Client terminal, server, server-client system, cooperation processing method, program and recording medium

US 8,468,360 B2
Filed: 05/20/2010
Issued: 06/18/2013
Est. Priority Date: 09/04/2009
Status: Expired due to Fees

First Claim

Patent Images

1. A client terminal connected to a server through a network, the client terminal comprising a browser and an application different from the browser,the browser comprising:

a network transmitting section transmitting application session information and an application signature received from the application, to the server, the application session information indicating a state of the application, the application signature proving an identity of the application;

a network receiving section receiving from the server an HTML page generated by the server according to the application session information, server session information generated by the server from the application session information, and the application signature received by the server, the HTML page including an inserted script instructing the application to perform an operation;

an HTML displaying section displaying the HTML page received from the server, the HTML page including the inserted script; and

a session transmitting section transmitting the server session information and the application signature received from the server to the application in response to activation of the script;

the application comprising;

an application session generating section generating the application session information;

an application signature generating section generating the application signature;

an application session transmitting section transmitting the application session information and the application signature to the browser;

an application signature verifying section receiving, from the browser, the server session information and the application signature, which the browser has received from the server, to verify whether or not the application signature received from the browser is identical to the application signature of the application generated by the application signature generating section; and

an application control section providing control of the application so that a processing according to the server session information received from the browser, is performed only if the application signature received from the browser is identical to the application signature of the application generated by the application signature generating section.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

An application on a client terminal transmits application session information indicating a state of the application itself and an application signature proving the identity of the application to a browser. The browser transmits the application session information and the application signature to a server. The server generates an HTML page in which a script specifying an operation to be performed by the application is inserted and server session information and transmits the HTML page and the server session information to the browser along with the application signature received from the browser. When the script is activated, the browser passes the information received from the server to the application. The application performs processing according to the server session information only if the application signature passed from the browser is an application signature generated by the application itself.

14 Citations

View as Search Results

8 Claims

1. A client terminal connected to a server through a network, the client terminal comprising a browser and an application different from the browser,the browser comprising:
- a network transmitting section transmitting application session information and an application signature received from the application, to the server, the application session information indicating a state of the application, the application signature proving an identity of the application;
  
  a network receiving section receiving from the server an HTML page generated by the server according to the application session information, server session information generated by the server from the application session information, and the application signature received by the server, the HTML page including an inserted script instructing the application to perform an operation;
  
  an HTML displaying section displaying the HTML page received from the server, the HTML page including the inserted script; and
  
  a session transmitting section transmitting the server session information and the application signature received from the server to the application in response to activation of the script;
  
  the application comprising;
  
  an application session generating section generating the application session information;
  
  an application signature generating section generating the application signature;
  
  an application session transmitting section transmitting the application session information and the application signature to the browser;
  
  an application signature verifying section receiving, from the browser, the server session information and the application signature, which the browser has received from the server, to verify whether or not the application signature received from the browser is identical to the application signature of the application generated by the application signature generating section; and
  
  an application control section providing control of the application so that a processing according to the server session information received from the browser, is performed only if the application signature received from the browser is identical to the application signature of the application generated by the application signature generating section.
- View Dependent Claims (2, 3, 4)
- - 2. The client terminal according to claim 1, wherein:
    - the server session information received by the network receiving section includes application state setting information inserted by the server, the application state setting information specifying a state of the application; and
      
      the application control section extracts the application state setting information from the server session information received from the browser and sets the state of the application according to the application state setting information only if the application signature received from the browser is the application signature generated by the application signature generating section.
  - 3. The client terminal according to claim 1, wherein:
    - the application comprises an encrypted signature decrypting section decrypting the application signature encrypted in a format unreadable by the server;
      
      the application signature generating section encrypts the generated application signature into a format unreadable by the server;
      
      the application session transmitting section transmits, instead of the application signature, the application signature encrypted by the application signature generating section, to the browser;
      
      the encrypted signature decrypting section decrypts the encrypted application signature received from the browser; and
      
      the application signature verifying section verifies whether or not the application signature decrypted by the encrypted signature decrypting section is the application signature generated by the application signature generating section.
  - 4. The client terminal according to claim 1, wherein:
    - the application can be obtained through the network, and is one of a plurality of applications that can be obtained through the network; and
      
      the browser is capable of connecting to more than one of the plurality of applications.

5. A server connected to a client terminal through a network, wherein a browser and an application different from the browser are running on the client terminal, the server comprising:
- a server receiving section receiving application session information generated by the application and an application signature generated by the application from the browser, the application session information indicating a state of the application, the application signature proving an identity of the application;
  
  an HTML generating section generating an HTML page according to the received application session information;
  
  an application script generating section inserting a script into the HTML page, the script instructing the application to perform an operation;
  
  a server session generating section generating server session information from the received application session information; and
  
  a server transmitting section transmitting the HTML page including the inserted script, the server session information, and the received application signature to the client terminal;
  
  wherein the application signature transmitted by the server transmitting section is information to be used by the application to verify whether or not the application signature transmitted by the server transmitting section is identical to the application signature generated by the application, andwherein a processing according to the server session information can be performed by the application only if the application signature transmitted by the server transmitting section is identical to the application signature generated by the application program.

6. A server-client system comprising a client terminal and a server connected to the client terminal through a network, wherein a browser and an application different from the browser are running on the client terminal,the application comprising:
- an application session generating section generating application session information indicating a state of the application;
  
  an application signature generating section generating an application signature proving an identity of the application;
  
  an application session transmitting section transmitting the application session information and the application signature to the browser;
  
  an application signature verifying section receiving, from the browser, server session information and an application signature, which the browser has received from the server, to verify whether or not the application signature received from the browser is identical to the application signature of the application generated by the application signature generating section; and
  
  an application control section providing control of the application so that a processing according to the server session information received from the browser, is performed only if the application signature received from the browser is identical to the application signature of the application generated by the application signature generating section;
  
  the server comprising;
  
  a server receiving section receiving the application session information and the application signature from the browser;
  
  an HTML generating section generating an HTML page according to the received application session information;
  
  an application script generating section inserting a script into the HTML page, the script instructing the application to perform an operation;
  
  a server session generating section generating the server session information from the received application session information; and
  
  a server transmitting section transmitting the HTML page including the inserted script, the server session information, and the received application signature to the browser;
  
  the browser comprising;
  
  a network transmitting section transmitting the application session information and the application signature received from the application session transmitting section, to the server;
  
  a network receiving section receiving the HTML page including the inserted script, the server session information, and the application signature from the server;
  
  an HTML displaying section displaying the HTML page received from the server, the HTML page including the inserted script; and
  
  a session transmitting section transmitting the server session information and the application signature received from the server to the application in response to activation of the script.

7. A cooperation processing method in a server-client system comprising a client terminal and a server connected to the client through a network, wherein a browser and an application different from the browser are running on the client terminal, the cooperation processing method comprising:
- an application session transmitting step of transmitting application session information and an application signature from the application to the browser, the application session information indicating a state of the application, the application signature proving an identity of the application;
  
  a network transmitting step of transmitting the application session information and the application signature received from the application, from the browser to the server;
  
  an HTML generating step of, by the server, generating an HTML page according to the received application session information and inserting a script into the HTML page, the script instructing the application to perform an operation;
  
  a server session generating step of, by the server, generating server session information from the received application session information;
  
  a server transmitting step of transmitting the HTML page including the inserted script, the server session information, and the received application signature from the server to the browser;
  
  an HTML displaying step of, by the browser, displaying the HTML page received from the server, the HTML page including the inserted script;
  
  a session transmitting step of transmitting the server session information and the application signature received from the server, from the browser to the application in response to activation of the script;
  
  an application signature verifying step of receiving, from the browser, the server session information and the application signature, which the browser has received from the server, to verify whether or not the application signature received from the browser is identical to the application signature generated by the application itself; and
  
  an application control step of causing the application to perform processing according to the server session information only if the application signature received from the browser is identical to the application signature generated by the application itself.
- View Dependent Claims (8)
- - 8. A non-transitory computer-readable medium having a program stored thereon for causing a computer to execute the cooperation processing method according to claim 7.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Panasonic Corporation (Panasonic Holdings Corporation)
Original Assignee
Panasonic Corporation (Panasonic Holdings Corporation)
Inventors
Morita, Hideo, Takechi, Hideaki
Primary Examiner(s)
Lipman, Jacob

Application Number

US13/061,606
Publication Number

US 20110246781A1
Time in Patent Office

1,125 Days
Field of Search

713/180
US Class Current

713/180
CPC Class Codes

G06F 21/54 by adding security routines...

G06F 2221/2119 Authenticating web pages, e...

Client terminal, server, server-client system, cooperation processing method, program and recording medium

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

14 Citations

8 Claims

Specification

Solutions

Use Cases

Quick Links

Client terminal, server, server-client system, cooperation processing method, program and recording medium

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

14 Citations

8 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links