×

Methods and systems for API proxy based adaptive security

  • US 10,666,621 B2
  • Filed: 07/31/2018
  • Issued: 05/26/2020
  • Est. Priority Date: 05/27/2015
  • Status: Active Grant
First Claim
Patent Images

1. A proxy node configured for routing client messages to one or more target Application Programming Interfaces (APIs), the proxy node comprising:

  • a memory configured to store a set of API characteristics data definitions, each API characteristics data definition from the set of API characteristics data definitions (1) being a data file that is uniquely associated with a n API from a set of APIs and (2) including a name of that API; and

    a processor operatively coupled to the memory, the processor configured to;

    extract, from a message received from a client device, a name of a target API;

    compare the name of the target API against the name of the API included in each API characteristics data definition from the set of API characteristics data definitions;

    responsive to failing to identify, based on the comparing, an API characteristics data definition from the set of API characteristics data definitions including a name of an API that matches the name of the target API, discard the message without onward transmission of the message to an API server identified in the message; and

    responsive to identifying, based on the comparing, an API characteristics data definition from the set of API characteristics data definitions including a name of an API that matches the name of the target API;

    compare at least one of a communication protocol, a protocol method, or a content type specified within the message against one or more permitted communication protocols, permitted protocol methods, or permitted content types specified within the API characteristics data definition that has been identified; and

    responsive to determining that the at least one of the communication protocol, the protocol method, or the content type specified within the message does not match at least one of the one or more permitted communication protocols, permitted protocol methods, or permitted content types associated with the API characteristics data definition that has been identified, discard the message without onward transmission of the message to the API server.

View all claims
  • 8 Assignments
Timeline View
Assignment View
    ×
    ×