Abstract: Techniques are described for providing an application programming interface (API) architecture that is capable of supporting cross-site request forgery (CSRF) protection with an attribute flag in a cookie, for client devices that utilize a stateless user session to interface with an API gateway. A client device may transmit session requests received by an API gateway. The API gateway may generate a session, and a cookie including session properties associated with the session. The cookie may further include the attribute flag associated with a CSRF token. By transmitting the cookie with the attribute flag to the client device, the client device may receive and insert the cookie into subsequent requests to indicate a requirement that the subsequent requests be accompanied by the CSRF token. In this way, the API gateway may utilize the attribute flag indicating the requirement for the CSRF token to protect the client device from malicious attacks.

Abstract: Techniques are described for providing an application programming interface (API) architecture that is capable of supporting cross-site request forgery (CSRF) protection with an attribute flag in a cookie, for client devices that utilize a stateless user session to interface with an API gateway. A client device may transmit session requests received by an API gateway. The API gateway may generate a session, and a cookie including session properties associated with the session. The cookie may further include the attribute flag associated with a CSRF token. By transmitting the cookie with the attribute flag to the client device, the client device may receive and insert the cookie into subsequent requests to indicate a requirement that the subsequent requests be accompanied by the CSRF token. In this way, the API gateway may utilize the attribute flag indicating the requirement for the CSRF token to protect the client device from malicious attacks.

Abstract: Described herein are techniques related to sharing applications between two client devices assigned to the same user. This Abstract is submitted with the understanding that it will not be used to interpret or limit the scope and meaning of the claims. A shared-application tool allows a user to request to use an application that is installed on host computing device on a client computing device. The request to use the application is made to a directory service using a message-exchanging protocol. The application is run on the host computing device and provided to the client computing device using a peer-to-peer communication protocol.

Abstract: Described herein are techniques related to a lessee leasing resources on a lessor's computing device. This Abstract is submitted with the understanding that it will not be used to interpret or limit the scope and meaning of the claims. A resource-leasing tool allows a lessee, using peer-to-peer communication, to use an application on a lessor's computing device while the leased resource is installed and run on the lessor's computing device.

Abstract: Described herein are techniques related to sharing applications between two client devices assigned to the same user. This Abstract is submitted with the understanding that it will not be used to interpret or limit the scope and meaning of the claims. A shared-application tool allows a user to request to use an application that is installed on host computing device on a client computing device. The request to use the application is made to a directory service using a message-exchanging protocol. The application is run on the host computing device and provided to the client computing device using a peer-to-peer communication protocol.

Abstract: A system and method for assisting lenders in making decisions related to non-recourse loans employs a model which considers each risk relevant to the loan determination, including commercial and country risk factors. From this analysis, the present invention can determine the estimated default frequency (EDF), the loss given default (LGD), volatility of the loss, and can recommend total provision and economic capital outlays for the lender for the given non-recourse loan. From this information, the present invention can also be used to determine a credit rating and profitability measures for the given loan.