Protecting sensitive web transactions using a communication channel associated with a user
First Claim
1. A device, comprising:
- a communication interface; and
one or more processors to;
receive, from a client device and via a first communication channel, a first request associated with a server device,the first request requesting access to a first portion of a website;
determine a sensitivity level associated with the first request;
determine, based on the sensitivity level and based on the first request requesting access to the first portion of the website, a second communication channel for validating the first request,the second communication channel being different from the first communication channel;
determine contact information for contacting a user, associated with the first request, via the second communication channel;
transmit, via the second communication channel and using the contact information, first validation information;
receive a first validation response from the client device;
determine, based on the first validation information and the first validation response, that the first validation response is valid;
grant access to the first portion of the website based on determining that the first validation response is valid;
receive a second request requesting access to a second portion of the website;
determine, based on the second request requesting access to the second portion of the website, a third communication channel for validating the second request,the third communication channel being different from the first communication channel and the second communication channel;
transmit second validation information via the third communication channel;
receive a second validation response after transmitting the second validation information;
determine whether the second validation response is valid based on the second validation information and the second validation response; and
perform an action based on determining whether the second validation response is valid,the action comprising;
granting access to the second portion of the website based on determining that the second validation response is valid, orproviding the second request and an invalidation indicator to the server device, via the third communication channel, based on determining that the second validation response is invalid,
information identifying at least one of the client device or the user being included on a blacklist when validation fails a threshold quantity of times.
1 Assignment
0 Petitions
Accused Products
Abstract
A security device may receive, from a client device, a request associated with a server device. The security device may determine a communication channel and contact information for validating the request. The security device may provide validation information via the communication channel using the contact information. The security device may receive a validation response from the client device, and may determine whether the validation response is valid. The security device may selectively perform a first action or a second action based on determining whether the validation response is valid. The first action may be performed based on determining that the validation response is valid, and may include providing a validation indicator, with the request, to the server device. The second action may be performed based on determining that the validation response is not valid, and may include providing an invalidation indicator, with the request, to the server device.
-
Citations
20 Claims
-
1. A device, comprising:
-
a communication interface; and one or more processors to; receive, from a client device and via a first communication channel, a first request associated with a server device, the first request requesting access to a first portion of a website; determine a sensitivity level associated with the first request; determine, based on the sensitivity level and based on the first request requesting access to the first portion of the website, a second communication channel for validating the first request, the second communication channel being different from the first communication channel; determine contact information for contacting a user, associated with the first request, via the second communication channel; transmit, via the second communication channel and using the contact information, first validation information; receive a first validation response from the client device; determine, based on the first validation information and the first validation response, that the first validation response is valid; grant access to the first portion of the website based on determining that the first validation response is valid; receive a second request requesting access to a second portion of the website; determine, based on the second request requesting access to the second portion of the website, a third communication channel for validating the second request, the third communication channel being different from the first communication channel and the second communication channel; transmit second validation information via the third communication channel; receive a second validation response after transmitting the second validation information; determine whether the second validation response is valid based on the second validation information and the second validation response; and perform an action based on determining whether the second validation response is valid, the action comprising; granting access to the second portion of the website based on determining that the second validation response is valid, or providing the second request and an invalidation indicator to the server device, via the third communication channel, based on determining that the second validation response is invalid,
information identifying at least one of the client device or the user being included on a blacklist when validation fails a threshold quantity of times. - View Dependent Claims (2, 3, 4, 5, 6, 7)
-
-
8. A non-transitory computer-readable medium storing instructions, the instructions comprising:
one or more instructions that, when executed by one or more processors, cause the one or more processors to; receive, from a client device and via a first communication channel, a first request that identifies a server device as a destination for the first request, the first request requesting access to a first portion of a website; determine, based on a sensitivity level associated with the first request and based on the first request requesting access to the first portion of the website, a second communication channel for validating the first request, the second communication channel being different from the first communication channel; determine contact information for contacting a user, associated with the first request, via the second communication channel; transmit, via the second communication channel and using the contact information, first validation information; receive a first validation response from the client device after transmitting the first validation information; determine, based on the first validation information and the first validation response, that the first validation response is valid; grant access to the first portion of the website based on determining that the first validation response is valid; receive a second request requesting access to a second portion of the website; determine, based on the second request requesting access to the second portion of the website, a third communication channel for validating the second request, the third communication channel being different from the first communication channel and the second communication channel; transmit second validation information via the third communication channel; receive a second validation response after transmitting the second validation information; determine whether the second validation response is valid based on the second validation information and the second validation response; and perform an action based on determining whether the second validation response is valid, the action comprising; granting access to the second portion of the website based on determining that the second validation response is valid, or providing the second request and an invalidation indicator to the server device, via the third communication channel, based on determining that the second validation response is invalid. - View Dependent Claims (9, 10, 11, 12, 13)
-
14. A method, comprising:
-
receiving, by a security device and via a first communication channel, a first request by a first device to access a second device, the first request requesting access to a first portion of a website; determining, by the security device, a sensitivity level associated with the first request; determining, by the security device, based on the sensitivity level, and based on the first request requesting access to the first portion of the website, at least one of; a second communication channel for validating the first request, the second communication channel being different from the first communication channel, or contact information for contacting a user, associated with the first request, via the second communication channel; transmitting, by the security device, first validation information via the second communication channel and using the contact information; receiving, by the security device, a first validation response from the first device after transmitting the first validation information; determining, by the security device, that the first validation response is valid based on the first validation information and the first validation response; granting, by the security device, access to the first portion of the website based on determining that the first validation response is valid; receiving, by the security device, a second request requesting access to a second portion of the website; determining, by the security device and based on the second request requesting access to the second portion of the website, a third communication channel for validating the second request, the third communication channel being different from the first communication channel and the second communication channel; transmitting, by the security device, second validation information via the third communication channel; receiving, by the security device, a second validation response after transmitting the second validation information; determining, by the security device, whether the second validation response is valid based on the second validation information and the second validation response; and performing, by the security device, an action based on determining whether the second validation response is valid, the action comprising; granting access to the second portion of the website based on determining that the second validation response is valid, or providing the second request and an invalidation indicator to the second device, via the third communication channel, based on determining that the second validation response is invalid. - View Dependent Claims (15, 16, 17, 18, 19, 20)
-
Specification