Enforced registry of cookies in a tiered delivery network

US 10,142,440 B2
Filed: 07/29/2016
Issued: 11/27/2018
Est. Priority Date: 07/29/2016
Status: Active Grant

First Claim

Patent Images

1. A method, by a processor, for enforced registry of cookies in a computing network, comprising:

extracting information of a cookie at a reverse proxy providing access to an application server, including extracting at least a path and cookie name from a set-cookie header information of the cookie at the reverse proxy;

obtaining cookie registration rules provided to the registry by an application on the application server such that the registry enables the reverse proxy to enforce compliance with the cookie registration rules for each cookie requesting access to the application;

comparing the extracted information of the cookie against the cookie registration rules provided to the registry by the application; and

suppressing the cookie from being relayed to the application upon determining the extracted information is non-compliant with the cookie registration rules while relaying the cookie to the application upon determining the extracted information is compliant with the cookie registration rules.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

Embodiments for enforced registry of cookies in a tiered delivery network by at least a portion of a processor. Information of a cookie may be extracted at a reverse proxy providing access to an application server. Cookie registration rules provided to the registry by an application on the application server may be obtained such that the registry enables the reverse proxy to enforce compliance with the cookie registration rules for each cookie requesting access to the application. The extracted information of the cookie may be compared against the cookie registration rules provided to the registry by the application. The cookie may be suppressed from being relayed to the application upon determining the extracted information is non-compliant with the cookie registration rules.

16 Citations

15 Claims

1. A method, by a processor, for enforced registry of cookies in a computing network, comprising:
- extracting information of a cookie at a reverse proxy providing access to an application server, including extracting at least a path and cookie name from a set-cookie header information of the cookie at the reverse proxy;
  
  obtaining cookie registration rules provided to the registry by an application on the application server such that the registry enables the reverse proxy to enforce compliance with the cookie registration rules for each cookie requesting access to the application;
  
  comparing the extracted information of the cookie against the cookie registration rules provided to the registry by the application; and
  
  suppressing the cookie from being relayed to the application upon determining the extracted information is non-compliant with the cookie registration rules while relaying the cookie to the application upon determining the extracted information is compliant with the cookie registration rules.
- View Dependent Claims (2, 3, 4, 5)
- - 2. The method of claim 1, further including adding the suppressed cookie to a black list as an unregistered cookie.
  - 3. The method of claim 1, further including sending a compliant set-cookie header to a user that provided the suppressed cookie.
  - 4. The method of claim 1, further including:
    - manipulating the cookie at the reverse proxy with a compliant set-cookie header according to the cookie registration rules to enforce compliance;
      
      orsending the compliant set-cookie header according to the cookie registration rules to an application that provided the cookie registration rules.
  - 5. The method of claim 1, wherein the cookie registration rules include at least a cookie name, a host domain, and a path to enforce compliance for each cookie requesting access to the application, wherein the registry is located within data store of a Domain Name System (DNS) or a web service.

6. A system for enforced registry of cookies in a tiered delivery computing network, comprising:
- a processor, operational within and between a distributed computing environment, that;
  
  extracts information of a cookie at a reverse proxy providing access to an application server, including extracting at least a path and cookie name from a set-cookie header information of the cookie at the reverse proxy;
  
  obtains cookie registration rules provided to the registry by an application on the application server such that the registry enables the reverse proxy to enforce compliance with the cookie registration rules for each cookie requesting access to the application;
  
  compares the extracted information of the cookie against the cookie registration rules provided to the registry by the application; and
  
  suppresses the cookie from being relayed to the application upon determining the extracted information is non-compliant with the cookie registration rules or relays the cookie to the application upon determining the extracted information is compliant with the cookie registration rules.
- View Dependent Claims (7, 8, 9, 10)
- - 7. The system of claim 6, wherein the processor adds the suppressed cookie to a black list as an unregistered cookie.
  - 8. The system of claim 6, wherein the processor sends a compliant set-cookie header to a user that provided the suppressed cookie.
  - 9. The system of claim 6, wherein the processor manipulates the cookie at the reverse proxy with a compliant set-cookie header according to the cookie registration rules to enforce compliance.
  - 10. The system of claim 6, wherein the cookie registration rules include at least a cookie name, a host domain, and a path to enforce compliance for each cookie requesting access to the application, wherein the registry is located within data store of a Domain Name System (DNS) or a web service.

11. A computer program product for, by a processor, enforced registry of cookies, the computer program product comprising a non-transitory computer-readable storage medium having computer-readable program code portions stored therein, the computer-readable program code portions comprising:
- an executable portion that extracts information of one or more cookies at a reverse proxy providing access to an application server, including extracting at least a path and cookie name from a set-cookie header information of the cookie at the reverse proxy;
  
  an executable portion that obtains cookie registration rules provided to the registry by an application on the application server such that the registry enables the reverse proxy to enforce compliance with the cookie registration rules for the one or more cookies requesting access to the application;
  
  an executable portion that compares the extracted information of the one or more cookies against the cookie registration rules provided to the registry by the application; and
  
  an executable portion that suppresses those of the one or more cookies from being relayed to the application upon determining the extracted information is non-compliant with the cookie registration rules while relaying those of the one or more cookies to the application upon determining the extracted information is compliant with the cookie registration rules.
- View Dependent Claims (12, 13, 14, 15)
- - 12. The computer program product of claim 11, further including an executable portion that adds the suppressed cookie to a black list as an unregistered cookie.
  - 13. The computer program product of claim 11, further including an executable portion that sends a compliant set-cookie header to a user that provided the suppressed cookie, wherein the cookie registration rules include at least a cookie name, a host domain, and a path to enforce compliance for the one or more cookies requesting access to the application, wherein the registry is located within data store of a Domain Name System (DNS) or a web service.
  - 14. The computer program product of claim 11, further including an executable portion that manipulates at the reverse proxy the one or more cookies with a compliant set-cookie header according to the cookie registration rules to enforce compliance.
  - 15. The computer program product of claim 11, further including an executable portion that sends an instruction from the reverse proxy to a user to delete the one or more cookies.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
International Business Machines Corporation
Original Assignee
International Business Machines Corporation
Inventors
Diamanti, Gary F., Doleh, Yaser K., Lucas, Jeffrey W., Marzorati, Mauro
Primary Examiner(s)
Joo, Joshua

Application Number

US15/223,231
Publication Number

US 20180034934A1
Time in Patent Office

851 Days
Field of Search

None
US Class Current
CPC Class Codes

H04L 61/4511   using domain name system [DNS]

H04L 67/01   Protocols

H04L 67/10   in which an application is ...

H04L 67/1097   for distributed storage of ...

H04L 67/535   Tracking the activity of th...

H04L 67/561   Adding application-function...

H04L 67/5682   Policies or rules for updat...

H04L 69/22   Parsing or analysis of headers

Enforced registry of cookies in a tiered delivery network

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

16 Citations

15 Claims

Specification

Use Cases

Quick Links

Others

Enforced registry of cookies in a tiered delivery network

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

16 Citations

15 Claims

Specification

Subscription Required

Use Cases

Quick Links

Others