×

Accessing enterprise resources while providing denial-of-service attack protection

  • US 9,344,426 B2
  • Filed: 12/26/2013
  • Issued: 05/17/2016
  • Est. Priority Date: 05/14/2013
  • Status: Active Grant
First Claim
Patent Images

1. A method comprising:

  • receiving, at a gateway from a client device, a first request for a resource, the first request comprising a location identifier of the resource;

    transmitting, to the client device, a redirection message that redirects the client device to an authenticator for authentication of credentials, wherein the redirection message comprises a resource-identification cookie, wherein the resource-identification cookie is configured to provide a level of protection against denial-of-service attacks to the gateway and comprises the location identifier of the resource;

    authenticating credentials received from the client device conditioned upon the location identifier of the resource being extracted from the resource-identification cookie;

    expiring, after authenticating the credentials, the resource-identification cookie;

    transmitting, after authenticating the credentials, a session cookie to the client device;

    receiving, from the client device, after authenticating the credentials, one or more second requests for the resource, wherein the one or more second requests comprise the session cookie and the location identifier of the resource; and

    providing, based on the one or more second requests, access to the resource.

View all claims
  • 7 Assignments
Timeline View
Assignment View
    ×
    ×