Patent · US Active

Application security through multi-factor fingerprinting

US11539742B2 · kind B2 · utility

1Cited by

1References

20Claims

0Family size

Assignee

SAP SE · DE

Inventors

Cedric Hebert · Mouans-Sartoux, FR
Andrea Riccardo Palmieri · Zürich, CH
Merve Sahin · Antibes, FR
Anderson Santana de Oliveira · Antibes, FR

Key dates

Filing date	Nov 26, 2019
Grant date	Dec 27, 2022
Priority date	—
Expiry date	Dec 26, 2039

Classification

Technology area (CPC H)Electricity
CPC primaryH04L63/1466
WIPO fieldDigital communication
WIPO sectorElectrical engineering

Abstract

Systems, methods, and computer media for securing software applications are provided herein. The multi-factor fingerprints allow attackers to be distinguished from authorized users and allow different types of attacks to be distinguished. The multi-factor fingerprint can include, for example, a session identifier component, a software information component, and a hardware information component. The different components can be separately compared to components of stored fingerprints to determine whether an application session request is malicious, and if so, what type of attack, such as session cookie theft or a spoofing attack, is occurring.

Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.