Secure method of synchronizing cache contents of a mobile browser with a server
First Claim
1. A method comprising:
- receiving a data transmission at a server from a browser to initiate an out-of-band protocol session, the data transmission comprising;
a header representing a transitional state message;
a protocol identifier;
a Content-Length header;
a sequence of control characters;
an XML-encoded document containing a hash value of browser state information;
an authentication key;
a connection identifier; and
browser state information regarding cache contents transmitted from the browser to the server,the data transmission for notifying the server of current state information for a current session between the browser and the server;
receiving data requests at the server from the browser;
generating a message authentication code at the server, via the authentication key, that includes a cryptographic hash of data retrieved by the server from a web server;
accessing records of data sent from the server to the browser for storage in the cache contents; and
transmitting from the server to the browser only that portion of the data retrieved by the server from the web server that does not already form part of the cache contents,wherein returned data includes a result of a hash of the portion of the data retrieved by the server from the web server generated using the authentication key such that the browser can authenticate the returned data.
4 Assignments
0 Petitions
Accused Products
Abstract
A method of securely synchronizing cache contents of a mobile browser with a server includes initiating a session between the browser and server, including transmission of browser state information regarding the cache contents and an authentication key to the server; maintaining a record of data sent from the server to the browser for storage in the cache; maintaining a record of the state information regarding the cache contents transmitted from the browser to the server; and transmitting data requests from the browser to the server, in response to which the server uses the key as a seed generation function and accesses each the record of data and returns only data that does not already form part of the cache contents, and wherein the data includes a result of a hash of data generated by the generation function for authentication by the browser before updating the cache contents with the data.
24 Citations
8 Claims
-
1. A method comprising:
-
receiving a data transmission at a server from a browser to initiate an out-of-band protocol session, the data transmission comprising; a header representing a transitional state message; a protocol identifier; a Content-Length header; a sequence of control characters; an XML-encoded document containing a hash value of browser state information; an authentication key; a connection identifier; and browser state information regarding cache contents transmitted from the browser to the server, the data transmission for notifying the server of current state information for a current session between the browser and the server; receiving data requests at the server from the browser; generating a message authentication code at the server, via the authentication key, that includes a cryptographic hash of data retrieved by the server from a web server; accessing records of data sent from the server to the browser for storage in the cache contents; and transmitting from the server to the browser only that portion of the data retrieved by the server from the web server that does not already form part of the cache contents, wherein returned data includes a result of a hash of the portion of the data retrieved by the server from the web server generated using the authentication key such that the browser can authenticate the returned data. - View Dependent Claims (2, 3, 4)
-
-
5. A server, comprising:
a processor and a memory, the processor enabled to; receive a data transmission from the browser to initiate an out-of-band protocol session, the data transmission comprising; a header representing a transitional state message; a protocol identifier; a Content-Length header; a sequence of control characters; an XML-encoded document containing a hash value of browser state information; an authentication key; a connection identifier; and
,browser state information regarding cache contents transmitted from the browser to the server, the data transmission for notifying the server of current state information for a current session between the browser and the server; receive data requests from the browser; generate a message authentication code, via the authentication key, that includes a cryptographic hash of data retrieved by the server from a web server; access at the memory records of data sent from the server to the browser for storage in the cache contents; and transmit from the server to the browser only that portion of the data retrieved by the server from the web server that does not already form part of the cache contents, wherein returned data includes a result of a hash of the portion of the data retrieved by the server from the web server generated using the authentication key such that the browser can authenticate the returned data. - View Dependent Claims (6, 7, 8)
Specification