Assessment Object
The decrypted tripwire assessment object returns fields that describe the users connection.
{
proxy: true,
proxy_type: 'residential',
timestamp: 1759947137,
source_ip: '1.1.1.1',
key: '8ZPjAtv9QHpjRqVS',
uuid: 'e4e97a46-fb24-4192-a74a-5ebb0ca0c303'
}
Field Descriptions
| Field | Type | Description |
|---|---|---|
proxy | boolean | Indicates whether the user's connection is detected as coming from a proxy server |
proxy_type | enum | residential or ISP |
timestamp | number | Unix timestamp indicating when the assessment was performed. |
source_ip | string | The IP address from which the request originated |
key | string | The public key associated with this assessment |
uuid | string | A universally unique identifier for the specific assessment request |
Assessment Verification
Due to the stateless nature of encrypted assessment tokens certain validations should be implemented to ensure the integrity and authenticity of assessment submissions, implement the following verification checks:
Source IP Verification
Validate that the source_ip in the assessment object matches the actual IP address of the incoming request. This prevents attackers from submitting assessments generated from different IP addresses.
Timestamp Validation
Verify that the assessment was generated recently by checking the timestamp field. This prevents the use of old assessments and ensures submissions are from recent evaluations.
UUID Replay Attack Prevention
Track used UUIDs to prevent replay attacks where the same assessment is submitted multiple times.