Patent · US Active

Providing cross site request forgery protection at an edge server

US10050792B1 · kind B1 · utility

4Cited by

0References

15Claims

0Family size

Assignee

CLOUDFLARE, INC. · US

Inventor

Evan Johnson · Ooltewah, US

Key dates

Filing date	Sep 5, 2017
Grant date	Aug 14, 2018
Priority date	—
Expiry date	Sep 5, 2037

Classification

Technology area (CPC H)Electricity
CPC primaryH04L2101/69
WIPO fieldDigital communication
WIPO sectorElectrical engineering

Abstract

A request from a computing device for accessing a resource is received by an edge server, where the request includes a cookie containing a first token value and a second token value. The edge server validates the first token value and a second token value using a third token value generated using hashing algorithm with a secret key and one or more other values. The edge server then compares the received token values with the third token value. When the request is validated, the edge server retrieves the request resource.

Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.