Abstract: A method and system for controlling internet browsing user security is provided. A control device (120) receives, via a first communication channel, a web page request from a control agent (102) implemented in a browser (101), the browser (101) being installed in a computer device operated by a user. Then, the control device (120) requests, to a control service (130), via a second communication channel, a security level of said requested web page including a status of the user and the presence of risks in the requested web page. The control service (130) executes a security check on said requested web page by checking whether the requested web page is included in a blacklist or a whitelist and also by checking certain risk control criteria of the requested web page. Finally, in response to receipt a result of said security check, the control device (120) allows or denies access to said web page.

Abstract: The present invention proposes a method, device and system for protecting the connection to a wireless network (a WiFi network) by users of electronic communications devices, even the first time the user device connects to the network. The proposed method, device and system provides an improved security when connecting to a WiFi network, avoiding attacks that may jeopardize the security, confidentiality, integrity and availability of WiFi users and WiFi infrastructure. In the proposed solution, the network will be certified by the user device before connecting to an access point for accessing the wireless network.

Abstract: The invention relates to a computer-implemented method for generating passwords and to computer program products of same. The method comprises: accessing, by a user (100), by means of a first computation device (200), for the first time, a webpage or website identified by a web domain that requires the Identification of the user (100) on the webpage or website; and generating, by means of a password generator, a password required by the webpage or website, based on the use of a result obtained from the execution of a cryptographic function using password policies related to the domain, the use of a master password (101) known only to the user (100) and the use of an Id_Hash (208).

Abstract: The present invention proposes a method, device and system for protecting the connection to a wireless network (a WiFi network) by users of electronic communications devices, even the first time the user device connects to the network. The proposed method, device and system provides an improved security when connecting to a WiFi network, avoiding attacks that may jeopardize the security, confidentiality, integrity and availability of WiFi users and WiFi infrastructure. In the proposed solution, the network will be certified by the user device before connecting to an access point for accessing the wireless network.

Abstract: A method and system for controlling internet browsing user security is provided. A control device (120) receives, via a first communication channel, a web page request from a control agent (102) implemented in a browser (101), the browser (101) being installed in a computer device operated by a user. Then, the control device (120) requests, to a control service (130), via a second communication channel, a security level of said requested web page including a status of the user and the presence of risks in the requested web page. The control service (130) executes a security check on said requested web page by checking whether the requested web page is included in a blacklist or a whitelist and also by checking certain risk control criteria of the requested web page. Finally, in response to receipt a result of said security check, the control device (120) allows or denies access to said web page.

Abstract: A method for detecting applications of mobile user terminals, comprising: parsing files of an app to obtain domains of requests and splitting every domain into words to generate an app signature, weighting the words to obtain their frequency, splitting the mobile traffic into traffic blocks and each traffic block into words, generating a traffic vector for each block by including the repetition or frequency of each word in the block, comparing the generated traffic vectors with the generated signature by applying a similarity method to obtain the number of times that the signature is detected in the traffic vectors of a mobile terminal, estimating a probability of a user having the app installed in the mobile terminal, applying a threshold on the probability to discard wrongly detected applications.

Abstract: The invention relates to a computer-implemented method for generating passwords and to computer program products of same. The method comprises: accessing, by a user (100), by means of a first computation device (200), for the first time, a webpage or website identified by a web domain that requires the Identification of the user (100) on the webpage or website; and generating, by means of a password generator, a password required by the webpage or website, based on the use of a result obtained from the execution of a cryptographic function using password policies related to the domain, the use of a master password (101) known only to the user (100) and the use of an Id_Hash (208).

Abstract: A method for detecting applications of mobile user terminals, comprising parsing the files of an app to obtain the domains of its requests and splitting every domain into words to generate an app signature (1), weighting (2) the words to obtain their frequency, splitting the mobile traffic (3) into traffic blocks and splitting each traffic block (4) into words, generating a traffic vector for each block by including its words and the repetition or frequency (5) of each word in the block, comparing the generated traffic vectors with the generated signature (1) by applying the similarity method (6) to obtain the number of times that the signature (1) of each app is detected in the traffic vectors of a mobile terminal, estimating a probability (7) of a user having each app installed in the mobile terminal, applying a threshold (8) on the probability (7) to discard wrongly detected applications.

Abstract: The computer implemented method comprising: receiving a first server a request in the name of a user to be logged into a service of said first server and authenticating said request by verifying user identification information of said user, wherein a second server in connection with a user computing device with a dedicated program is used for: receiving a request about a status associated to said user; initializing a credential exchange in order to provide mutual authentication; verifying said associated status that has been previously set as valid or as invalid by said user; and sending said associated status to said first server wherein the latter allows the logging of said request or rejects it if said associated status is set as valid or as invalid.

Abstract: The computer implemented method comprising controlling the access to different resources and actions defined for a user by a first server, reducing the exposure time at which such operations are available, establishing a dual channel verification through the use of a second server and reinforcing an authentication factor mechanism by including a biometric identity verification of biometric information of the user.

Abstract: A computer implemented method and computer program products to prevent attacks against authorization systems The computer implemented method comprising controlling the access to different resources and actions defined for a user by a first server, reducing the exposure time at which such operations are available and establishing a dual channel verification through the use of a second server. The computer programs implement the method.

Abstract: A computer implemented method including a software distributor signing via a first server at least one software file using a digital certificate with a digital signature and at least one user via a computing device acquiring a copy of the signed software file. The digital certificate to be used is previously recorded in a second server in communication with the first server, the digital certificate to be recorded being provided by the software distributor upon a registration of the latter in the second server and including information obtained from a trust certificate chain associated to the digital certificate when performing the registration. The second server generates, upon a request made by the software distributor, a hashstamp of the signed software file.

Abstract: The computer implemented method comprising controlling the access to different resources and actions defined for a user by a first server, reducing the exposure time at which such operations are available, establishing a dual channel verification through the use of a second server and reinforcing an authentication factor mechanism by including a biometric identity verification of biometric information of the user.

Abstract: A computer implemented method and computer program products to improve security in authentication/authorization systems The computer implemented method comprising controlling the access to different resources and actions defined for a user by a first server, reducing the exposure time at which such operations are available, establishing a dual channel verification through the use of a second server and a defining a secure channel for certificate exchange for authentication. The computer programs implement the method.

Abstract: A computer implemented method for classifying mobile applications and computer programs thereof.

Abstract: A computer implemented method including a software distributor signing via a first server at least one software file using a digital certificate with a digital signature and at least one user via a computing device acquiring a copy of the signed software file. The digital certificate to be used is previously recorded in a second server in communication with the first server, the digital certificate to be recorded being provided by the software distributor upon a registration of the latter in the second server and including information obtained from a trust certificate chain associated to the digital certificate when performing the registration. The second server generates, upon a request made by the software distributor, a hashstamp of the signed software file.

Abstract: A computer implemented method and computer program products to prevent attacks against authorization systems The computer implemented method comprising controlling the access to different resources and actions defined for a user by a first server, reducing the exposure time at which such operations are available and establishing a dual channel verification through the use of a second server. The computer programs implement the method.

Abstract: The computer implemented method comprising: receiving a first server a request in the name of a user to be logged into a service of said first server and authenticating said request by verifying user identification information of said user, wherein a second server in connection with a user computing device with a dedicated program is used for: receiving a request about a status associated to said user; initializing a credential exchange in order to provide mutual authentication; verifying said associated status that has been previously set as valid or as invalid by said user; and sending said associated status to said first server wherein the latter allows the logging of said request or rejects it if said associated status is set as valid or as invalid.