| 发明名称 |
PREVENTION OF CROSS SITE REQUEST FORGERY ATTACKS BY CONDITIONAL USE COOKIES |
| 摘要 |
To inhibit cross-site forgery attacks, different types/classes of cookies are used. A first cookie and a second cookie are generated by a web server and provided to a client browser during a web session. The first cookie defines a first set of use conditions for when the first cookie is to be used within the web session. The second cookie defines a second set of use conditions for when the second cookie is to be used within the web session. The client browser determines which (if any) of the first cookie or second cookie to send to the web server based on the use conditions defined within each cookie and the operation(s) sought by the client browser. The web server may grant different or the same privileges to operation(s) being sought by the client browser depending on whether the first or second cookie is sent by the client browser.
|
| 申请公布号 |
US2013117817(A1) |
申请公布日期 |
2013.05.09 |
| 申请号 |
US201213451443 |
申请日期 |
2012.04.19 |
| 申请人 |
GANTMAN ALEXANDER;BALAKRISHNAN ARUN;ROSE GREGORY GORDON;QUALCOMM INCORPORATED |
发明人 |
GANTMAN ALEXANDER;BALAKRISHNAN ARUN;ROSE GREGORY GORDON |
| 分类号 |
G06F15/16;G06F21/00 |
主分类号 |
G06F15/16 |
| 代理机构 |
|
代理人 |
|
| 主权项 |
|
| 地址 |
|
