Patent · US Active

Providing cross site request forgery protection at an edge server

US9755834B1 · kind B1 · utility

12Cited by

0References

15Claims

0Family size

Assignee

CLOUDFLARE, INC. · US

Inventor

Evan Johnson · Ooltewah, US

Key dates

Filing date	Feb 14, 2017
Grant date	Sep 5, 2017
Priority date	—
Expiry date	Feb 14, 2037

Classification

Technology area (CPC H)Electricity
CPC primaryH04L2101/69
WIPO fieldDigital communication
WIPO sectorElectrical engineering

Abstract

A request from a computing device for accessing a resource is received by an edge server, where the request includes a cookie containing a first token value and a second token value. The edge server validates the first token value and a second token value using a third token value generated using hashing algorithm with a secret key and one or more other values. The edge server then compares the received token values with the third token value. When the request is validated, the edge server retrieves the request resource.

Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.