公开(公告)号：US11695576B2

公开(公告)日：2023-07-04

申请号：US17369260

申请日：2021-07-07

Applicant: EBAY INC.

Inventor： Kevin Sugihara ,  Bradley Wardman

IPC: H04L9/00 ,  H04L9/32 ,  H04L9/40 ,  G06F21/44 ,  H04L9/14 ,  H04L9/30

CPC classification number: H04L9/3271 ,  G06F21/445 ,  H04L9/14 ,  H04L9/30 ,  H04L63/06 ,  H04L63/08 ,  H04L63/0869 ,  H04L63/10 ,  H04L63/1466

Abstract: Systems and methods for authenticating requests to use an Application Programming Interface (“API”) are described. In some embodiments, a request to use an API is received. Based on a comparison of the request to use the API with a pattern of activity associated with the client, a determination is made whether the client deviates from an expected behavior. Once a determination that the client deviates from the expected behavior is made, an authentication challenge is generated and issued. In some embodiments, the comparison of the request to use the API with a pattern of activity involves comparing transactional attributes of the request to use the API with past client behavior.

公开(公告)号：US20210336803A1

公开(公告)日：2021-10-28

申请号：US17369260

申请日：2021-07-07

Applicant: EBAY INC.

Inventor： Kevin Sugihara ,  Bradley Wardman

IPC: H04L9/32 ,  H04L29/06 ,  G06F21/44 ,  H04L9/14 ,  H04L9/30

Abstract: Systems and methods for authenticating requests to use an Application Programming Interface (“API”) are described. In some embodiments, a request to use an API is received. Based on a comparison of the request to use the API with a pattern of activity associated with the client, a determination is made whether the client deviates from an expected behavior. Once a determination that the client deviates from the expected behavior is made, an authentication challenge is generated and issued. In some embodiments, the comparison of the request to use the API with a pattern of activity involves comparing transactional attributes of the request to use the API with past client behavior.

公开(公告)号：US09363267B2

公开(公告)日：2016-06-07

申请号：US14496160

申请日：2014-09-25

Applicant: EBAY, INC.

Inventor： Kevin Sugihara ,  Bradley Wardman

IPC: G06F15/16 ,  H04L29/06

CPC classification number: H04L9/3271 ,  G06F21/445 ,  H04L9/14 ,  H04L9/30 ,  H04L63/06 ,  H04L63/08 ,  H04L63/0869 ,  H04L63/10 ,  H04L63/1466

Abstract: Methods, systems, and computer program products for providing transaction verification through enhanced authentication are provided. A method performed by a computer system may include receiving one or more credentials to authenticate an application programming interface request received from a second computer system based on a first level of authentication, generating an additional authentication challenge to further authenticate the application programming interface request in response to detecting a change associated with the second computer system, issuing the additional authentication challenge to the second computer system, and processing the application programming interface request based on a result of the additional authentication challenge.In some examples, the additional authentication challenge may be encrypted using a key associated with the second computer system before issuance the additional authentication challenge. For example, the key may be a public key corresponding to a private key stored in a highly secure area on the second computer system.

Abstract translation: 提供了通过增强认证提供事务验证的方法，系统和计算机程序产品。 由计算机系统执行的方法可以包括接收一个或多个证书，以基于第一级认证来验证从第二计算机系统接收到的应用编程接口请求，生成额外的认证挑战以进一步验证应用编程接口请求以作出响应 检测与第二计算机系统相关联的改变，向第二计算机系统发出附加认证挑战，以及基于附加认证挑战的结果处理应用程序编程接口请求。 在一些示例中，可以在发布附加认证挑战之前使用与第二计算机系统相关联的密钥来加密附加认证挑战。 例如，密钥可以是对应于存储在第二计算机系统上的高度安全区域中的私钥的公钥。

公开(公告)号：US12041187B2

公开(公告)日：2024-07-16

申请号：US18198371

申请日：2023-05-17

Applicant: eBay Inc.

Inventor： Kevin Sugihara ,  Bradley Wardman

IPC: H04L9/00 ,  G06F21/44 ,  H04L9/14 ,  H04L9/30 ,  H04L9/32 ,  H04L9/40

CPC classification number: H04L9/3271 ,  G06F21/445 ,  H04L9/14 ,  H04L9/30 ,  H04L63/06 ,  H04L63/08 ,  H04L63/0869 ,  H04L63/10 ,  H04L63/1466

Abstract: Systems and methods for authenticating requests to use an Application Programming Interface (“API”) are described. In some embodiments, a request to use an API is issued from a client to a server. One or more credentials for a first-level authentication challenge are provided from the client to the server. Responsive to the server determining that the client deviates from an expected behavior based on comparing the request to use the API with a pattern of activity associated with the client, the client receives a second authentication challenge.

公开(公告)号：US11075767B2

公开(公告)日：2021-07-27

申请号：US15159398

申请日：2016-05-19

Applicant: EBAY INC.

Inventor： Kevin Sugihara ,  Bradley Wardman

IPC: H04L9/00 ,  H04L9/32 ,  H04L29/06 ,  G06F21/44 ,  H04L9/14 ,  H04L9/30

Abstract: Methods, systems, and computer program products for providing transaction verification through enhanced authentication are provided. A method performed by a computer system may include receiving an application programming interface (API) request from a client, detecting a change associated with the API request as compared to a prior use of the API by the client, generating an encrypted challenge to authenticate the API request based on detecting the change, and issuing the encrypted challenge to the client to authenticate the API request.

公开(公告)号：US20170214531A1

公开(公告)日：2017-07-27

申请号：US15159398

申请日：2016-05-19

Applicant: EBAY INC.

Inventor： Kevin Sugihara ,  Bradley Wardman

IPC: H04L9/32 ,  H04L9/14 ,  H04L9/30 ,  H04L29/06

CPC classification number: H04L9/3271 ,  G06F21/445 ,  H04L9/14 ,  H04L9/30 ,  H04L63/06 ,  H04L63/08 ,  H04L63/0869 ,  H04L63/10 ,  H04L63/1466

Abstract: Methods, systems, and computer program products for providing transaction verification through enhanced authentication are provided. A method performed by a computer system may include receiving an application programming interface (API) request from a client, detecting a change associated with the API request as compared to a prior use of the API by the client, generating an encrypted challenge to authenticate the API request based on detecting the change, and issuing the encrypted challenge to the client to authenticate the API request.

公开(公告)号：US20160094551A1

公开(公告)日：2016-03-31

申请号：US14496160

申请日：2014-09-25

Applicant: EBAY, INC.

Inventor： Kevin Sugihara ,  Bradley Wardman

IPC: H04L29/06

CPC classification number: H04L9/3271 ,  G06F21/445 ,  H04L9/14 ,  H04L9/30 ,  H04L63/06 ,  H04L63/08 ,  H04L63/0869 ,  H04L63/10 ,  H04L63/1466

Abstract: Methods, systems, and computer program products for providing transaction verification through enhanced authentication are provided. A method performed by a computer system may include receiving one or more credentials to authenticate an application programming interface request received from a second computer system based on a first level of authentication, generating an additional authentication challenge to further authenticate the application programming interface request in response to detecting a change associated with the second computer system, issuing the additional authentication challenge to the second computer system, and processing the application programming interface request based on a result of the additional authentication challenge.In some examples, the additional authentication challenge may be encrypted using a key associated with the second computer system before issuance the additional authentication challenge. For example, the key may be a public key corresponding to a private key stored in a highly secure area on the second computer system.

Abstract translation: 提供了通过增强认证提供事务验证的方法，系统和计算机程序产品。 由计算机系统执行的方法可以包括接收一个或多个证书，以基于第一级认证来验证从第二计算机系统接收到的应用编程接口请求，生成额外的认证挑战以进一步验证应用编程接口请求以作出响应 检测与第二计算机系统相关联的改变，向第二计算机系统发出附加认证挑战，以及基于附加认证挑战的结果处理应用程序编程接口请求。 在一些示例中，可以在发布附加认证挑战之前使用与第二计算机系统相关联的密钥来加密附加认证挑战。 例如，密钥可以是对应于存储在第二计算机系统上的高度安全区域中的私钥的公钥。