公开(公告)号：US09608974B2

公开(公告)日：2017-03-28

申请号：US14629372

申请日：2015-02-23

Applicant: Amazon Technologies, Inc.

Inventor： Maximilian Francis Barrows ,  Paul Francis Dean Ferraro ,  Jason George McHugh ,  Abraham Martin Passaglia ,  Andrew Jay Roths ,  Eric Allan Shell

IPC: G06F7/04 ,  H04L29/06

CPC classification number: H04L63/08 ,  H04L63/0846

Abstract: Approaches are described for automatically generating new security credentials, such as security tokens, which can involve automatically re-authenticating a user (or client device) using a previous security token issued to that user (or device). The re-authentication can happen without any knowledge and/or action on the part of the user. The re-authentication mechanism can invalidate and/or keep track of the previous security token, such that when a subsequent request is received that includes the previous security token, the new security token can be invalidated, and the user caused to re-authenticate, as receiving more than one request with the previous security token can be indicative that the user's token might have been stolen.

公开(公告)号：US08966599B1

公开(公告)日：2015-02-24

申请号：US13830877

申请日：2013-03-14

Applicant: Amazon Technologies, Inc.

Inventor： Maximilian Francis Barrows ,  Paul Francis Dean Ferraro ,  Jason George Mchugh ,  Abraham Martin Passaglia ,  Andrew Jay Roths ,  Eric Allan Shell

IPC: G06F7/04 ,  H04L29/06

CPC classification number: H04L63/08 ,  H04L63/0846

Abstract: Approaches are described for automatically generating new security credentials, such as security tokens, which can involve automatically re-authenticating a user (or client device) using a previous security token issued to that user (or device). The re-authentication can happen without any knowledge and/or action on the part of the user. The re-authentication mechanism can invalidate and/or keep track of the previous security token, such that when a subsequent request is received that includes the previous security token, the new security token can be invalidated, and the user caused to re-authenticate, as receiving more than one request with the previous security token can be indicative that the user's token might have been stolen.

Abstract translation: 描述了用于自动生成新安全凭证（例如安全令牌）的方法，其可以涉及使用发给该用户（或设备）的先前安全令牌来自动重新认证用户（或客户端设备）。 重新认证可以在用户没有任何知识和/或动作的情况下发生。 重新认证机制可以使先前的安全令牌无效和/或跟踪，使得当接收到包括先前的安全令牌的后续请求时，新的安全令牌可以被无效，并且用户重新认证， 因为接收到具有先前的安全令牌的多个请求可以指示用户的令牌可能被盗。