Method and system for protecting internet users' privacy by evaluating web site platform for privacy preferences policy
First Claim
1. In a client computer connected to a remote site, a system comprising:
- a mechanism, embodied on a computer-readable storage medium, that receives a response from the remote site, the response including a request directed to a cookie operation and policy information, the policy information comprising a set of at least one valid token in association with the cookie operation;
a browser component, embodied on a computer-readable storage medium, that handles the response, including recognizing the requested cookie operation;
one or more computer-readable storage media embodying a cookie mechanism configured to locally perform operations on cookies based on a current privacy setting; and
an evaluation engine, embodied on a computer-readable storage medium, the evaluation engine invoked to determine whether the cookie mechanism should perform the requested operation based on an evaluation of criteria available to the client computer including the policy information, the criteria comprising;
a first valid token in the set of valid tokens in association with a first privacy result; and
a second valid token in the set of valid tokens in association with a second privacy result;
the evaluation engine further configured to;
compare the first privacy result with the current privacy setting,set the current privacy setting to correspond to the first privacy result if the first privacy result provides more privacy than the current privacy setting,compare the second privacy result with the current privacy setting, andset the current privacy setting to correspond to the second privacy result if the second privacy result provides more privacy than the current privacy setting.
2 Assignments
0 Petitions
Accused Products
Abstract
A system and method that evaluates privacy policies from web sites to determine whether each site is permitted to perform operations (e.g., store, retrieve or delete) directed to cookies on a user'"'"'s computer. Various properties of each cookie and the context in which it is being used are evaluated against a user'"'"'s privacy preference settings to make the determination. An evaluation engine accomplishes the evaluation and determination via a number of criteria and considerations, including the cookie properties, its current context, the site, the zone that contains the site, and any P3P data (compact policy) provided with the site'"'"'s response. The user privacy preferences are evaluated against these criteria to determine whether a requested cookie operation is allowed, denied or modified. A formalized distinction between first-party cookies versus third-party cookies may be used in the determination, along with whether the cookie is a persistent cookie or a session cookie.
51 Citations
19 Claims
-
1. In a client computer connected to a remote site, a system comprising:
-
a mechanism, embodied on a computer-readable storage medium, that receives a response from the remote site, the response including a request directed to a cookie operation and policy information, the policy information comprising a set of at least one valid token in association with the cookie operation; a browser component, embodied on a computer-readable storage medium, that handles the response, including recognizing the requested cookie operation; one or more computer-readable storage media embodying a cookie mechanism configured to locally perform operations on cookies based on a current privacy setting; and an evaluation engine, embodied on a computer-readable storage medium, the evaluation engine invoked to determine whether the cookie mechanism should perform the requested operation based on an evaluation of criteria available to the client computer including the policy information, the criteria comprising; a first valid token in the set of valid tokens in association with a first privacy result; and a second valid token in the set of valid tokens in association with a second privacy result; the evaluation engine further configured to; compare the first privacy result with the current privacy setting, set the current privacy setting to correspond to the first privacy result if the first privacy result provides more privacy than the current privacy setting, compare the second privacy result with the current privacy setting, and set the current privacy setting to correspond to the second privacy result if the second privacy result provides more privacy than the current privacy setting. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14)
-
-
15. One or more computer-readable storage media embodying computer-executable instructions which, when executed, implement a method comprising:
-
receiving a response from a remote site, the response including a request directed to a cookie operation and policy information, the policy information comprising a set of at least one valid token; evaluating the policy information against one or more criteria to provide a privacy result by processing the set of at least one valid token, the evaluating comprising, determining that the policy information is valid; selecting a valid token from the set of at least one valid token; obtaining a privacy result corresponding to a selected token; determining whether an obtained privacy result denies the cookie operation; in response to determining that the obtained privacy result denies the cookie operation, setting a current privacy result to deny the requested operation and returning the current privacy result; in response to determining that the obtained privacy result allows the cookie operation, determining whether the obtained privacy result provides more privacy than a current privacy result; and if the obtained privacy result provides more privacy than the current privacy result, setting the current privacy result to match the obtained privacy result to create a new current privacy result and returning the new current privacy result; and controlling the requested cookie operation based on the new current privacy result. - View Dependent Claims (16, 17, 18, 19)
-
Specification