首页> 外国专利> PROTECT APPLICATIONS FROM SESSION STEALING/HIJACKING ATTACKS BY TRACKING AND BLOCKING ANOMALIES IN END POINT CHARACTERISTICS THROUGHOUT A USER SESSION

PROTECT APPLICATIONS FROM SESSION STEALING/HIJACKING ATTACKS BY TRACKING AND BLOCKING ANOMALIES IN END POINT CHARACTERISTICS THROUGHOUT A USER SESSION

机译：通过跟踪和阻止用户点结束点特征中的会话异常来防止会话窃取/劫持攻击的保护性应用程序

页面导航

摘要
著录项
相似文献

摘要

Systems and methods for protection against session stealing is described. In embodiments of the present solution, a device intermediary to the client and the server may identify first properties of the client and associate the first properties with the session key. When the device receives subsequent request comprising the session key, the device matches the associated first properties with second properties of the second device that is sending the subsequent request. If there is a match, the subsequent request transmitted to the server. Otherwise, the subsequent request is rejected.

机译：描述了用于防止会话窃取的系统和方法。在本解决方案的实施例中，客户端和服务器中间的设备可以识别客户端的第一属性，并将第一属性与会话密钥相关联。当设备接收到包括会话密钥的后续请求时，设备将关联的第一属性与正在发送后续请求的第二设备的第二属性进行匹配。如果存在匹配项，则后续请求将传输到服务器。否则，后续请求将被拒绝。

著录项

公开/公告号EP3146692B1

专利类型
公开/公告日2020-02-26

原文格式PDF
申请/专利权人 CITRIX SYSTEMS INC.;
展开▼

申请/专利号EP20150727765
发明设计人 REDDY ANOOP;KATTA RAMA RAO;VALLURI BHANU PRAKASH;ANDERSON CRAIG;THAKUR RATNESH SINGH;
展开▼

申请日2015-05-18
分类号H04L29/06;H04L29/08;
国家 EP
入库时间 2022-08-21 11:41:26

相似文献

专利
外文文献
中文文献