What technology area does this patent fall under?

Primary CPC classification H04L67/146. Mapped technology areas include Electricity.

When was this patent published?

Publication date Tue Jan 15 2019 00:00:00 GMT+0000 (Coordinated Universal Time) (B2). Legal status and post-grant events are not shown on this page.

What related patents are in patentsdb?

We list 2 related publications on this page (citations in our corpus or others sharing the same primary CPC).

Cookie based session timeout detection and management

US10182121B2 · US · B2

Patent metadata
Field	Value
Publication number	US-10182121-B2
Application number	US-201715859550-A
Country	US
Kind code	B2
Filing date	Dec 31, 2017
Priority date	Apr 19, 2017
Publication date	Jan 15, 2019
Grant date	Jan 15, 2019

How to read this patent

A practical reading order for non-experts. Skip the full description unless you need deep technical detail.

Title
What the patent document calls the invention.
Abstract
A short plain-language summary of the technical disclosure.
Assignees and inventors
Who owns or filed the patent and who is credited as inventor.
Key dates
Filing, priority, publication, and grant dates set the timeline.
First independent claim
The legal scope of protection — read this for what is actually claimed.
CPC / IPC classifications
Technology tags used to group this patent with similar filings.
Citations and related patents
Prior art links and similar publications in this corpus.

Abstract

Official abstract text for this publication.

A method, computer system, and a computer program product for detecting a session status based on a cookie associated with the session is provided. The present invention may include receiving an access request to a specified location associated with a server computer. The present invention may also include determining that the received access request has the cookie corresponding with the specified location. The present invention may also include receiving a last refresh time from the cookie. The present invention may then include determining the session status based on the retrieved last refresh time, a current request time, a refresh interval, and an overdue value.

First claim

Opening claim text (preview).

What is claimed is: 1. A method for detecting a session status based on a symmetrically encrypted cookie associated with the session, the method comprising: receiving an access request to a secure website associated with a bank account of a user; determining that the received access request has the symmetrically encrypted cookie corresponding with the specified location, wherein the symmetrically encrypted cookie contains a unique session identifier, wherein the unique session identifier is a string of numbers; decrypting the symmetrically encrypted cookie based on a cryptographic key, wherein a server computer for the bank account is the only machine with the cryptographic key needed to decrypt the symmetrically encrypted cookie; beginning a process for session timeout validation based on determining that decrypting the symmetrically encrypted cookie based on a cryptographic key is successful; retrieving a last refresh time from the symmetrically encrypted cookie; querying a current request time; retrieving, from memory on the server computer for the bank account, a refresh interval value and an overdue value; determining that the session is valid based on calculating that a difference value corresponding to the current request time and the last refresh time is not greater than or equal to an aggregate value corresponding to the refresh interval value and the overdue value, wherein the refresh interval value is ten and the overdue value is fifteen, and the current request time minus the last refresh time is equal to the refresh interval; determining that the difference value is greater than or equal to the refresh interval value based on determining that the session is valid; altering the cookie with an updated last refresh time based on determining that the difference value is greater than or equal to the refresh interval value; symmetrically encrypting the altered cookie; and sending the altered cookie to a client computer.

Assignees

Inventors

Classifications

H04L63/0442
wherein the sending and receiving network entities apply asymmetric encryption, i.e. different keys for encryption and decryption (cryptographic mechanisms or cryptographic arrangements for public-key encryption H04L9/30) · CPC title
H04L67/02
based on web technology, e.g. hypertext transfer protocol [HTTP] · CPC title
H04L67/146Primary
Markers for unambiguous identification of a particular session, e.g. session cookie or URL-encoding · CPC title
H04L63/08
for authentication of entities (cryptographic mechanisms or cryptographic arrangements for entity authentication H04L9/32) · CPC title
H04L67/025
for remote control or remote monitoring of applications · CPC title

Patent family

Related publications grouped by family.

View patent family 63854282

External sources

Frequently asked questions

Answers are generated from the same data shown on this page.

What does patent US10182121B2 cover?: A method, computer system, and a computer program product for detecting a session status based on a cookie associated with the session is provided. The present invention may include receiving an access request to a specified location associated with a server computer. The present invention may also include determining that the received access request has the cookie corresponding with the specif…
Who is the assignee on this patent?: IBM
What technology area does this patent fall under?: Primary CPC classification H04L67/146. Mapped technology areas include Electricity.
When was this patent published?: Publication date Tue Jan 15 2019 00:00:00 GMT+0000 (Coordinated Universal Time) (B2). Legal status and post-grant events are not shown on this page.
What related patents are in patentsdb?: We list 2 related publications on this page (citations in our corpus or others sharing the same primary CPC).