Patent · US Active

Detecting and mitigating forged authentication object attacks in multi-cloud environments

US11757849B2 · kind B2 · utility

3Cited by

38References

8Claims

0Family size

Assignee

QOMPLX LLC · US

Inventors

Jason Crabtree · Vienna, US
Andrew Sellers · Monument, US

Key dates

Filing date	Jun 29, 2021
Grant date	Sep 12, 2023
Priority date	—
Expiry date	Mar 7, 2042

Classification

Technology area (CPC G)Physics
CPC primaryG06N20/00
WIPO fieldDigital communication
WIPO sectorElectrical engineering

Abstract

A system for detecting and mitigating forged authentication object attacks in federated environments is provided, comprising an event inspector to monitor logs and detect vulnerable events, an authentication object inspector configured to observe a new authentication object generated by an identity provider, and intercept the new authentication object; and a hashing engine configured to calculate a cryptographic hash for the new authentication object, and store the cryptographic hash for the new authentication object in the SAML response; wherein subsequent access requests accompanied by authentication objects are validated by comparing hashes for each authentication object to previous generated hashes.

Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.