Secure resource
First Claim
Patent Images
1. In a computer network, a method comprising:
- recording a first serial number that was added to a previous request to access a resource;
acquiring the first serial number;
updating the first serial number by increasing its value;
adding the updated serial number to a request to access the resource;
sending the request;
verifying the serial number added to the request by comparing it to a second serial number; and
granting access to the resource only if the value of the updated serial number added to the request exceeds the value of the second serial number.
2 Assignments
0 Petitions
Accused Products
Abstract
Preventing replay attacks without user involvement. A method according to one embodiment of the invention includes recording a serial number that was verified following a previous request to access a resource, and later receiving a request to access the resource. A serial number is acquired from the source of the request and then updated by increasing its value. The updated serial number is verified by comparing it with the recorded serial number, and access to the resource is granted only if the value of the updated serial number exceeds the value of the recorded serial number.
-
Citations
34 Claims
-
1. In a computer network, a method comprising:
-
recording a first serial number that was added to a previous request to access a resource; acquiring the first serial number; updating the first serial number by increasing its value; adding the updated serial number to a request to access the resource; sending the request; verifying the serial number added to the request by comparing it to a second serial number; and granting access to the resource only if the value of the updated serial number added to the request exceeds the value of the second serial number. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9)
-
-
10. In a computer network, a method comprising:
-
intercepting a request to access a resource; identifying the resource; acquiring a first serial number that was added to a previous request to access the resource; updating the acquired serial number by increasing its value; adding the updated serial number to the request; sending the request; receiving the request; verifying the serial number added to the request by comparing it with a second serial number that was added to a previous request to access the resource; and granting access to the resource if the value of the serial number added to the request exceeds the value of the second serial number. - View Dependent Claims (11, 12, 13, 14)
-
-
15. Computer readable media having instructions for:
-
recording a first serial number that was included with a previous request to access a resource; acquiring the first serial number updating the first serial number by increasing its value; adding the updated serial number to a request to access the resource; sending the request; verifying the serial number added to the request by comparing it with a second serial number; and granting access to the resource only if the value of the serial number added to the request exceeds the value of the recorded serial number. - View Dependent Claims (16, 17, 18, 19, 20, 21, 22)
-
-
23. Computer readable media having instructions for:
-
intercepting a request to access a resource; identifying the resource; acquiring a first serial number that was added to a previous request to access the resource; updating the acquired serial number by increasing its value; adding the updated serial number to the request; sending the request; receiving the request; verifying the serial number added to the request by comparing it with a second serial number that was added to a previous request to access the resource; and granting access to the resource if the value of the serial number added to the request exceeds the value of the second serial number. - View Dependent Claims (24, 25, 26, 27)
-
-
28. In a computer network, a resource access system, comprising:
-
a security module operable to intercept a request to access a resource; a serial module operable to acquire a recorded serial number added to a previous request to access the resource, the serial module further operable to update the acquired serial number by increasing its value; and
the security module further operable to add the updated serial number to the request so that the request will be granted only after a verification that the updated serial number added to the request exceeds the value of the recorded serial number added to the previous request. - View Dependent Claims (29, 30)
-
-
31. In a computer network, a resource access system, comprising:
-
a security module operable to intercept a request to access a resource; a serial module operable to acquire a first recorded serial number added to a previous request to access the resource, the serial module further operable to update the acquired serial number by increasing its value; the security module further operable to add the updated serial number to the request; a resource server operable to receive a request to access the resource; and a verifier operable to acquire a second recorded serial number added to a previous request received by the resource server, to verify the serial number added to the received request by comparing it to the second recorded serial number, and to grant the request to access the resource only if the value of the serial number added to the request exceeds the value of the second recorded serial number. - View Dependent Claims (32, 33)
-
-
34. In a computer network, a resource access system, comprising:
-
a means for intercepting a request to access a resource; a means for acquiring a first recorded serial number added to a previous request to access the resource; a means for updating the acquired serial number by increasing it; a means for adding the updated serial number to the intercepted request and sending the request; a means for receiving a request to access the resource; and a means for acquiring a second recorded serial number added to a previous request to access the resource; a means for verifying the serial number added to a received request by comparing it to the acquired second serial number; and a means for granting the request to access the resource only if the serial number added to the request exceeds the acquired second recorded serial number.
-
Specification