公开(公告)号：US20210400041A1

公开(公告)日：2021-12-23

申请号：US17206305

申请日：2021-03-19

申请人： Akamai Technologies, Inc.

发明人： Emile Delcourt ,  Harish Somaraddi ,  Tadhg Pearson

IPC分类号： H04L29/06

摘要： Among other things, this document describes systems, methods, and apparatus for monitoring and protecting a user credential issued by an organization when that credential is used outside that organization's network security perimeter. For example, a reverse proxy server (RPS) receives a client request directed to a content provider's site. The RPS initiates a process that involves parsing the request message and extracting a user credential. The RPS locates a credential policy from the credential owner based on the user credential. The RPS can issue an API request to a credential service that is authoritative for the credential. That credential service may return a directive to the RPS specifying how to handle the client request message. Preferably, the operation is transparent to the content provider whose site was the target of the client's request message. Activity records can be presented in visualizations that enhance security analysts' tactical comprehension at a glance.

公开(公告)号：US10958649B2

公开(公告)日：2021-03-23

申请号：US16014033

申请日：2018-06-21

申请人： Akamai Technologies, Inc.

发明人： Emile Delcourt ,  Harish Somaraddi ,  Tadhg Pearson ,  Branko Matijasevic ,  Blair Charles Caple

IPC分类号： H04L29/06

摘要： Among other things, this document describes systems, methods, and apparatus for monitoring and protecting a user credential issued by an organization when that credential is used outside that organization's network security perimeter. For example, a reverse proxy server (RPS) receives a client request directed to a content provider's site. The RPS initiates a process that involves parsing the request message and extracting a user credential. The RPS locates a credential policy from the credential owner based on the user credential. The RPS can issue an API request to a credential service that is authoritative for the credential. That credential service may return a directive to the RPS specifying how to handle the client request message. Preferably, the operation is transparent to the content provider whose site was the target of the client's request message. Activity records can be presented in visualizations that enhance security analysts' tactical comprehension at a glance.

公开(公告)号：US20190297079A1

公开(公告)日：2019-09-26

申请号：US16014033

申请日：2018-06-21

申请人： Akamai Technologies, Inc.

发明人： Emile Delcourt ,  Harish Somaraddi ,  Tadhg Pearson ,  Branko Matijasevic ,  Blair Charles Caple

IPC分类号： H04L29/06

摘要： Among other things, this document describes systems, methods, and apparatus for monitoring and protecting a user credential issued by an organization when that credential is used outside that organization's network security perimeter. For example, a reverse proxy server (RPS) receives a client request directed to a content provider's site. The RPS initiates a process that involves parsing the request message and extracting a user credential. The RPS locates a credential policy from the credential owner based on the user credential. The RPS can issue an API request to a credential service that is authoritative for the credential. That credential service may return a directive to the RPS specifying how to handle the client request message. Preferably, the operation is transparent to the content provider whose site was the target of the client's request message. Activity records can be presented in visualizations that enhance security analysts' tactical comprehension at a glance.