US 12,256,006 B1
API compliance verification based on a distributed ledger
Hendrikus G. P. Bosch, Aalsmeer (NL); and Alessandro Duminuco, Milan (IT)
Assigned to CISCO TECHNOLOGY, INC., San Jose, CA (US)
Filed by Cisco Technology, Inc., San Jose, CA (US)
Filed on Jun. 16, 2022, as Appl. No. 17/807,287.
Int. Cl. H04L 9/32 (2006.01); G06F 9/54 (2006.01); H04L 9/00 (2022.01); H04L 67/133 (2022.01)
CPC H04L 9/3213 (2013.01) [G06F 9/541 (2013.01); G06F 9/547 (2013.01); H04L 9/50 (2022.05); H04L 67/133 (2022.05)] 20 Claims
OG exemplary drawing
 
1. A first network apparatus, comprising:
one or more processors; and
one or more computer-readable non-transitory storage media comprising instructions that, when executed by the one or more processors, cause one or more components of the first network apparatus to perform operations comprising:
receiving an authorization request from a user device redirected from a second network apparatus;
generating an authorization response comprising a resource authorization token;
transmitting the resource authorization token to the user device and to a distributed ledger for storage, wherein the distributed ledger is a blockchain record;
generating an access token in response to receiving the resource authorization token from the second network apparatus; and
transmitting the generated access token to the distributed ledger for storage,
wherein the user device is redirected based on a determination that an HTTP request header to access a resource did not comprise a session cookie, wherein the resource authorization token generated by the first network apparatus is stored and used as the session cookie in subsequent requests for accessing the resource, wherein the first network apparatus comprises an identity provider function operable to perform attribute-based access control.