US 11,675,933 B2
Client authorization mechanisms to access native services
Danilo O. Tan, Austin, TX (US); and Srikanth Kondapi, Austin, TX (US)
Assigned to Dell Products L.P., Round Rock, TX (US)
Filed by DELL PRODUCTS, LP, Round Rock, TX (US)
Filed on Mar. 31, 2021, as Appl. No. 17/218,529.
Prior Publication US 2022/0318430 A1, Oct. 6, 2022
Int. Cl. G06F 21/64 (2013.01); G06F 21/31 (2013.01); G06F 21/78 (2013.01); H04L 67/568 (2022.01)
CPC G06F 21/64 (2013.01) [G06F 21/31 (2013.01); G06F 21/78 (2013.01); H04L 67/568 (2022.05)] 14 Claims
OG exemplary drawing
 
1. A method comprising:
receiving, by a processor, a connection request from a client application;
verifying that a digital signature of the client application is valid and untampered;
retrieving a custom data segment encapsulating a manifest, wherein the custom data segment is located at an end of an image of the client application;
subsequent to the verifying that the digital signature is valid and untampered, retrieving the manifest generated at build time of the client application, wherein the manifest includes authorized application programming interfaces and unauthorized application programming interfaces of the client application;
validating whether an application programming interface request received from the client application is authorized based on the authorized application programming interfaces included in the manifest;
in response to validating that the application programming interface request is authorized, processing the application programming interface request; and
in response to validating that the application programming interface request is unauthorized, terminating the connection request from the client application.