computer-implemented method for preventing attacks against user authentication and downloadable computer program product on a second server

摘要

computer-implemented method to prevent attacks against the authentication of users and products of computer programs. A method implemented in computer and computer program products to prevent attacks against user authentication. the computer-implemented method comprising: receiving from a first server a request on behalf of a user to be logged into a service of said first server and authenticating said request by verifying said user identifying information, wherein A second server in connection with a user's computing device with a dedicated program is used to: receive a request about an associated status for said user; initiating a credential exchange to provide mutual authentication; checking said associated status that was previously established as valid or invalid by said user; and sending said status associated with said first server, wherein the latter permits logging in of said request or rejecting it if said associated status is established as valid or as invalid.