Accessing Enterprise Resources While Providing Denial-of-Service Attack Protection
First Claim
1. A method comprising:
- receiving, at a gateway from a client device, a request for a resource, the request comprising a location identifier associated with the resource;
redirecting, by a redirection message, the request to an authentication device that requests credentials for authentication, the redirection message comprising the location identifier;
retrieving, after authentication of the credentials, the location identifier from the client device; and
providing access to the resource based on the location identifier.
8 Assignments
0 Petitions
Accused Products
Abstract
A method for accessing enterprise resources while providing denial-of-service attack protection. The method may include receiving, at a gateway from a client device, a request for a resource, the request comprising a location identifier associated with the resource. The method may further include redirecting, by a redirection message, the request to an authentication device that requests credentials for authentication, the redirection message comprising the location identifier. The method may also include retrieving, after authentication of the credentials, the location identifier from the client device. The method may additionally include providing access to the resource based on the location identifier.
-
Citations
20 Claims
-
1. A method comprising:
-
receiving, at a gateway from a client device, a request for a resource, the request comprising a location identifier associated with the resource; redirecting, by a redirection message, the request to an authentication device that requests credentials for authentication, the redirection message comprising the location identifier; retrieving, after authentication of the credentials, the location identifier from the client device; and providing access to the resource based on the location identifier. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11)
-
-
12. A method comprising:
-
receiving, at a gateway from a client device, a request for a resource, the client device being unauthenticated to the gateway, the request comprising a location identifier associated with the resource; sending, in response to the request, a redirection message comprising a redirect to an authentication device that requests credentials for authentication, the redirection message comprising a resource-identification cookie that comprises the location identifier; receiving, at the authentication device, user credentials and the resource-identification cookie; authenticating the user credentials; retrieving the location identifier; setting a session cookie in response to authenticating the user credentials; receiving a different request from the client device, the different request comprising the session cookie; and providing access to the requested resource in response to the different request. - View Dependent Claims (13, 14, 15, 16, 17, 18)
-
-
19. A method comprising:
-
sending, to a gateway from a client device, a request for a resource, the client device being unauthenticated to the gateway, the request comprising a uniform resource locator (URL) identifying a location of the resource, access to the resource controlled by the gateway; receiving, in response to the request, a redirection message comprising a redirect to an authentication gateway that requests credentials for authentication, the redirection message comprising a resource-identification cookie that comprises the URL; sending, to the authentication gateway, the credentials for authentication and the resource-identification cookie; receiving, from the authentication gateway, a session cookie in response to the authentication gateway authenticating the credentials; expiring, upon receiving the session cookie, the resource-identification cookie; sending a different request from the client device, the different request comprising the session cookie; receiving access to the resource in response to the different request; and storing the requested resource on a secure area of the client device. - View Dependent Claims (20)
-
Specification