US Patent 10574642 Protecting a web server against an unauthorized client application

An approach is provided for securing communication between a server computer and a client computer. A first string is sent to the client in response to a request to permit an application being executed by the client computer to access a first function. A second string that includes a parameter of a second function is received. The second string is a result of a conversion of the first string to a command and an execution of the command by the client. A result of an execution of the second function is matched with code information obtained from files of the application. Based on the match to the result of the execution of the second function and without requiring an implementation of native code which checks the authenticity of the application, the server validates the authenticity of the application and permits the application to access the first function.