发明名称 |
Unauthenticated redirection requests with protection |
摘要 |
A redirection object may be obtained, based on a current request of a current requestor. The redirection object request may be associated with a response to a previous request for a redirection to a destination network location, the previous request associated with a previous requestor. A current transmission origination location associated with a current requestor transmission of the current request may be determined. It may be determined whether the current transmission origination location includes a similarity to a previous transmission origination location associated with a previous transmission of the previous request, based on identification information included in the redirection object. It may be determined whether to initiate a redirect operation of the current requestor to the destination network location, based on a result of the determining of the similarity between the current transmission origination location and the previous transmission origination location. |
申请公布号 |
US8966118(B2) |
申请公布日期 |
2015.02.24 |
申请号 |
US201113296184 |
申请日期 |
2011.11.14 |
申请人 |
Microsoft Technology Licensing, LLC |
发明人 |
Voronel Gary;Spektor Daron |
分类号 |
H04L29/06;H04L29/08 |
主分类号 |
H04L29/06 |
代理机构 |
|
代理人 |
Spellman Steven;Ross Jim;Minhas Micky |
主权项 |
1. A system comprising:
a redirect request receiving component that obtains a first request from a first originating unauthenticated requestor for a redirection Uniform Resource Locator (URL); a first originating location determination component that determines a first originating Internet Protocol (IP) address associated with an originating transmission of the first request; a redirection object generator that generates, via a device processor, a first redirection object that includes a retransmission location indicator and first information associated with identification of the first originating IP address, without authentication of the first originating unauthenticated requestor; a response transmission component that initiates transmission of the first redirection object via a response to the first originating unauthenticated requestor, in response to the first request for the redirection URL; a redirection object receiving component that obtains the first redirection object transmitted from a second originating unauthenticated requestor; a second originating location determination component that determines a second originating IP address associated with an originating transmission of the first redirection object from the second originating unauthenticated requestor; a similarity determination component that determines an originating transmission location similarity between the first originating IP address and the second originating IP address; and a redirect decision component that determines whether to initiate a redirection associated with the first redirection object, based on the determined originating transmission location similarity, without authentication of the first originating unauthenticated requestor or the second originating unauthenticated requestor. |
地址 |
Redmond WA US |