Patent · US Active

Determining trustworthiness of API requests based on source computer applications' responses to attack messages

US9462011B2 · kind B2 · utility

1Cited by

1References

22Claims

0Family size

Assignee

CA, Inc. · US

Inventors

James Donald Reno · Scotts Valley, US
Thomas E. Hamilton, III · Sudbury, US
Kenneth William Scott Morrison · New Westminster, CA

Key dates

Filing date	May 30, 2014
Grant date	Oct 4, 2016
Priority date	—
Expiry date	Jul 30, 2034

Classification

Technology area (CPC H)Electricity
CPC primaryH04L63/1433
WIPO fieldDigital communication
WIPO sectorElectrical engineering

Abstract

A method includes receiving an application programming interface (API) request from a source computer application that is directed to a destination computer application. An attack response message that is configured to trigger operation of a defined action by the source computer application is sent to the source computer application. Deliverability of the API request to the destination computer application is controlled based on whether the attack response message triggered operation of the defined action. Related operations by API request risk assessment systems are disclosed.

Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.