Preventing masquerading service attacks

Assignee

• International Business Machines Corporation · US

Inventors

• Sen Wang · Lo Wu, CN
• Mei Liu · Beijing, CN
• Si Bo Niu · Beijing, CN
• Wen Gao · Plainsboro, US
• Zong Xiong ZX Wang · Beijing, CN
• Guoxiang Zhang · Beijing, CN
• Xiao Tian · Beijing, CN
• Xian Wei Zhang · Beijing, CN

Key dates

Classification

• Technology area (CPC H)Electricity
• CPC primaryH04L63/20
• WIPO fieldDigital communication
• WIPO sectorElectrical engineering

Abstract

Aspects of the invention include systems and methods configured to prevent masquerading service attacks. A non-limiting example computer-implemented method includes sending, from a first server in a cloud environment, a communication request comprising an application programming interface (API) key and a first server identifier to an identity and access management (IAM) server of the cloud environment. The API key can be uniquely assigned by the IAM server to a first component of the first server. The first server receives a credential that includes a token for the first component and sends the credential to a second server. The second server sends the credential, a second server identifier, and an identifier for a second component of the second server to the IAM server. The second server receives an acknowledgment from the IAM server and sends the acknowledgment to the first server.