Patent · US Active

Detecting and mitigating golden ticket attacks within a domain

US11570204B2 · kind B2 · utility

5Cited by

14References

6Claims

0Family size

Assignee

QOMPLX LLC · US

Inventors

Jason Crabtree · Vienna, US
Andrew Sellers · Monument, US

Key dates

Filing date	Feb 8, 2021
Grant date	Jan 31, 2023
Priority date	—
Expiry date	Jul 24, 2041

Classification

Technology area (CPC H)Electricity
CPC primaryH04L63/20
WIPO fieldDigital communication
WIPO sectorElectrical engineering

Abstract

A system and methods for mitigating golden ticket attacks within a domain is provided, comprising an authentication object inspector configured to observe a new authentication object generated by an identity provider, and retrieve the new authentication object; and a hashing engine configured to retrieve the new authentication object from the authentication object inspector, calculate a cryptographic hash for the new authentication object, and store the cryptographic hash for the new authentication object in a data store; wherein subsequent access requests accompanied by authentication objects are validated by comparing hashes for each authentication object to previous generated hashes.

Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.