-
公开(公告)号:US10931686B1
公开(公告)日:2021-02-23
申请号:US15886628
申请日:2018-02-01
发明人: Shreyans Mehta , Mayank Dhiman
摘要: A method to facilitate detection of automated attacks on a web service is disclosed. Some embodiments of the method can include binding a session identifier to a user session with the web service. The method can further include receiving a plurality of web requests during the user session that include the session identifier. The plurality of web requests can then be processed with a set of automation detection heuristics to identify session attributes associated with the session identifier during the user session. The method can further include detecting that the session identifier is associated with an automated attack when at least one of the session attributes associated with the session identifier exceeds a threshold amount.
-
公开(公告)号:US10135904B2
公开(公告)日:2018-11-20
申请号:US15007730
申请日:2016-01-27
发明人: Shreyans Mehta , Ameya Talwalkar
摘要: Techniques to validate web service requests from applications executing on wireless communication devices are disclosed herein. In at least one implementation, an application that generates a web service request is executed on a wireless communication device. The wireless communication device executes a client security component of the application to collect security information and include the security information in the web service request, and utilizes a mobile application programming interface to transfer the web service request including the security information for delivery to a web server. The web server executes a server security component of a web service to extract the security information from the web service request, validate the web service request based on the security information, and provide the web service request to the web service upon successful validation.
-
搜索结果
2 条记录 (耗时 0.01 秒)
