instructions associated with selectively storing one or more web objects; and one or more processors configured to execute the stored programming instructions, which when executed by the one or more processors, cause the one or more processors to: analyze a received server response associated with a client request sent from a client device, wherein the server response includes at least one web object; determine if the at least a portion of the server response is suspicious in relation to one or more defined policy parameters; and send an instruction to a cache module upon determining that the at least a portion of the server response is suspicious in relation to the one or more defined policy parameters, wherein the at least a portion of the server response is not stored in the memory as a result of the instruction when the network traffic management device replies to the client device. 14. The network traffic management device of claim 13, wherein the one or more processors is configured to send a blocked response page to the client device upon determining the network traffic management device is operating in the blocking mode, wherein at least a portion of the block response page is not stored in the memory by the cache module. 15. The network traffic management device of claim 14 wherein the one or more processors is configured to send the server response to the client device upon determining that the network traffic management device is not operating in the blocking mode, wherein the at least a portion of the server response is not stored in the memory by the cache module. 16. The network traffic management device of claim 13, wherein the one or more processors is configured to determine if the network traffic management device is operating in a blocking mode based on the at least one web object and the one or more defined policy parameters. 17. The network traffic management device of claim 14, wherein the one or more processors is configured to: inquire in the memory if at least a portion of the client request was identified as being suspicious with respect to the one or more defined security policy parameters; send the server response to the client device upon determining from the memory that the at least a portion of the client request was identified as being suspicious, wherein the at least one web object in the server response is not stored in the memory by the cache module. 18. The network traffic management device of claim 13, wherein the one or more processors is configured to analyze the at least one of the web object in the server response to determine if the at least one web object is protected with respect to the one or more defined security policy parameters.
※ AI-Helper는 부적절한 답변을 할 수 있습니다.