Abstract: Implementations described herein disclose a system for providing personalized threat protection for users of computer applications. An implementation of a method disclosed herein includes analyzing usage pattern of an application by a client to determine various application functionalities used by the client, identifying security threats related to the various application functionalities used by the client, and changing the configuration settings of the application for the client based on the plurality of security threats.

Abstract: Implementations described herein disclose a system for providing personalized threat protection for users of computer applications. An implementation of a method disclosed herein includes analyzing usage pattern of an application by a client to determine various application functionalities used by the client, identifying security threats related to the various application functionalities used by the client, and changing the configuration settings of the application for the client based on the plurality of security threats.

Abstract: A system and method for monitoring an equity rights transaction for strategic investors in a securities exchange. More specifically, a technological infrastructure which monitors an equity rights program in which units representing the right to acquire equity in an exchange or an exchange's parent holding company are issued to a participating member in exchange for a cash payment and the achievement of certain volume thresholds on the exchange over a specified period.

Abstract: Controls of interest are indentified by determining which installed software objects associated with the application of interest exhibit certain characteristics, such as being publicly creatable, being designated as safe, and providing a security-related interface. Once the controls of interest are identified from the installed software objects, information associated with each control is obtained and stored. Each time the software program of interest is modified and re-installed, the information is updated to reflect the modifications. Additional information is also stored with the information. The information and the additional information may be provided to a browser for display and may be modified by a user to describe a present state associated with the control of interest (i.e., tested, untested).

Abstract: An automated method and system for testing a web site for vulnerability to a cross site scripting (XSS) attack are disclosed. The automated tool injects a tracer value into both GET and POST form data, and monitors the resultant HTML to determine whether the tracer value is returned to the local machine by the server to which it was sent. If the tracer value is returned, the automated tool attempts to exploit the web site by injecting a non-malicious script as part of an input value for some form data, based on the location in the returned HTML in which the returned tracer value was found. If the exploit is successful, as indicated by the non-malicious script, the automated tool logs the exploit to a log file that a user can review at a later time, e.g., to assist in debugging the web site.

Abstract: The present invention provides a system and method for tracking and verifying that controls associated with an application of interest do not present a potential security risk. The method includes identifying controls of interest by determining which installed software objects associated with the application of interest exhibit certain characteristics, such as being publicly creatable, being designated as safe, and providing a security-related interface. Once the controls of interest are identified from the installed software objects, information associated with each control is obtained and stored. Each time the software program of interest is modified and re-installed, the information is updated to reflect the modifications. Additional information is also stored with the information. The information and the additional information may be provided to a browser for display and may be modified by a user to describe a present state associated with the control of interest (i.e., tested, untested).

Abstract: A system of employing a single bar code provided on a shipping label for coordinating shipping and receiving information between supplier and customer includes accessing a supplier digital processor including a parts database from a customer digital processor via a digital communication link. Purchase order information is selected in the parts database. Authorization is provided from the customer digital processor to the supplier digital processor for the immediate shipment of the selected purchase order by means of an authorization command, and a single bar code is generated and provided on a shipping label in response to the authorization command, whereby the single bar code is linked to a plurality of predetermined relevant purchase and shipping information associated with the purchase order.