| 发明名称 | Methods and systems for API-level intrusion detection | ||
| 摘要 | This disclosure generally relates to computer security, and more particularly to methods and systems for application programming interface (API)-level intrusion detection. In some embodiments, a computer-readable medium is disclosed, storing instructions for: receiving an API call for a service at an API sandbox module; parsing the API call to extract at least one of: an API call name; and or one or more API call parameters; generating a copy of the at least one of: the API call name and or the one or more API call parameters; determining, via an intrusion detection rules execution engine, whether the API call violates one or more security rules obtained from a security rules object, using the copy of the at least one of: the API call name and or the one or more API call parameters; and providing an indication of whether the API call violates the one or more security rules. | ||
| 申请公布号 | US8990942(B2) | 申请公布日期 | 2015.03.24 |
| 申请号 | US201313893943 | 申请日期 | 2013.05.14 |
| 申请人 | Wipro Limited | 发明人 | Thakadu Anand;Bhattacharya Anirban;Shetty Kuldip;Prasad Muraleedharan Pillai Krishna;Kumble Ravi Udaya;Bhattacharya Sourav;Aluri Venu;Patel Vitesh |
| 分类号 | G06F21/00;G06F21/55;G06F21/52 | 主分类号 | G06F21/00 |
| 代理机构 | Finnegan, Henderson, Farabow, Garrett & Dunner, L.L.P. | 代理人 | Finnegan, Henderson, Farabow, Garrett & Dunner, L.L.P. |
| 主权项 | 1. A non-transitory computer-readable medium storing computer-executable application programming interface (API)-level intrusion detection instructions for: receiving an API call for a service at an API sandbox module; parsing the API call to extract at least one of: an API call name; or one or more API call parameters; generating a copy of the at least one of: the API call name or the one or more API call parameters; providing, to an intrusion detection rules execution engine, the copy of the at least one of: the API call name or the one or more API call parameters; determining, via the intrusion detection rules execution engine, whether the API call is in violation of one or more security rules obtained from a security rules object; and providing an indication of whether the API call is in violation of the one or more security rules; wherein the API sandbox module is co-located at an enterprise software gateway, and is configured for: receiving API calls for user selected developers and user selected API name references, andprocessing the received API calls for application specific intrusion detection. | ||
| 地址 | Bangalore IN | ||