Method for Securely Associating Data with Http and Https Sessions
First Claim
1. A method for establishing an authenticated communication session between a client and a server over a communications network, the client identified by a credential which is unavailable to the client, the method comprising:
- transmitting a service request to the server at a first location;
receiving a token and a redirection to a second location from the server; and
appending said token to said service request and retransmitting said service request together with said token to the server at said second server location via an intermediate node, wherein said intermediate node appends the credential to said retransmitted service request and transmits said service request, said token and said credential to the server.
5 Assignments
0 Petitions
Accused Products
Abstract
A computing system, method and product comprising a server, a mobile device comprising a client interconnected with the server via a data network, the client identified by a credential which is unavailable to the client and an intermediate node interconnected to the client and the server via the data network wherein the credential is available to the intermediate node. Upon reception of a service request from the client at a first server address the server redirects the client to transmit the service request to a second server address via the intermediate node together with a token, wherein the intermediate node appends a credential identifying the client to the redirected service request and the token and relays the redirected service request, the token and the credential to the second server address.
-
Citations
85 Claims
-
1. A method for establishing an authenticated communication session between a client and a server over a communications network, the client identified by a credential which is unavailable to the client, the method comprising:
-
transmitting a service request to the server at a first location; receiving a token and a redirection to a second location from the server; and appending said token to said service request and retransmitting said service request together with said token to the server at said second server location via an intermediate node, wherein said intermediate node appends the credential to said retransmitted service request and transmits said service request, said token and said credential to the server. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 10, 11, 12, 13, 14, 15, 17, 18, 19, 20, 21)
-
-
9. (canceled)
-
16. (canceled)
-
22. A method for establishing an authenticated communication session between a client and a server over a communications network, the client identified by a credential which is unavailable to the client, the method comprising:
-
receiving at a first location a service request from the client; transmitting a redirection to a second location comprising a token to the client; receiving at said second location a redirected service request and the credential via an intermediate node; and transmitting to the client an acknowledgment of correct reception of said redirected service request if said redirected service request includes said token. - View Dependent Claims (23, 24, 25, 26, 27)
-
-
28. (canceled)
-
29. (canceled)
-
30. (canceled)
-
31. (canceled)
-
32. (canceled)
-
33. (canceled)
-
34. (canceled)
-
35. (canceled)
-
36. (canceled)
-
37. (canceled)
-
38. (canceled)
-
39. (canceled)
-
40. (canceled)
-
41. (canceled)
-
42. A computing system comprising:
-
a server; a mobile device comprising a client interconnected with said server via a data network, said client identified by a credential which is unavailable to said client; and an intermediate node interconnected to said client and said server via said data network wherein said credential is available to said intermediate node; wherein upon reception of a service request from said client said server redirects said client to retransmit said service request to said server via said intermediate node together with a token, wherein said intermediate node appends a credential identifying said client to said redirected service request and said token and relays said redirected service request, said token and said credential to said server.
-
-
43. (canceled)
-
44. (canceled)
-
45. (canceled)
-
46. (canceled)
-
47. (canceled)
-
48. (canceled)
-
49. (canceled)
-
50. (canceled)
-
51. (canceled)
-
52. (canceled)
-
53. (canceled)
-
54. A computer program product in a computer readable medium for establishing an authenticated communication session between a client and a server over a communications network, the client identified by a credential which is unavailable to the client, the product comprising:
-
instructions for generating a service request; instructions for transmitting said service request to the server; instructions for receiving a token, a redirection and an indication that said service request is to be retransmitted to the server via an intermediate node from the server; and instructions for appending said token to said service request and retransmitting said service request together with said token to the server via said intermediate node. - View Dependent Claims (57, 64)
-
-
55. (canceled)
-
56. (canceled)
-
58. (canceled)
-
59. (canceled)
-
60. (canceled)
-
61. (canceled)
-
62. (canceled)
-
63. (canceled)
-
65. (canceled)
-
66. (canceled)
-
67. (canceled)
-
68. (canceled)
-
69. A computer program product in a computer readable medium for establishing an authenticated communication session between a client and a server over a communications network, the client identified by a credential which is not available to the client, the product comprising:
-
instructions for receiving a service request from the client; instructions for sending to the client a redirection comprising a first token and an indication that said service request should be retransmitted to the server via an intermediate node; and instructions for receiving a redirected service request, said first token and the credential from said intermediate node. - View Dependent Claims (71, 72)
-
-
70. (canceled)
-
73. (canceled)
-
74. (canceled)
-
75. (canceled)
-
76. (canceled)
-
77. (canceled)
-
78. (canceled)
-
79. (canceled)
-
80. (canceled)
-
81. (canceled)
-
82. (canceled)
-
83. (canceled)
-
84. (canceled)
-
85. (canceled)
Specification