Multiple cookie handling

US 8,145,773 B1
Filed: 03/17/2011
Issued: 03/27/2012
Est. Priority Date: 02/12/2009
Status: Expired due to Fees

First Claim

Patent Images

1. A computer-implemented method of managing a wireless session via a wireless communications system having a server and a database, the computer-implemented method comprising:

sending a non-encrypted HTTP cookie to a wireless device;

sending an encrypted HTTP cookie to the wireless device;

receiving a non-encrypted session request from the wireless device;

receiving one of the non-encrypted HTTP cookie or the encrypted HTTP cookie in conjunction with the non-encrypted session request; and

maintaining the non-encrypted session via the wireless communications system, wherein neither the encrypted HTTP cookie nor the non-encrypted HTTP cookie invalidate the non-encrypted session.

View all claims

5 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A method, system, and computer readable media are provided for managing multiple HTTP cookies that are present in a wireless communication system. When a secure or non-secure HTTP cookie is formed, a time of creation for that HTTP cookie is also created as part of the cookie header. Therefore, when a wireless device makes a subsequent communication to a web based server, the gateway compares the creation time for multiple HTTP cookies that are present, and only forwards the most recently created HTTP cookie to the web based server. This avoids invalidating a session as a result of receiving multiple conflicting HTTP cookies from the same wireless device.

7 Citations

20 Claims

1. A computer-implemented method of managing a wireless session via a wireless communications system having a server and a database, the computer-implemented method comprising:
- sending a non-encrypted HTTP cookie to a wireless device;
  
  sending an encrypted HTTP cookie to the wireless device;
  
  receiving a non-encrypted session request from the wireless device;
  
  receiving one of the non-encrypted HTTP cookie or the encrypted HTTP cookie in conjunction with the non-encrypted session request; and
  
  maintaining the non-encrypted session via the wireless communications system, wherein neither the encrypted HTTP cookie nor the non-encrypted HTTP cookie invalidate the non-encrypted session.
- View Dependent Claims (2, 3, 4, 5, 6, 7)
- - 2. The computer-implemented method of claim 1, wherein the non-encrypted HTTP cookie comprises a header containing a time of creation for the non-encrypted HTTP cookie.
  - 3. The computer-implemented method of claim 2, wherein the non-encrypted HTTP cookie is stored on a gateway for the wireless device.
  - 4. The computer-implemented method of claim 2, wherein the encrypted HTTP cookie comprises a header containing a time of creation for the encrypted HTTP cookie.
  - 5. The computer-implemented method of claim 4, wherein the receiving one of the non-encrypted HTTP cookie or the encrypted HTTP cookie comprises receiving a most recently created HTTP cookie of either the non-encrypted HTTP cookie or the encrypted HTTP cookie.
  - 6. The computer-implemented method of claim 5, wherein the receiving comprises comparing the encrypted HTTP cookie header with the non-encrypted HTTP cookie header.
  - 7. The computer-implemented method of claim 5, wherein the receiving a most recently created HTTP cookie is determined by a gateway linked to the wireless device.

8. A wireless communications system having a server and a database, the wireless communications system comprising:
- a wireless device connected to a wireless Internet gateway via a wireless network of the wireless communications system, wherein the wireless devices stores an encrypted HTTP cookie;
  
  a web based server in communication with one or more clients via an interconnected computing network; and
  
  a gateway linked intermediately with the web based server via the interconnected computing network and the one or more wireless devices via the wireless Internet gateway, wherein the gateway stores a non-encrypted HTTP cookie and maintains a non-encrypted session by forwarding a most recently created HTTP cookie comprising one of the encrypted HTTP cookie or the non-encrypted HTTP cookie to the web based server.
- View Dependent Claims (9, 10, 11, 12, 13, 14, 15)
- - 9. The wireless communications system of claim 8, wherein the gateway comprises a mobile to HTTP protocol gateway.
  - 10. The wireless communications system of claim 8, wherein the gateway differs from the wireless Internet gateway.
  - 11. The wireless communications system of claim 8, wherein the gateway is bidirectional.
  - 12. The wireless communications system of claim 8, wherein the gateway compares a creation time of the encrypted HTTP cookie with a creation time of the non-encrypted HTTP cookie and forwards the most recently created HTTP cookie to the web based server in conjunction with the non-encrypted session requested by the wireless device.
  - 13. The wireless communications system of claim 12, wherein the creation time of the encrypted HTTP cookie is contained within a header of the encrypted HTTP cookie, and the creation time of the non-encrypted HTTP cookie is contained within a header of the non-encrypted HTTP cookie.
  - 14. The wireless communications system of claim 13, wherein the header of the encrypted HTTP cookie and the header of the non-encrypted HTTP cookie comprise an expiration time.
  - 15. The wireless communications system of claim 8, wherein neither the encrypted HTTP cookie nor the non-encrypted HTTP cookie invalidate the non-encrypted session.

16. A computer-implemented method of maintaining a wireless session via a wireless communications system having a server and a database, the computer-implemented method comprising:
- sending an encrypted HTTP cookie to a wireless device;
  
  sending a non-encrypted HTTP cookie to a gateway to be stored for the wireless device;
  
  receiving a non-encrypted session request from the wireless device; and
  
  receiving a most recently created HTTP cookie comprising one of the encrypted HTTP cookie or the non-encrypted HTTP cookie from the gateway of the wireless communications system, wherein the non-encrypted session is maintained.
- View Dependent Claims (17, 18, 19, 20)
- - 17. The computer-implemented method of claim 16, wherein the non-encrypted session is not invalidated.
  - 18. The computer-implemented method of claim 17, wherein additional requests by the wireless device for a secure session or a non-secure session are maintained.
  - 19. The computer-implemented method of claim 16, wherein multiple HTTP cookies are not received as a result of receiving the non-encrypted session request.
  - 20. The computer-implemented method of claim 16, wherein receiving the most recently created HTTP cookie comprises comparing a creation time of the encrypted HTTP cookie with a creation time of the non-encrypted HTTP cookie by the gateway.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Sprint Communications Company LP (Deutsche Telekom AG)
Original Assignee
Sprint Communications Company LP (Deutsche Telekom AG)
Inventors
Smith, Brian N., UPADHYAY, PIYUSH, Subramanyan, Badri P., Davis, John W.
Primary Examiner(s)
Neurauter, George C

Application Number

US13/049,992
Time in Patent Office

376 Days
Field of Search

709/203, 709/228, 715/745
US Class Current

709/228
CPC Class Codes

H04L 63/168   above the transport layer

H04L 67/02   based on web technology, e....

H04L 67/04   specially adapted for termi...

H04L 67/14   Session management for real...

H04L 69/28   Timers or timing mechanisms...

H04W 12/033   of the user plane, e.g. use...

Multiple cookie handling

First Claim

5 Assignments

0 Petitions

Accused Products

Abstract

7 Citations

20 Claims

Specification

Solutions

Use Cases

Quick Links

Multiple cookie handling

First Claim

5 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

7 Citations

20 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links