Cross-site request forgery (CSRF), Specific application issues, Enterprise Security Architecture