Common session token system and protocol
First Claim
1. In a client-server network having multiple independent servers, a method of session migration from a session between a client and a first server to a session between the client and a second server;
- establishing a current session between the client and the first server after the first server has verified that th e client is an authorized client of the first server;
sending a migration request from the client to the first server;
in response to the migration request generating a session token;
sending a session token from the first server to the client, wherein the session token uniquely identifies the current session between the client and the first server;
sending the session token from the client to the second server as a request to the second server for migration;
verifying, at the second server and from the session token, the identity of the client and the first server;
requesting, from the first server, data about the session, wherein the request is sent from the second server;
responding from the first server to the request for data by sending the requested data to the second server; and
if the client is an authorized client with respect to the second server, continuing the session with the second server in place of the first server.
7 Assignments
0 Petitions
Accused Products
Abstract
An improved session control method and apparatus includes a client which establishes a session with a first server such that the first server can identify the client. When the client wishes to migrate from the first server to a second server, the client requests a session token from the first server. The session token is a data element generated by the first server which is unique over the client-server network being navigated and identifies the particular session with the first server. The session token is preferably a difficult to forge data element, such as a data element digitally signed using the private key of the first server. The session token is passed from the client to the second server to initiate migration to the second server. If session data is too bulky to be passed as part of the session token, the second server may use data from the session token to formulate a request to the first server for additional data needed to handle the state of the session. To minimize the transmission of data, the second server might maintain a version of the bulk session data and only request an update to the version of the data indicated in the session token.
510 Citations
13 Claims
-
1. In a client-server network having multiple independent servers, a method of session migration from a session between a client and a first server to a session between the client and a second server;
-
establishing a current session between the client and the first server after the first server has verified that th e client is an authorized client of the first server; sending a migration request from the client to the first server; in response to the migration request generating a session token; sending a session token from the first server to the client, wherein the session token uniquely identifies the current session between the client and the first server; sending the session token from the client to the second server as a request to the second server for migration; verifying, at the second server and from the session token, the identity of the client and the first server; requesting, from the first server, data about the session, wherein the request is sent from the second server; responding from the first server to the request for data by sending the requested data to the second server; and if the client is an authorized client with respect to the second server, continuing the session with the second server in place of the first server. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13)
-
Specification