System and apparatus for storage and transfer of secure data on web
First Claim
Patent Images
1. A system for transferring secure data on a network comprising:
- a) a client capable of presenting conforming client data;
b) a server capable of using said conforming client data to create at least two secure cookies, each of said at least two secure cookies including;
i) a domain field capable of holding domain data to associate said secure cookie to a domain where said secure cookie is valid;
ii) at least one name field capable of holding name data;
iii) at least one value field capable of holding value data derived from said conforming client data; and
iv) an expiration field capable of holding cookie expiration data;
c) a network capable of transporting at least one of said at least two secure cookies between said server and said client;
d) a client storage means capable of storing at least one of said at least two secure cookies; and
e) a secure attribute service between said client and said server using said at least one of said at least two secure cookies,wherein;
i) at least one of said at least two secure cookies is a key cookie containing an encrypted session key, said session key capable of encrypting said value data contained in another of said at least two secure cookies; and
ii) said secure attribute service includes said server being configured to authenticate said client by comparing said conforming client data with said value data.
3 Assignments
0 Petitions
Accused Products
Abstract
The present invention relates to methods and systems for creating secure cookies. The methods can be used to create, receive, and transmit secure cookies, confidential cookies, and authentication cookies.
-
Citations
39 Claims
-
1. A system for transferring secure data on a network comprising:
-
a) a client capable of presenting conforming client data; b) a server capable of using said conforming client data to create at least two secure cookies, each of said at least two secure cookies including; i) a domain field capable of holding domain data to associate said secure cookie to a domain where said secure cookie is valid; ii) at least one name field capable of holding name data; iii) at least one value field capable of holding value data derived from said conforming client data; and iv) an expiration field capable of holding cookie expiration data; c) a network capable of transporting at least one of said at least two secure cookies between said server and said client; d) a client storage means capable of storing at least one of said at least two secure cookies; and e) a secure attribute service between said client and said server using said at least one of said at least two secure cookies, wherein; i) at least one of said at least two secure cookies is a key cookie containing an encrypted session key, said session key capable of encrypting said value data contained in another of said at least two secure cookies; and ii) said secure attribute service includes said server being configured to authenticate said client by comparing said conforming client data with said value data. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16, 27)
-
-
17. A method for transferring secure data on a network including the steps of:
-
a) a client making a request from a server; b) said server retrieving conforming client data; c) said server creating at least two secure cookies, each of said at least two secure cookies including selected conforming client data, said selected conforming data including at least some of said conforming client data; d) said server transmitting at least one of said at least two secure cookies to said client; e) said client storing at least one of said at least two secure cookies; f) said client presenting to a related server at least one of said stored at least two secure cookies with a second request, said related server residing on the same domain as said server; g) said related server making a determination of whether at least one of said at least one retrieved stored at least two secure cookies contains said selected conforming client data; and h) said related server fulfilling said second request if said determination is positive; wherein at least one of said at least two secure cookies is a key cookie containing an encrypted session key, said session key capable of encrypting said value data contained in another of said at least two secure cookies. - View Dependent Claims (18, 19, 20, 21, 22, 23, 24, 25, 26, 28, 29, 30, 31, 32, 33, 34, 35)
-
-
36. A system for transferring secure data on a network comprising:
-
a) a client capable of presenting conforming client data; b) a server capable of using said conforming client data to create at least two secure cookies, each of said at least two secure cookies including; i) a domain field capable of holding domain data to associate said secure cookie to a domain where said secure cookie is valid; ii) at least one name field capable of holding name data; iii) at least one value field capable of holding value data derived from said conforming client data; and iv) an expiration field capable of holding cookie expiration data; c) a network capable of transporting at least one of said at least two secure cookies between said server and said client; d) a client storage means capable of storing at least one of said at least two secure cookies; and e) a secure attribute service between said client and said server using said at least one of said at least two secure cookies, said secure attribute service includes said server being configured to authenticate said client by comparing said conforming client data with said value data; and wherein at least one of said at least two secure cookies is one of the following; i) a seal cookie, capable of being used by said server to determine if at least one of another of said at least two secure cookies has been altered; and ii) a key cookie containing an encrypted session key, said session key capable of encrypting said value data contained in another of said at least two secure cookies. - View Dependent Claims (37, 38)
-
-
39. A method for transferring secure data on a network including the steps of:
-
a) a client making a request from a server; b) said server retrieving conforming client data; c) said server creating at least two secure cookies, each of said at least two secure cookies including selected conforming client data, said selected conforming data including at least some of said conforming client data; d) said server transmitting at least one of said at least two secure cookies to said client; e) said client storing at least one of said at least two secure cookies; f) said client presenting to a related server at least one of said stored at least two secure cookies with a second request, said related server residing on the same domain as said server; g) said related server making a determination of whether at least one of said at least one retrieved stored at least two secure cookies contains said selected conforming client data; and h) said related server fulfilling said second request if said determination is positive; wherein at least one of said at least two secure cookies is one of the following; i) a seal cookie, capable of being used by said server to determine if at least one of another of said at least two secure cookies has been altered; and ii) a key cookie containing an encrypted session key, said session key capable of encrypting said value data contained in another of said at least two secure cookies.
-
Specification