Method and an apparatus to validate a web session in a proxy server
First Claim
1. A method comprising:
- upon receiving a message generated by an application server in response to an authentication request to initiate a web session from a client, generating a first message authentication code at a proxy server communicatively coupled between the application server and the client;
adding the first message authentication code and one or more timestamps to the message; and
sending the message from the proxy server to the client, wherein the client uses the first message authentication code and the one or more timestamps to request access to predetermined content during the web session.
1 Assignment
0 Petitions
Accused Products
Abstract
Some embodiments of a method and an apparatus to validate a web session in a proxy server have been presented. In one embodiment, a first message authentication code is generated at a proxy server communicatively coupled between an application server and a client upon receiving a message from the application server. The message is generated by the application server in response to an authentication request from the client to initiate a web session. The proxy server then adds the first message authentication code and one or more timestamps to the message. Then the proxy server may send the message to the client, wherein the client may use the first message authentication code and the one or more timestamps to request access to predetermined content during the web session.
78 Citations
28 Claims
-
1. A method comprising:
-
upon receiving a message generated by an application server in response to an authentication request to initiate a web session from a client, generating a first message authentication code at a proxy server communicatively coupled between the application server and the client; adding the first message authentication code and one or more timestamps to the message; and sending the message from the proxy server to the client, wherein the client uses the first message authentication code and the one or more timestamps to request access to predetermined content during the web session. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9)
-
-
10. A proxy server comprising:
-
a network interface to communicatively couple to a network to receive a message generated by an application server in response to an authentication request from a client to initiate a web session; and an authentication module to add one or more timestamps to the message, wherein the authentication module comprises a message authentication code computation module to generate a first message authentication code for the message, wherein the authentication module is operable to add the first message authentication code to the message and the network interface is operable to send the message to the client via the network, wherein the client uses the first message authentication code and the one or more timestamps to request access to predetermined content during the web session. - View Dependent Claims (11, 12, 13, 14, 15, 16, 17, 18, 19)
-
-
20. A machine-readable medium that provides instructions that, if executed by a processor, will cause the processor to perform operations comprising:
-
upon receiving a message generated by an application server in response to an authentication request to initiate a web session from a client, generating a first message authentication code at a proxy server communicatively coupled between the application server and the client; adding the first message authentication code and one or more timestamps to the message; and sending the message from the proxy server to the client, wherein the client uses the first message authentication code and the one or more timestamps to request access to predetermined content during the web session. - View Dependent Claims (21, 22, 23, 24, 25, 26, 27, 28)
-
Specification