	US 11,924,170 B2
	Methods and systems for API deception environment and API traffic control and security
Udayakumar Subbarayan, Bangalore (IN); Bernard Harguindeguy, Atherton, CA (US); Anoop Krishnan Gopalakrishnan, Bangalore (IN); Nagabhushana Angadi, Bengaluru (IN); Ashwani Kumar, Bengaluru (IN); Santosh Sahu, Bangalore (IN); Abdu Raheem Poonthiruthi, Bangalore (IN); Avinash Kumar Sahu, Bangalore (IN); and Yasar Kundottil, Bangalore (IN)
Assigned to Ping Identity Corporation, Denver, CO (US)
Filed by Ping Identity Corporation, Denver, CO (US)
Filed on Jul. 14, 2021, as Appl. No. 17/375,695.
Application 17/375,695 is a continuation of application No. 16/788,059, filed on Feb. 11, 2020, granted, now 11,075,885.
Application 16/788,059 is a continuation of application No. 15/792,850, filed on Oct. 25, 2017, granted, now 10,587,580, issued on Mar. 10, 2020.
Claims priority of application No. 201611036787 (IN), filed on Oct. 26, 2016.
Prior Publication US 2022/0045990 A1, Feb. 10, 2022
This patent is subject to a terminal disclaimer.
Int. Cl. H04L 9/40 (2022.01); G06F 21/55 (2013.01); G06F 21/62 (2013.01); G06N 20/00 (2019.01)

CPC H04L 63/0281 (2013.01) [G06F 21/55 (2013.01); G06F 21/554 (2013.01); G06F 21/6281 (2013.01); G06N 20/00 (2019.01); H04L 63/02 (2013.01); H04L 63/04 (2013.01); H04L 63/0807 (2013.01); H04L 63/0876 (2013.01); H04L 63/1425 (2013.01); H04L 63/1458 (2013.01); H04L 63/1491 (2013.01)]

12 Claims

1. A method, comprising:

receiving, at a proxy and from a client device, a client message intended for a server backend;

identifying a target application programming interface (API) from the client message;

in response to identifying that the target API is not hosted by the server backend, dynamically generating a decoy API associated with the target API; and

in response to identifying that the target API is not hosted by the server backend, routing the client message via the decoy API such that network communication is initiated with the client device via the decoy API.