| 发明名称 | Adaptive client-aware session security as a service | ||
| 摘要 | Source information for requests submitted to a system are classified to enable differential handling of requests over a session whose source information changes over the session. For source information (e.g., an IP address) classified as fixed, stronger authentication may be required to fulfill requests when the source information changes during the session. Similarly, for source information classified as dynamic, source information may be allowed to change without requiring the stronger authentication. | ||
| 申请公布号 | US9262642(B1) | 申请公布日期 | 2016.02.16 |
| 申请号 | US201414154048 | 申请日期 | 2014.01.13 |
| 申请人 | Amazon Technologies, Inc. | 发明人 | Roth Gregory Branchek;Allen Nicholas Alexander |
| 分类号 | G06F21/62 | 主分类号 | G06F21/62 |
| 代理机构 | Davis Wright Tremaine LLP | 代理人 | Davis Wright Tremaine LLP |
| 主权项 | 1. A computer-implemented method, comprising: under the control of one or more computer systems of a service provider, the one or more computer systems configured with executable instructions, receiving, from a customer of the service provider, a request specifying a first Internet Protocol address and a second Internet Protocol address;accessing, from a data store, one or more records associated with the first Internet Protocol address;determining, based at least in part on the accessed one or more records, a classification of the first Internet Protocol address from a set of classifications that includes a fixed Internet Protocol address classification and a variable Internet Protocol address classification;generating, based at least in part on the determined classification of the first Internet Protocol address, a response to the received request that indicates whether, during a session, a change in source address from the first Internet Protocol address to the second Internet Protocol address during a session is unexpected; andtransmitting the generated response to the customer. | ||
| 地址 | Seattle WA US | ||