-
公开(公告)号:US10333936B2
公开(公告)日:2019-06-25
申请号:US15413519
申请日:2017-01-24
Applicant: Box, Inc.
Inventor: Lev Kantorovskiy , Kechen Huang , Nakul Chander , Anil Chaurasia , Benjamin Kus
Abstract: Techniques are described for separating subdomains as part of a secure login process. For example the subdomains can correspond to an enterprise user or personal user accounts, or both. The login process involves responding to a login request with an assertion, such as for example a redirect based assertion, that includes an encrypted data structure with account and user information necessary for identification of the corresponding subdomain. The encrypted data structure includes browser-, IP address, and user-specific information to thwart a cross-site request forgery (CSRF) security vulnerability, among other things.
-
公开(公告)号:US20180212965A1
公开(公告)日:2018-07-26
申请号:US15413519
申请日:2017-01-24
Applicant: Box, Inc.
Inventor: Lev Kantorovskiy , Kechen Huang , Nakul Chander , Anil Chaurasia , Benjamin Kus
IPC: H04L29/06
CPC classification number: H04L63/10 , H04L63/0807 , H04L63/0815 , H04L63/083 , H04L63/0861 , H04L67/02 , H04L67/10 , H04L67/141 , H04L67/146 , H04L67/2814 , H04L67/42
Abstract: Techniques are described for separating subdomains as part of a secure login process. For example the subdomains can correspond to an enterprise user or personal user accounts, or both. The login process involves responding to a login request with an assertion, such as for example a redirect based assertion, that includes an encrypted data structure with account and user information necessary for identification of the corresponding subdomain. The encrypted data structure includes browser-, IP address, and user-specific information to thwart a cross-site request forgery (CSRF) security vulnerability, among other things.
-
Search Results
2
records
(took 0.011 seconds)
