Patents by Inventor Guy Karlebach

Guy Karlebach has filed for patents to protect the following inventions. This listing includes patent applications that are pending as well as patents that have already been granted by the United States Patent and Trademark Office (USPTO).

  • System and method for preventing web frauds committed using client-scripting attacks
    Patent number: 9455997
    Abstract: A method for detecting and blocking Javascript hijacking attacks, comprising checking if an incoming request belongs to a valid session established between a client and a trusted server. When said incoming request does belong to a valid session, it is checked if a Referer header of said incoming request includes a valid domain name. The incoming request is marked as suspicious, when said incoming request does not include a valid domain name. It is checked if a respective response of said suspicious incoming request includes a script code. A preventive action responsive to a user input is taken when said respective response includes a script code.
    Type: Grant
    Filed: May 15, 2012
    Date of Patent: September 27, 2016
    Assignee: IMPERVA, INC.
    Inventors: Amichai Shulman, Guy Karlebach
  • System and method for preventing web frauds committed using client-scripting attacks
    Patent number: 8984630
    Abstract: A method for detecting and blocking Javascript hijacking attacks, comprising checking if an incoming request belongs to a valid session established between a client and a trusted server. When said incoming request does belong to a valid session, it is checked if a Referer header of said incoming request includes a valid domain name. The incoming request is marked as suspicious, when said incoming request does not include a valid domain name. It is checked if a respective response of said suspicious incoming request includes a script code. A preventive action responsive to a user input is taken when said respective response includes a script code.
    Type: Grant
    Filed: March 12, 2012
    Date of Patent: March 17, 2015
    Assignee: Imperva, Inc.
    Inventors: Amichai Shulman, Guy Karlebach
  • SYSTEM AND METHOD FOR PREVENTING WEB FRAUDS COMMITTED USING CLIENT-SCRIPTING ATTACKS
    Publication number: 20120227106
    Abstract: A method for detecting and blocking Javascript hijacking attacks, comprising checking if an incoming request belongs to a valid session established between a client and a trusted server. When said incoming request does belong to a valid session, it is checked if a Referer header of said incoming request includes a valid domain name. The incoming request is marked as suspicious, when said incoming request does not include a valid domain name. It is checked if a respective response of said suspicious incoming request includes a script code. A preventive action responsive to a user input is taken when said respective response includes a script code.
    Type: Application
    Filed: May 15, 2012
    Publication date: September 6, 2012
    Inventors: AMICHAI SHULMAN, GUY KARLEBACH
  • SYSTEM AND METHOD FOR PREVENTING WEB FRAUDS COMMITTED USING CLIENT-SCRIPTING ATTACKS
    Publication number: 20120180129
    Abstract: A method for detecting and blocking Javascript hijacking attacks, comprising checking if an incoming request belongs to a valid session established between a client and a trusted server. When said incoming request does belong to a valid session, it is checked if a Referer header of said incoming request includes a valid domain name. The incoming request is marked as suspicious, when said incoming request does not include a valid domain name. It is checked if a respective response of said suspicious incoming request includes a script code. A preventive action responsive to a user input is taken when said respective response includes a script code.
    Type: Application
    Filed: March 12, 2012
    Publication date: July 12, 2012
    Inventors: Amichai Shulman, Guy Karlebach
  • System and method for preventing web frauds committed using client-scripting attacks
    Patent number: 8181246
    Abstract: A method for detecting and blocking Javascript hijacking attacks, comprising checking if an incoming request belongs to a valid session established between a client and a trusted server. When said incoming request does belong to a valid session, it is checked if a Referer header of said incoming request includes a valid domain name. The incoming request is marked as suspicious, when said incoming request does not include a valid domain name. It is checked if a respective response of said suspicious incoming request includes a script code. A preventive action responsive to a user input is taken when said respective response includes a script code.
    Type: Grant
    Filed: June 20, 2008
    Date of Patent: May 15, 2012
    Assignee: Imperva, Inc.
    Inventors: Amichai Shulman, Guy Karlebach
  • SYSTEM AND METHOD FOR PREVENTING WEB FRAUDS COMMITTED USING CLIENT-SCRIPTING ATTACKS
    Publication number: 20080320567
    Abstract: A method for detecting and blocking Javascript hijacking attacks, comprising checking if an incoming request belongs to a valid session established between a client and a trusted server. When said incoming request does belong to a valid session, it is checked if a Referer header of said incoming request includes a valid domain name. The incoming request is marked as suspicious, when said incoming request does not include a valid domain name. It is checked if a respective response of said suspicious incoming request includes a script code. A preventive action responsive to a user input is taken when said respective response includes a script code.
    Type: Application
    Filed: June 20, 2008
    Publication date: December 25, 2008
    Applicant: IMPERVA, INC.
    Inventors: Amichai SHULMAN, Guy Karlebach