Patent · US Active

Protect applications from session stealing/hijacking attacks by tracking and blocking anomalies in end point characteristics throughout a user session

US10412050B2 · kind B2 · utility

1Cited by

3References

16Claims

0Family size

Assignee

Citrix Systems, Inc. · US

Inventors

Anoop Reddy · San Jose, US
Rama Rao Katta · Fremont, US
Bhanu Prakash Valluri · Bengaluru, IN
Craig Anderson · Sunnyvale, US
Ratnesh Singh Thakur · Sunnyvale, US

Key dates

Filing date	May 23, 2014
Grant date	Sep 10, 2019
Priority date	—
Expiry date	Nov 29, 2034

Classification

Technology area (CPC H)Electricity
CPC primaryH04L67/303
WIPO fieldDigital communication
WIPO sectorElectrical engineering

Abstract

Systems and methods for protection against session stealing is described. In embodiments of the present solution, a device intermediary to the client and the server may identify first properties of the client and associate the first properties with the session key. When the device receives subsequent request comprising the session key, the device matches the associated first properties with second properties of the second device that is sending the subsequent request. If there is a match, the subsequent request transmitted to the server. Otherwise, the subsequent request is rejected.

Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.