| 发明名称 | Token based automated agent detection | ||
| 摘要 | Service providers may operate one or more services configured to detect requests generated by automated agents. A CAPTCHA may be transmitted in response to requests generated by automated agents. The CAPTCHAs may be included in a modal pop-up box configured to be displayed by a client application displaying a webpage to a customer of the service provider. Furthermore, the CAPTCHAs included in the modal pop-up box may be rendered inactive and caused not to be displayed by client application executing the webpage. Submitted solutions to CAPTCHAs may be presented with a cookie that enables access to resources of the service provider without restriction. Cookies may be tracked and their use may be used to detect automated agent activity. | ||
| 申请公布号 | US9361446(B1) | 申请公布日期 | 2016.06.07 |
| 申请号 | US201414229757 | 申请日期 | 2014.03.28 |
| 申请人 | Amazon Technologies, Inc. | 发明人 | Demirjian Sevag;Bates John Lindsay;Brighton Mark Evans;Goodwin Samuel Charles;Hawkett Colin James;Hotchkies Blair Livingstone;Vines Forrest MacKenzie |
| 分类号 | G06F21/36;H04L29/08;H04L29/06 | 主分类号 | G06F21/36 |
| 代理机构 | Davis Wright Tremaine LLP | 代理人 | Davis Wright Tremaine LLP |
| 主权项 | 1. A computer-implemented method for detecting automated agent activity, comprising: under the control of one or more computer systems configured with executable instructions, receiving a solution to a security check, the security check configured to distinguish humans from automated agents;determining whether the solution was submitted by an automated agent, based at least in part on a signature list and a first signature corresponding to the received solution, and if the signature list indicates a confidence level above a certain level, transmitting a cookie in response to the solution, the cookie configured to enable access to one or more resources without an additional security check;receiving a plurality of requests including the cookie, where at least a subset of the plurality of requests are associated with one or more other signatures that are different from the first signature and where the one or more other signatures indicated a request source that is distinct from a source responsible for providing the solution to the security check;detecting automated agent activity based at least in part on the one or more other signatures associated with the subset of the plurality of requests being different from the first signature; andupdating an automated agent detection model based at least in part on the first signature and the one or more other signatures. | ||
| 地址 | Seattle WA US | ||