| CPC H04L 63/04 (2013.01) [G06F 21/6254 (2013.01); G06F 21/6263 (2013.01); H04L 63/0421 (2013.01); H04L 67/02 (2013.01); H04L 67/10 (2013.01); H04L 67/565 (2022.05)] | 20 Claims |
|
1. A gateway device coupled between a client device and a server, comprising:
a mapping generator configured to generate a unique mapping for each of a plurality of client devices that maps input fields within a web page to a byte range within a body of a payload generated by the web page;
an encoding engine configured to, in response to receiving the payload generated by the web page in response to entry of data entered within the input fields of the web page by the client device:
access a security policy corresponding to the web page and identifying, for each input field of the web page, an associated encoding operation;
identify, for each input field of the web page, an associated payload portion corresponding to the input field using the mapping unique to the client device; and
encode, for each input field of the web page, the associated payload portion using the encoding operation associated with the input field to produce an encoded payload portion, wherein a first payload portion associated with a first input field is left in plain text, wherein a second payload portion associated with a second input field is partially encoded such that some but not all of the second payload portion is encoded and a remainder is left in plain text, and wherein a third payload portion associated with a third input field is entirely encoded; and
an output configured to output the encoded payload portions to the server.
|