Enabling encryption of application level persistence between a server and a client
First Claim
1. A method for providing persistent communication between at least one client and a destination server, comprising:
- at the destination server, receiving a first application level protocol request from a client, wherein the first application level protocol request includes a request for access to a resource provided by the destination server;
encrypting at least a portion of information associated with an application level protocol command to store data, wherein the encrypted information indicates at least the destination server, and wherein the encrypted information is included in a cookie;
sending a first response to the client, wherein the first response includes at least the encrypted portion of the application level protocol command to store data; and
decrypting at least a portion of information included in a second application level protocol request from the client, wherein the decrypted information is employable by a network transmission device to indicate the destination server.
1 Assignment
0 Petitions
Accused Products
Abstract
A method and system for inserting and examining encrypted identification information in the data streams of application level connections for the purpose of persistently directing application connections to the same destination. The invention enables a network device to direct subsequent application level connections from the same client to the same server (destination) for accessing the requested resources. There are four modes for employing the encrypted information to persistently direct application level connections. The associative mode inserts information that uniquely identifies the client into a response. The passive mode inserts information that uniquely identifies a previously selected destination into a response. In the rewrite mode, a network device manages the destination information that is rewritten over blank information generated by the destination producing the response. The insert mode inserts and removes identification information in the data packets for application level requests and responses prior to processing by the destination.
-
Citations
31 Claims
-
1. A method for providing persistent communication between at least one client and a destination server, comprising:
-
at the destination server, receiving a first application level protocol request from a client, wherein the first application level protocol request includes a request for access to a resource provided by the destination server; encrypting at least a portion of information associated with an application level protocol command to store data, wherein the encrypted information indicates at least the destination server, and wherein the encrypted information is included in a cookie; sending a first response to the client, wherein the first response includes at least the encrypted portion of the application level protocol command to store data; and decrypting at least a portion of information included in a second application level protocol request from the client, wherein the decrypted information is employable by a network transmission device to indicate the destination server. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14)
-
-
15. A processor readable medium, comprising processor executable data for enabling actions that provide persistent communication between at least one client and a destination server, including:
-
enabling the destination server to receive a first application level protocol request from a client, wherein the first application level protocol request includes a request for access to a resource provided by the destination server; enabling encryption for at least a portion of information associated with an application level protocol command to store data, wherein the encrypted information indicates at least the destination server, and wherein the encrypted information is included in a cookie; forwarding a first response to the client, wherein the first response includes at least the encrypted portion of the application level protocol command to store data; and enabling decryption of at least a portion of information included in a second application level protocol request from the client, wherein the decrypted information is employable by a network transmission device to indicate the destination server. - View Dependent Claims (16, 17, 18, 19, 20, 21, 22)
-
-
23. An apparatus for providing persistent communication between at least one client and a destination server, comprising:
-
a memory for storing data; a processor for employing the stored data to enable actions, including; enabling the destination server to receive a first application level protocol request from a client, wherein the first application level protocol request includes a request for access to a resource provided by the destination server; enabling encryption for at least a portion of information associated with an application level protocol command to store data, wherein the encrypted information indicates at least the destination server, and wherein the encrypted information is included in a cookie; forwarding a first response to the client, wherein the first response includes at least the encrypted portion of the application level protocol command to store data; and enabling decryption of at least a portion of information included in a second application level protocol request from the client, wherein the decrypted information is employable by a network transmission device to indicate the destination server. - View Dependent Claims (24, 25, 26, 27, 28, 29, 30, 31)
-
Specification