Patent · US Active

Method and system for secure cross-domain login

US10333936B2 · kind B2 · utility

1Cited by

3References

20Claims

0Family size

Assignee

Box, Inc. · US

Inventors

Lev Kantorovskiy · Mountain View, US
Kechen Huang · Menlo Park, US
Nakul Chander · Redwood City, US
Anil Chaurasia · San Francisco, US
Benjamin John Kus · Alameda, US

Key dates

Filing date	Jan 24, 2017
Grant date	Jun 25, 2019
Priority date	—
Expiry date	Oct 16, 2037

Classification

Technology area (CPC H)Electricity
CPC primaryH04L63/0861
WIPO fieldDigital communication
WIPO sectorElectrical engineering

Abstract

Techniques are described for separating subdomains as part of a secure login process. For example the subdomains can correspond to an enterprise user or personal user accounts, or both. The login process involves responding to a login request with an assertion, such as for example a redirect based assertion, that includes an encrypted data structure with account and user information necessary for identification of the corresponding subdomain. The encrypted data structure includes browser-, IP address, and user-specific information to thwart a cross-site request forgery (CSRF) security vulnerability, among other things.

Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.