US 11,902,289 B2
Methods and systems for controlling access to a protected resource
Milos Dunjic, Oakville (CA); Anthony Haituyen Nguyen, Toronto (CA); Yubing Liu, Toronto (CA); Arthur Carroll Chow, Markham (CA); Casey Lyn Doyle, Ajax (CA); Richard John Frederick Thake, Cobourg (CA); Mengfei Wang, Toronto (CA); Aaron Ashish Hudali, Cambridge (CA); Gregory Albert Kliewer, Barrie (CA); Martin Albert Lozon, London (CA); Yusbel Garcia Diaz, Toronto (CA); Gareth Daly, Toronto (CA); Masashi Kobayashi, Toronto (CA); and Randall John Bast, Oakville (CA)
Assigned to The Toronto-Dominion Bank, Toronto (CA)
Filed by The Toronto-Dominion Bank, Toronto (CA)
Filed on Sep. 22, 2020, as Appl. No. 17/028,016.
Application 17/028,016 is a continuation of application No. 16/000,086, filed on Jun. 5, 2018, granted, now 10,834,096.
Prior Publication US 2021/0006566 A1, Jan. 7, 2021
Int. Cl. H04L 9/40 (2022.01); H04L 9/32 (2006.01); H04L 9/08 (2006.01); H04L 9/30 (2006.01)
CPC H04L 63/123 (2013.01) [H04L 9/0869 (2013.01); H04L 9/3213 (2013.01); H04L 9/3247 (2013.01); H04L 9/3268 (2013.01); H04L 63/0442 (2013.01); H04L 63/10 (2013.01); H04L 9/30 (2013.01)] 18 Claims
OG exemplary drawing
 
1. A network device, comprising:
a communication interface connected to an external network;
a memory; and
a processor coupled to the communication interface and the memory, the processor being configured to:
receive, via the communication interface from a web server associated with a protected resource, a request to validate a bearer token submitted by a client device to the web server, the request including the bearer token, a cryptographic nonce that is based on a user identifier identifying an end user of an application executing on the client device, and a digital signature;
validate the bearer token, the validating including verifying the digital signature using a public key associated with the end user; and
in response to validating the bearer token, send to the web server via the communication interface a notification that the bearer token is valid.