Network of trust for bill splitting
US-2024062187-A1 · Feb 22, 2024 · US
Client token storage for cross-site request forgery protection
US9104838B2 · US · B2
| Field | Value |
|---|---|
| Publication number | US-9104838-B2 |
| Application number | US-201213677284-A |
| Country | US |
| Kind code | B2 |
| Filing date | Nov 14, 2012 |
| Priority date | Nov 14, 2012 |
| Publication date | Aug 11, 2015 |
| Grant date | Aug 11, 2015 |
How to read this patent
A practical reading order for non-experts. Skip the full description unless you need deep technical detail.
- Title
What the patent document calls the invention.
- Abstract
A short plain-language summary of the technical disclosure.
- Assignees and inventors
Who owns or filed the patent and who is credited as inventor.
- Key dates
Filing, priority, publication, and grant dates set the timeline.
- First independent claim
The legal scope of protection — read this for what is actually claimed.
- CPC / IPC classifications
Technology tags used to group this patent with similar filings.
- Citations and related patents
Prior art links and similar publications in this corpus.
Abstract
Official abstract text for this publication.
Systems and methods can secure against cross-site request forgery using client-side token storage. A client browser can initiate an action associated with a first web service and generate a token. The token may be stored in client-side storage at the computing device. An indicator of the action may also be stored within the client-side storage. A return link, associated with a passed copy of the token, may be generated. The client may perform the redirect and return to the first web service according to the return link. The passed copy of the token can be extracted from the return link. The indicator of the action and the stored token may be loaded from the client storage. The passed copy of the token and the stored token may be compared. The action according to the indicator of the action may be performed in response to the comparison matching.
First claim
Opening claim text (preview).
What is claimed is: 1. A computer-implemented method for securing against cross-site request forgery, the method comprising: initiating, by a web browser of a client computing device, an action directed to a first web service; generating, by the client computing device, an electronic token for the action; redirecting browsing, by the client computing device, to a second web service while providing a passed token copy to the second web service; receiving, from the second web…
Assignees
Inventors
Classifications
- G06F21/445Primary
Physics · mapped topic
Electricity · mapped topic
Electricity · mapped topic
Electricity · mapped topic
Electricity · mapped topic
Patent family
Related publications grouped by family.
External sources
Next steps
Free tools are coming soon. Tell us what you want to track and we'll notify you.
Frequently asked questions
Answers are generated from the same data shown on this page.
- What does patent US9104838B2 cover?
- Systems and methods can secure against cross-site request forgery using client-side token storage. A client browser can initiate an action associated with a first web service and generate a token. The token may be stored in client-side storage at the computing device. An indicator of the action may also be stored within the client-side storage. A return link, associated with a passed copy of th…
- Who is the assignee on this patent?
- Gajda Damian, Shirriff Kenneth William, Google Inc
- What technology area does this patent fall under?
- Primary CPC classification G06F21/445. Mapped technology areas include Physics.
- When was this patent published?
- Publication date Tue Aug 11 2015 00:00:00 GMT+0000 (Coordinated Universal Time) (B2). Legal status and post-grant events are not shown on this page.
- What related patents are in patentsdb?
- We list 8 related publications on this page (citations in our corpus or others sharing the same primary CPC).