发明名称 |
Secure cache of web session information using web browser cookies |
摘要 |
A secure method and system for accessing a cache for web session is provided using web browser cookies. The cache for the web session data uses an encoded identifier, determined using for example the Keyed-Hash Message Authentication Code, based on information identifying a client. The client communication is accompanied by a cookie (persistent state object) that also includes the identifier encoded in the same manner. This encoded identifier in the received cookie is used for accessing the cached data. Where a secure communication channel is available, such as a secure socket layer (SSL connection), a second cookie which is only transmitted over SSL is used as a signature for the first cookie.
|
申请公布号 |
US7197568(B2) |
申请公布日期 |
2007.03.27 |
申请号 |
US20020321411 |
申请日期 |
2002.12.17 |
申请人 |
INTERNATIONAL BUSINESS MACHINES CORPORATION |
发明人 |
BOURNE DONALD A.;CHAN VICTOR;KHUSIAL DARSHANAND;LINEHAN MARK H.;MIRLAS LEV |
分类号 |
H04L9/00;G06F17/30;H04L29/06;H04L29/08 |
主分类号 |
H04L9/00 |
代理机构 |
|
代理人 |
|
主权项 |
|
地址 |
|