This is a great solution, one I proposed for forms in general: pass some information along via nsv, which ties the form to the form processing script. I also recommend tying to a user session, which expires on a regular basis, but limiting to a certain user is a good first step.