Method for securely associating data with HTTP and HTTPS sessions
First Claim
1. A method comprising:
- causing transmission of a service request from a client to a server at a first location via a Secure Sockets Layer connection, the client being identified by a pre-defined mobile credential which is unavailable to the client and is unrelated to the service being requested;
receiving from the server at the first location, in response to the transmitted service request, a token and a redirection to a server at a second location; and
appending said token to said service request and causing retransmission of said service request together with said token to the server at said second location via an intermediate node that serves as a gateway between the client and the server at the second location and that has access to the mobile credential, thereby causing said intermediate node to append the mobile credential to said retransmitted service request and transmit said service request, said token and said mobile credential to the server at the second location; and
receiving an acknowledgment of correct reception of said redirected service request in an instance in which said redirected service request includes said token.
5 Assignments
0 Petitions
Accused Products
Abstract
A computing system, method and product comprising a server, a mobile device comprising a client interconnected with the server via a data network, the client identified by a credential which is unavailable to the client and an intermediate node interconnected to the client and the server via the data network wherein the credential is available to the intermediate node. Upon reception of a service request from the client at a first server address the server redirects the client to transmit the service request to a second server address via the intermediate node together with a token, wherein the intermediate node appends a credential identifying the client to the redirected service request and the token and relays the redirected service request, the token and the credential to the second server address.
38 Citations
23 Claims
-
1. A method comprising:
-
causing transmission of a service request from a client to a server at a first location via a Secure Sockets Layer connection, the client being identified by a pre-defined mobile credential which is unavailable to the client and is unrelated to the service being requested; receiving from the server at the first location, in response to the transmitted service request, a token and a redirection to a server at a second location; and appending said token to said service request and causing retransmission of said service request together with said token to the server at said second location via an intermediate node that serves as a gateway between the client and the server at the second location and that has access to the mobile credential, thereby causing said intermediate node to append the mobile credential to said retransmitted service request and transmit said service request, said token and said mobile credential to the server at the second location; and receiving an acknowledgment of correct reception of said redirected service request in an instance in which said redirected service request includes said token. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16, 17, 18, 19)
-
-
20. A computer program product comprising a non-transitory computer readable medium storing computer readable program instructions, the instructions, when executed by a processor, instruct the processor to:
-
generate a service request; cause transmission of said service request from a client to a server at a first location via a Secure Sockets Layer connection, the client being identified by a pre-defined mobile credential which is unavailable to the client and is unrelated to the service being requested; receive from the server at the first location, in response to the transmitted service request, a token, a redirection to a server at a second location, and an indication that said service request is to be retransmitted to the server at the second location via an intermediate node that serves as a gateway between the client and the server at the second location and that has access to the mobile credential; and append said token to said service request and causing retransmission of said service request together with said token to the server at the second location via said intermediate node, thereby causing said intermediate node to append the mobile credential to said retransmitted service request and transmit said service request, said token and said mobile credential to the server at the second location; and receive an acknowledgment of correct reception of said redirected service request in an instance in which said redirected service request includes said token. - View Dependent Claims (21, 22)
-
-
23. An apparatus comprising at least one hardware processor and at least one memory storing computer program code, the at least one memory and stored computer program code being configured, with the at least one hardware processor, to cause the apparatus to at least:
-
cause, by the at least one hardware processor, transmission of a service request from a client to a server at a first location via a Secure Sockets Layer connection, the client being identified by a pre-defined mobile credential which is unavailable to the client and is unrelated to the service being requested; receive, by the at least one hardware processor from the server at the first location, in response to the transmitted service request, a token and a redirection to a server at a second location; and append, by the at least one hardware processor, said token to said service request and cause retransmission of said service request together with said token to the server at said second location via an intermediate node that serves as a gateway between the client and the server at the second location and that has access to the mobile credential, thereby causing said intermediate node to append the mobile credential to said retransmitted service request and transmit said service request, said token and said mobile credential to the server at the second location; and receive, by the at least one processor, an acknowledgment of correct reception of said redirected service request in an instance in which said redirected service request includes said token.
-
Specification