-
公开(公告)号:US09608974B2
公开(公告)日:2017-03-28
申请号:US14629372
申请日:2015-02-23
Applicant: Amazon Technologies, Inc.
Inventor: Maximilian Francis Barrows , Paul Francis Dean Ferraro , Jason George McHugh , Abraham Martin Passaglia , Andrew Jay Roths , Eric Allan Shell
CPC classification number: H04L63/08 , H04L63/0846
Abstract: Approaches are described for automatically generating new security credentials, such as security tokens, which can involve automatically re-authenticating a user (or client device) using a previous security token issued to that user (or device). The re-authentication can happen without any knowledge and/or action on the part of the user. The re-authentication mechanism can invalidate and/or keep track of the previous security token, such that when a subsequent request is received that includes the previous security token, the new security token can be invalidated, and the user caused to re-authenticate, as receiving more than one request with the previous security token can be indicative that the user's token might have been stolen.
-
公开(公告)号:US08966599B1
公开(公告)日:2015-02-24
申请号:US13830877
申请日:2013-03-14
Applicant: Amazon Technologies, Inc.
Inventor: Maximilian Francis Barrows , Paul Francis Dean Ferraro , Jason George Mchugh , Abraham Martin Passaglia , Andrew Jay Roths , Eric Allan Shell
CPC classification number: H04L63/08 , H04L63/0846
Abstract: Approaches are described for automatically generating new security credentials, such as security tokens, which can involve automatically re-authenticating a user (or client device) using a previous security token issued to that user (or device). The re-authentication can happen without any knowledge and/or action on the part of the user. The re-authentication mechanism can invalidate and/or keep track of the previous security token, such that when a subsequent request is received that includes the previous security token, the new security token can be invalidated, and the user caused to re-authenticate, as receiving more than one request with the previous security token can be indicative that the user's token might have been stolen.
Abstract translation: 描述了用于自动生成新安全凭证(例如安全令牌)的方法,其可以涉及使用发给该用户(或设备)的先前安全令牌来自动重新认证用户(或客户端设备)。 重新认证可以在用户没有任何知识和/或动作的情况下发生。 重新认证机制可以使先前的安全令牌无效和/或跟踪,使得当接收到包括先前的安全令牌的后续请求时,新的安全令牌可以被无效,并且用户重新认证, 因为接收到具有先前的安全令牌的多个请求可以指示用户的令牌可能被盗。
-
公开(公告)号:US09756086B1
公开(公告)日:2017-09-05
申请号:US13784295
申请日:2013-03-04
Applicant: Amazon Technologies, Inc.
Inventor: Jason George McHugh , Paul Francis Dean Ferraro
CPC classification number: H04L65/1069 , H04L67/1004
Abstract: Persistent connections between multiple client devices and multiple back-end service components are managed using a consistent hashing-based approach to route distribution. A load balancer distributes the connections across multiple gateway servers. Each connection is associated with a device having an identifier, which can be hashed using a selected hashing algorithm. The gateway servers are assigned values over a hashing range. When a connection is established for a device, the hash value for that device can be mapped to a corresponding gateway server. The primary gateway server establishing the connection can store information (e.g., the port or interface) for the connection, and can send identifying information to the corresponding gateway server determined by the hash value. When a backend service wants to locate the connection, the service hashes the device identifier to determine the corresponding gateway server, which returns the identity of the primary gateway server hosting the connection.
-
-
Search Results
3
records
(took 0.017 seconds)
