WO2002013026A1 - A method for controlling data at a client device - Google Patents
A method for controlling data at a client device Download PDFInfo
- Publication number
- WO2002013026A1 WO2002013026A1 PCT/AU2001/000963 AU0100963W WO0213026A1 WO 2002013026 A1 WO2002013026 A1 WO 2002013026A1 AU 0100963 W AU0100963 W AU 0100963W WO 0213026 A1 WO0213026 A1 WO 0213026A1
- Authority
- WO
- WIPO (PCT)
- Prior art keywords
- client device
- server
- resource
- data
- request
- Prior art date
Links
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L67/00—Network arrangements or protocols for supporting network services or applications
- H04L67/34—Network arrangements or protocols for supporting network services or applications involving the movement of software or configuration parameters
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L67/00—Network arrangements or protocols for supporting network services or applications
- H04L67/01—Protocols
- H04L67/02—Protocols based on web technology, e.g. hypertext transfer protocol [HTTP]
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L67/00—Network arrangements or protocols for supporting network services or applications
- H04L67/50—Network services
- H04L67/53—Network services using third party service providers
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L67/00—Network arrangements or protocols for supporting network services or applications
- H04L67/50—Network services
- H04L67/56—Provisioning of proxy services
- H04L67/561—Adding application-functional data or data for application control, e.g. adding metadata
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L67/00—Network arrangements or protocols for supporting network services or applications
- H04L67/50—Network services
- H04L67/56—Provisioning of proxy services
- H04L67/564—Enhancement of application control based on intercepted application data
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L67/00—Network arrangements or protocols for supporting network services or applications
- H04L67/50—Network services
- H04L67/75—Indicating network or usage conditions on the user display
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L67/00—Network arrangements or protocols for supporting network services or applications
- H04L67/2866—Architectures; Arrangements
- H04L67/289—Intermediate processing functionally located close to the data consumer application, e.g. in same machine, in same home or in same sub-network
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L69/00—Network arrangements, protocols or services independent of the application payload and not provided for in the other groups of this subclass
- H04L69/30—Definitions, standards or architectural aspects of layered protocol stacks
- H04L69/32—Architecture of open systems interconnection [OSI] 7-layer type protocol stacks, e.g. the interfaces between the data link level and the physical level
- H04L69/322—Intralayer communication protocols among peer entities or protocol data unit [PDU] definitions
- H04L69/329—Intralayer communication protocols among peer entities or protocol data unit [PDU] definitions in the application layer [OSI layer 7]
Definitions
- the present invention relates to a method for controlling data at a client device, and to an access system.
- the invention relates to a proxy-based method and system for controlling client-side cookies.
- Web servers can use cookies to track user activities, a function which, while often useful for both the user and the web publisher, also raises privacy concerns for many users. Consequently, recent web browsers have provided the ability to control cookies to some extent. For example, Netscape NavigatorTM provides a number of user-configurable preferences related to cookies, specifically the ability to accept all cookies, block all cookies, accept only cookies which get sent back to the originating server, or to warn the user before a cookie is accepted and allow the user to accept or refuse the cookie.
- the information provided to the user in the latter case is rather cryptic, containing the name and value of the cookie together with the domain for which the cookie will be used.
- this information is not likely to be sufficient to help the user to decide whether the cookie should be allowed or refused. For this reason, it is doubtful that most users would select this option.
- many users are unlikely to even be aware of the existence of these cookie options, and will therefore use a default setting which allows all cookies.
- these options are browser-specific, and are not available in all browsers. It is desired, therefore, to provide at least a useful alternative, or a method and a system which provides any user with the ability to accept or refuse web browser cookies, independently of software on the client computer.
- a method for controlling data at a client device including the steps of: receiving a request from said client device for network resource data; sending said request to a server having said resource data; receiving a response from the server including the resource data and additional data; and sending code for displaying information on the additional data and providing the ability to accept or refuse the additional data at said client device.
- the present invention also provides a method for controlling the setting of variables at a client device, including the steps of: receiving a request from said client device directed to a resource server; forwarding the request to said resource server; receiving a response from said resource server, including a resource and header instructions for setting variables; and sending code which provides the ability to accept or refuse the setting of variables at said client device in accordance with said header instructions.
- the present invention also provides a network access system having: means for receiving a request from said client device for network resource data; means for sending said request to a server having said resource data; means for receiving a response from the server including the resource data and additional data; and means for sending code for displaying information on the additional data and providing the ability to accept or refuse the additional data at said client device.
- Figure 1 is a block diagram of a preferred embodiment of an access system
- Figure 2 is a flow diagram of a process executed by the access system.
- An access system 2 for a communications network includes a plurality of random access servers (RASs) 4 with terminal devices, such as modems, that provide access for remote computers 10 of users, over a telecommunications network 12 to a communications network 14, such as the Internet.
- the access system 2 also includes a local switch or hub 6 connected to the RASs 4, and a proxy server 16 connected to the switch 6.
- the proxy server 16 and switch 6 provide access for remote users to the Internet 14 via a router 8 connected thereto.
- the access system includes known access components provided by an Internet service provider (ISP).
- ISP Internet service provider
- the components may also be the components of an access system as described in International Patent Application No. PCT/AUOO/00418, herein incorporated by reference.
- the proxy server 16 and/or switch 6 are configured and include logic to operate as described below. For simplicity, the process is described below as being executed by a proxy server 16.
- the logic may be provided by software code and/or hardware circuits to execute the process, and the logic may be distributed on a communications network.
- a client computer 10 attempts to retrieve an HTML document from a web server of the Internet 14. It issues an HTTP GET request which is sent to the proxy server 16, at step 20.
- the proxy 16 inspects its cache for a recently cached copy of the document in order to avoid having to retrieve it from the remote server. The document is not found in the cache, so the proxy 16 issues an HTTP GET request to the web server to retrieve the document, at step 22.
- the web server receives the request and includes a Set- Cookie header in the HTTP response in order to request that a cookie be set for the domain of the web server.
- the proxy 16 would merely cache and return the document, propagating the Set-Cookie response header to the client computer 10.
- the proxy server 16 detects the Set-Cookie header at step 24, removes it, and inserts JavaScript code, at step 26, which contains information derived from the Set- Cookie response header into the retrieved HTML document.
- the JavaScript code is set to run when the HTML document loads by associating a JavaScript function with the document BODY onLoad event.
- the code creates a modal or simulated modal dialog window which informs the user that the remote server wishes to set a cookie, providing also the name and value of the cookie, and which servers are able to access the cookie.
- the window includes text which attempts to explain what the cookie is likely to be used for, and a recommendation on whether to accept it or not.
- the default recommendation is to refuse the cookie, but certain cookies are regarded as benign and are accordingly recommended to be accepted.
- the modal dialog window then can contain the following text:
- the web server www.batfmk. com wishes to set a cookie that will be sent only back to itself.
- the cookie has an expiry date of 17 November 2000.
- the cookie appears to be setting the text language of the requested page to English.
- the "Accept Cookie” button sets the cookie using JavaScript by closing the window, forcing a reload of the original requested page and exiting the JavaScript function.
- the "Refuse Cookie” button merely closes the window and exits the JavaScript function ensuring the cookie is not stored on the client 10.
- the "Help” button creates a new browser window and loads a reference document containing useful information and links to educate the user about cookies and help him or her decide whether to accept or refuse the cookie in question.
- the proxy-based cookie filter described above provides a uniform interface which allows users to inspect, accept or refuse client-side cookies without requiring any special software or configuration on the client computer.
- the interface provides an informative description of the cookie parameters.
- the process executed is independent of the client device 10 used and can be configured to operate with different browser types, such as those on PDAs and mobile phones.
Abstract
Description
Claims
Priority Applications (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
AU2001277408A AU2001277408A1 (en) | 2000-08-07 | 2001-08-07 | A method for controlling data at a client device |
Applications Claiming Priority (2)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
AUPQ9241A AUPQ924100A0 (en) | 2000-08-07 | 2000-08-07 | A method for controlling data at a client device |
AUPQ9241 | 2000-08-07 |
Publications (1)
Publication Number | Publication Date |
---|---|
WO2002013026A1 true WO2002013026A1 (en) | 2002-02-14 |
Family
ID=3823298
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
PCT/AU2001/000963 WO2002013026A1 (en) | 2000-08-07 | 2001-08-07 | A method for controlling data at a client device |
Country Status (2)
Country | Link |
---|---|
AU (1) | AUPQ924100A0 (en) |
WO (1) | WO2002013026A1 (en) |
Cited By (7)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
EP1522025A1 (en) * | 2002-07-15 | 2005-04-13 | America Online Incorporated | Handheld client framework system |
WO2007011579A2 (en) | 2005-07-15 | 2007-01-25 | Microsoft Corporation | Immunizing html browsers and extensions from known vulnerabilities |
CN100508518C (en) * | 2002-09-03 | 2009-07-01 | 国际商业机器公司 | Network system, back agency, computer equipment, data processing method and program products |
US7925694B2 (en) * | 2007-10-19 | 2011-04-12 | Citrix Systems, Inc. | Systems and methods for managing cookies via HTTP content layer |
US8239939B2 (en) | 2005-07-15 | 2012-08-07 | Microsoft Corporation | Browser protection module |
US9059966B2 (en) | 2008-01-26 | 2015-06-16 | Citrix Systems, Inc. | Systems and methods for proxying cookies for SSL VPN clientless sessions |
US10019570B2 (en) | 2007-06-14 | 2018-07-10 | Microsoft Technology Licensing, Llc | Protection and communication abstractions for web browsers |
Citations (3)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
WO1999023568A1 (en) * | 1997-10-30 | 1999-05-14 | Juno Online Services, Inc. | Method and apparatus to determine user identity and limit access to a communications network |
EP1020804A2 (en) * | 1999-01-13 | 2000-07-19 | Pitney Bowes Inc. | A system for managing user-characterizing network protocol headers |
US6182142B1 (en) * | 1998-07-10 | 2001-01-30 | Encommerce, Inc. | Distributed access management of information resources |
-
2000
- 2000-08-07 AU AUPQ9241A patent/AUPQ924100A0/en not_active Abandoned
-
2001
- 2001-08-07 WO PCT/AU2001/000963 patent/WO2002013026A1/en active Application Filing
Patent Citations (3)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
WO1999023568A1 (en) * | 1997-10-30 | 1999-05-14 | Juno Online Services, Inc. | Method and apparatus to determine user identity and limit access to a communications network |
US6182142B1 (en) * | 1998-07-10 | 2001-01-30 | Encommerce, Inc. | Distributed access management of information resources |
EP1020804A2 (en) * | 1999-01-13 | 2000-07-19 | Pitney Bowes Inc. | A system for managing user-characterizing network protocol headers |
Cited By (12)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
EP1522025A1 (en) * | 2002-07-15 | 2005-04-13 | America Online Incorporated | Handheld client framework system |
EP1522025A4 (en) * | 2002-07-15 | 2005-11-16 | America Online Inc | Handheld client framework system |
US8200745B2 (en) | 2002-07-15 | 2012-06-12 | Aol Inc. | Handheld client framework system |
CN100508518C (en) * | 2002-09-03 | 2009-07-01 | 国际商业机器公司 | Network system, back agency, computer equipment, data processing method and program products |
WO2007011579A2 (en) | 2005-07-15 | 2007-01-25 | Microsoft Corporation | Immunizing html browsers and extensions from known vulnerabilities |
EP1904988A2 (en) * | 2005-07-15 | 2008-04-02 | Microsoft Corporation | Immunizing html browsers and extensions from known vulnerabilities |
EP1904988A4 (en) * | 2005-07-15 | 2011-03-23 | Microsoft Corp | Immunizing html browsers and extensions from known vulnerabilities |
US8225392B2 (en) | 2005-07-15 | 2012-07-17 | Microsoft Corporation | Immunizing HTML browsers and extensions from known vulnerabilities |
US8239939B2 (en) | 2005-07-15 | 2012-08-07 | Microsoft Corporation | Browser protection module |
US10019570B2 (en) | 2007-06-14 | 2018-07-10 | Microsoft Technology Licensing, Llc | Protection and communication abstractions for web browsers |
US7925694B2 (en) * | 2007-10-19 | 2011-04-12 | Citrix Systems, Inc. | Systems and methods for managing cookies via HTTP content layer |
US9059966B2 (en) | 2008-01-26 | 2015-06-16 | Citrix Systems, Inc. | Systems and methods for proxying cookies for SSL VPN clientless sessions |
Also Published As
Publication number | Publication date |
---|---|
AUPQ924100A0 (en) | 2000-08-31 |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
RU2595761C2 (en) | Control information associated with network resources | |
US20030050964A1 (en) | Method and system for context manager proxy | |
US7177901B1 (en) | Method, system, and computer program product to redirect requests from content servers to load distribution servers and to correct bookmarks | |
US8533227B2 (en) | Managing website blacklists | |
US10015226B2 (en) | Methods for making AJAX web applications bookmarkable and crawlable and devices thereof | |
US20050015429A1 (en) | Method and system for providing user control over receipt of cookies from e-commerce applications | |
US20020078147A1 (en) | Data consultation optimisation method, by means of a network architecture component | |
US20080134084A1 (en) | Domain Bar | |
US20100100850A1 (en) | Methods and apparatus for controlling a plurality of applications | |
US20040073713A1 (en) | Method, system, gateway, proxy and computer program for adding information to received content pages | |
CN106055603B (en) | Browser access network address recommended method, client and system based on VPN | |
KR100539547B1 (en) | System and Control Method for Assent Internet Connection | |
EP1387302A2 (en) | Establishment of network connections | |
US20040205503A1 (en) | Adaptive web pages | |
WO2002013026A1 (en) | A method for controlling data at a client device | |
US20040225708A1 (en) | Establishment of network connections | |
US7099929B1 (en) | System and method for transferring information in a hypertext transfer protocol based system | |
WO2002061598A1 (en) | System and method for displaying news information on a user computer | |
US20100042685A1 (en) | Personalizing communications layer | |
KR100365137B1 (en) | System and method for maintaining a mobile internet connection | |
JP2004110094A (en) | Mobile radio terminal unit | |
US20080033961A1 (en) | Electronic Document Browsing | |
US20080002695A1 (en) | Preservation of session information on a communications network | |
JPH11167512A (en) | Data repeating device, data repeating method, and recording medium | |
JP2003345827A (en) | Portal site optimization system, and apparatus, method and data structure concerned thereto |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
AK | Designated states |
Kind code of ref document: A1 Designated state(s): AE AG AL AM AT AU AZ BA BB BG BR BY BZ CA CH CN CO CR CU CZ DE DK DM DZ EC EE ES FI GB GD GE GH GM HR HU ID IL IN IS JP KE KG KP KR KZ LC LK LR LS LT LU LV MA MD MG MK MN MW MX MZ NO NZ PL PT RO RU SD SE SG SI SK SL TJ TM TR TT TZ UA UG US UZ VN YU ZA ZW |
|
AL | Designated countries for regional patents |
Kind code of ref document: A1 Designated state(s): GH GM KE LS MW MZ SD SL SZ TZ UG ZW AM AZ BY KG KZ MD RU TJ TM AT BE CH CY DE DK ES FI FR GB GR IE IT LU MC NL PT SE TR BF BJ CF CG CI CM GA GN GQ GW ML MR NE SN TD TG |
|
121 | Ep: the epo has been informed by wipo that ep was designated in this application | ||
REG | Reference to national code |
Ref country code: DE Ref legal event code: 8642 |
|
32PN | Ep: public notification in the ep bulletin as address of the adressee cannot be established |
Free format text: COMMUNICATION UNDER RULE 69 EPC ( EPO FORM 1205A DATED 25/06/03 ) |
|
122 | Ep: pct application non-entry in european phase | ||
NENP | Non-entry into the national phase |
Ref country code: JP |