×

Systems and methods for detection of session tampering and fraud prevention

  • US 9,754,311 B2
  • Filed: 11/03/2015
  • Issued: 09/05/2017
  • Est. Priority Date: 03/31/2006
  • Status: Active Grant
First Claim
Patent Images

1. A method for detecting a potential session hijacking of an online session, the method comprising:

  • establishing an online session regarding a transaction between a computer and a user device over a network, the online session comprising a session identifier generated at least partly based on information received about the user device;

    initiating a request to collect at the user device a set of device fingerprints associated with the session ID during the online session, the set of device fingerprints comprising a first device fingerprint collected when the user device interacts with a first location of the website and a second device fingerprint collected when the user device interacts with a second location of the website;

    receiving the set of device fingerprints over the network in response to the request;

    analyzing the set of device fingerprints for indications of non-matched data;

    extracting device information associated with the set of device fingerprints;

    determining that the extracted device information and the received information about the user device indicate that the more than one user device is associated with the session ID and that an unauthorized device has likely gained access to the online session;

    detecting session hijacking in response to a determination that the extracted device information and the received information about the user device indicates more than one user device is associated with the session ID; and

    in response to detecting the session hijacking, providing session hijacking alert data comprising information that the online session is hijacked, the session hijacking alert data being used to flag the online session as an instance of the session hijacking or to flag the transaction based on the session hijacking.

View all claims
  • 1 Assignment
Timeline View
Assignment View
    ×
    ×