公开(公告)号：US20240098090A1

公开(公告)日：2024-03-21

申请号：US18056977

申请日：2022-11-18

Applicant: Cisco Technology, Inc.

Inventor： Rami Haddad ,  Rim El Malki ,  Daniel-Serban Cozma ,  Hendrikus G. P. Bosch

IPC: H04L9/40

CPC classification number: H04L63/101 ,  H04L63/102 ,  H04L63/105

Abstract: A system and method for an extended security scheme for reducing the prevalence of broken object level authorization. In one embodiment, a method includes receiving code associated with an application programming interface (API), wherein the code includes one of an API definition and an API server stub, and parsing the code for one or more keywords associated with an extended security scheme. If the code includes the API definition, the method further includes generating an associated API server stub based on at least one of the one or more keywords and the API definition. If the code includes the API server stub, the method further includes generating an associated API definition based on at least one of the one or more keywords and the API server stub.