US Patent 10171463 Secure transport layer authentication of network traffic

Technologies are disclosed herein for transport layer network data authentication. A token packet is attached to network data sent from a client software application to an application server at the transport layer. The token packet can be generated based on a temporary token key obtained from a token service. The token packet can include a signature of the network packet payload. The network packet with the attached token packet can be received at an edge device in the network where the application server resides before reaching the application server. The edge device can verify the authenticity of the network packet by verifying the signature contained in the token packet. If the verification is successful, the edge device can forward the network packet to the application server. If the verification fails, the edge device can block further transmission of the network packet.