公开(公告)号：US11743256B1

公开(公告)日：2023-08-29

申请号：US17087840

申请日：2020-11-03

Applicant: Shape Security, Inc.

Inventor： Mengmeng Chen ,  Sumit Agarwal ,  Yao Zhao

IPC: H04L9/40 ,  H04L9/32

CPC classification number: H04L63/0876 ,  H04L9/32

Abstract: A security server device, method, non-transitory computer readable medium and security system that receives request data for a request from a client to a web server system where the request comprises a session identifier (ID) for a session between an authenticated user and the web server system. A determination is made whether the client is a single-user device based on the request data and multi-domain data. Another determinations is made on whether the client is compromised based on the request data. In response to the determinations that the client is a single-user device and is not compromised an extension of the session between the authenticated user on the client and the web server system is caused.

公开(公告)号：US11329992B2

公开(公告)日：2022-05-10

申请号：US16654513

申请日：2019-10-16

Applicant: Shape Security, Inc.

Inventor： Mengmeng Chen ,  Sumit Agarwal ,  Yao Zhou

IPC: H04L67/146 ,  H04L67/01 ,  H04L29/06

Abstract: Techniques are provided for security measures for extended sessions. Request data for a request is received from a client computing device to a web server system. The request comprises a session identifier (ID) for a session between an authenticated user and the web server system. It is determined, based on the request data, that the client computing device is a single-user device. It is determined, based on the request data, that the client computing device is not compromised. In response to determining that the client computing device is a single-user device and that the client computing device is not compromised, extension of the session between the authenticated user on the client computing device and the web server system is caused.

公开(公告)号：US12137097B1

公开(公告)日：2024-11-05

申请号：US18220782

申请日：2023-07-11

Applicant: Shape Security, Inc.

Inventor： Mengmeng Chen ,  Sumit Agarwal ,  Yao Zhao

IPC: H04L9/40 ,  H04L9/32

Abstract: A security server device, method, non-transitory computer readable medium and security system that receives request data for a request from a client to a web server system where the request comprises a session identifier (ID) for a session between an authenticated user and the web server system. A determination is made whether the client is a single-user device based on the request data and multi-domain data. Another determinations is made on whether the client is compromised based on the request data. In response to the determinations that the client is a single-user device and is not compromised an extension of the session between the authenticated user on the client and the web server system is caused.

公开(公告)号：US11652835B1

公开(公告)日：2023-05-16

申请号：US17071504

申请日：2020-10-15

Applicant: Shape Security, Inc.

Inventor： Sumit Agarwal ,  Mengmeng Chen

IPC: G06F15/16 ,  H04L9/40 ,  H04L43/04 ,  H04L67/306 ,  H04L43/062

CPC classification number: H04L63/1425 ,  H04L43/04 ,  H04L43/062 ,  H04L63/0414 ,  H04L63/20 ,  H04L67/306

Abstract: This technology maintains de-identified visit data to a plurality of websites from assigned user identifiers (UIDs) corresponding to a plurality of clients. The assigned UIDs include a different assigned UID for each client-website pair, the de-identified visit data associating the assigned UIDs to a plurality of groups. A first group from the groups is determined based on first request data corresponding to a first request from a client to a web server system. First group visit data describing visits to a set of the websites by assigned UIDs belonging to the first group is obtained from the de-identified visit data. Affinity data, comprising at least one affinity score for at least one of the websites, is generated based on the first group visit data. Generation of affiliate content based on the affinity data is caused, where the affiliate content corresponds to the at least one of the websites.

公开(公告)号：US20210120010A1

公开(公告)日：2021-04-22

申请号：US16654513

申请日：2019-10-16

Applicant: Shape Security, Inc.

Inventor： Mengmeng Chen ,  Sumit Agarwal ,  Yao Zhou

IPC: H04L29/06 ,  H04L29/08

Abstract: Techniques are provided for security measures for extended sessions. Request data for a request is received from a client computing device to a web server system. The request comprises a session identifier (ID) for a session between an authenticated user and the web server system. It is determined, based on the request data, that the client computing device is a single-user device. It is determined, based on the request data, that the client computing device is not compromised. In response to determining that the client computing device is a single-user device and that the client computing device is not compromised, extension of the session between the authenticated user on the client computing device and the web server system is caused.