CN101702647B - Management method of Cookie information and Cookie server - Google Patents
Management method of Cookie information and Cookie server Download PDFInfo
- Publication number
- CN101702647B CN101702647B CN2009102501992A CN200910250199A CN101702647B CN 101702647 B CN101702647 B CN 101702647B CN 2009102501992 A CN2009102501992 A CN 2009102501992A CN 200910250199 A CN200910250199 A CN 200910250199A CN 101702647 B CN101702647 B CN 101702647B
- Authority
- CN
- China
- Prior art keywords
- cookie
- server
- user terminal
- request
- information
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Active
Links
Images
Abstract
The invention provides a management method of Cookie information and a Cookie server, relating to the technical field of internet application. The management method of the Cookie information comprises the following steps of: receiving a write-in or read request of a user terminal for the Cookie server for writing in or reading the Cookie information by the Cookie server, wherein the write-in request of the Cookie information comprises the Cookie information; and returning a response message to the user terminal by the Cookie server according to the write-in or read request, wherein the response message comprises feedback information indicating whether the Cookie information is successfully written or not or the Cookie information required to be read by the user terminal due to accessing a web server. Through the application of the Cookie server, the Cookie information of a user is managed on a network side, thus the Cookie information of the user is not bound with the user terminal and a browser any more, and the security of the Cookie information is improved.
Description
Technical field
The present invention relates to technical field of internet application, particularly relate to the management method and the Cookie server of cookie information.
Background technology
Cookie (low-volume information) is the information interchange that strengthens website and user in the web access, promotes the technology of user experience.Such as, the shopping cart of shopping website is used, be that the user can be earlier when certain shopping website carries out shopping online go into shopping cart with selected article storage, finish whole choose process after unified checking out, and can be in shopping process to the article of depositing in the shopping cart increase, operation such as deletion.The characteristics of Cookie technology are to realize simply, can realize the purpose of website tracking user behavior.
Along with the extensive development of present 3G network, and the diverse network access way and deposit, the user occurred and used the situation of a plurality of terminal accesses website.Yet Cookie leaves user client usually in, with ustomer premises access equipment and browser binding.Like this, when the user used the different same websites of terminal access, the facility of Cookie technology just can't embody.In addition, under existing internet C ookie technology application model, the Cookie content will be stored under the assigned catalogue of user's access terminals, and the mode with text is deposited, Any Application can be random visit and revise the content wherein deposit, therefore have certain safety problem, for example: cookie information problem such as is usurped by trojan horse program.
Summary of the invention
The objective of the invention is to propose a kind of management method of cookie information, provide technical basis in network side management cookie information.
For achieving the above object, the invention provides a kind of management method of cookie information, comprise: the Cookie server receives user terminal described Cookie server is write or reads writing of cookie information or reads request, and writing of described cookie information comprises described cookie information in the request; Return response message according to the said write or the request of reading to described user terminal with described Cookie server, comprise the feedback information that writes described cookie information success or not in the described response message, or described user terminal is because of visiting the described cookie information that the web server need read.
In one embodiment, the management method of described cookie information also comprises: described Cookie server is decrypted said write or the request of reading that described user terminal sends by key; The described response message that sends to described user terminal is encrypted by described key with described Cookie server.
In one embodiment, comprise described Cookie server writing of receiving that described user terminal carries out the cookie information of described Cookie server stores or before reading request: when described user terminal sends the access request of the described web server of visit, described Cookie server receives the authentication request of described web server to user profile, and described user profile comprises the IP address and the MAC Address of described user terminal; Described Cookie server authenticates described user profile to certificate server according to the IP address and the MAC Address of described user terminal; Described Cookie server responds the described access request that described user terminal sends according to described authentication result by described web server; Receive and store the described cookie information that described user terminal sends with described Cookie server.
In one embodiment, described Cookie server is according to described authentication result, responding the described access request that described user terminal sends by described web server comprises: when described Cookie server received the authentication success message that described certificate server returns, described Cookie server generated the key of random number as the communication information between described Cookie server of encryption and decryption and the described user terminal; Described Cookie server sends to described web server with described key and authentication success message; Respond the described access request of described user terminal with described web server, the response message that will comprise described user profile and described key sends to described user terminal.
In one embodiment, described Cookie server is according to described authentication result, responding the described access request that described user terminal sends by described web server comprises: when described Cookie server receives the authentification failure message that described certificate server returns, authentification failure message is sent to described web server; Respond the described access request of described user terminal with described web server, authentification failure message is sent to described user terminal.
In one embodiment, described Cookie server authenticates described user profile to certificate server according to the IP address of described user terminal and MAC Address and comprises: described Cookie server is according to the IP address lookup IP address field of described user terminal and Internet Service Provider's mapping table; The IP address of the corresponding described certificate server of Internet Service Provider that described Cookie server obtains and inquires according to Query Result; Described user profile is authenticated to described certificate server with the IP address of described Cookie server according to described certificate server.
The present invention also aims to propose a kind of Cookie server, realize management user's cookie information.
For achieving the above object, the present invention also provides a kind of Cookie server, comprise: the request receiver module, be used to receive user terminal described Cookie server is write or reads writing of cookie information or reads request, and writing of described cookie information comprises described cookie information in the request; With the request respond module, be used for returning response message to described user terminal according to the said write or the request of reading, comprise the feedback information that writes described cookie information success or not in the described response message, or described user terminal is because of visiting the described cookie information that the web server need read.
In one embodiment, described Cookie server also comprises: deciphering module is used for by key said write or the request of reading that described user terminal sends being decrypted; And encrypting module, be used for the described response message that sends to described user terminal being encrypted by described key.
In one embodiment, described Cookie server also comprises: authentication module, be used for when described user terminal sends the access request of the described web server of visit, receive the authentication request of described web server to user profile, described user profile comprises the IP address and the MAC Address of described user terminal, described user profile is authenticated to certificate server according to the IP address and the MAC Address of described user terminal; The authentication response module is used for according to described authentication result, responds the described access request that described user terminal sends by described web server; And memory module, be used to receive and store the described cookie information that described user terminal sends.
In one embodiment, described authentication response module comprises: the key generation unit, be used for when receiving the authentication success message that described certificate server returns, generate the key of random number as the communication information between described Cookie server of encryption and decryption and the described user terminal; Key is provided the unit, be used for described key and authentication success message are sent to described web server, described web server responds the described access request of described user terminal, and the response message that will comprise described user profile and described key sends to described user terminal.
Based on technique scheme, the present invention manages at the cookie information of network side to the user by the application of Cookie server, and user's cookie information is no longer bound with user terminal and browser.Thereby,, can use corresponding C ookie information by the Cookie server even use the user under the situation of different terminal access websites.In addition, by having improved the fail safe of cookie information.In addition, the Cookie server by with certificate server alternately to the authentication of user profile, and to the encryption of the communication information between Cookie server and the user terminal, the fail safe that has improved cookie information.
Description of drawings
Accompanying drawing described herein is used to provide further explanation of the present invention, constitutes a part of the present invention.Illustrative examples of the present invention and explanation thereof only are used to explain the present invention, but do not constitute improper qualification of the present invention.In the accompanying drawings:
Fig. 1 is the structural representation according to the application scenarios of the cookie information management of the embodiment of the invention.
Fig. 2 is the flow chart according to the management method of the cookie information of the embodiment of the invention.
Fig. 3 is the flow chart of the management method of cookie information according to another embodiment of the present invention.
Fig. 4 is the structural representation according to the Cookie server of the embodiment of the invention.
Fig. 5 is the structural representation of Cookie server according to another embodiment of the present invention.
Embodiment
With reference to the accompanying drawings the present invention is described in more detail, exemplary embodiment of the present invention wherein is described.In the accompanying drawings, identical label is represented identical or similar assembly or element.
ISP (Internet service provider, ISP)
Fig. 1 is the structural representation according to the application scenarios 100 of the cookie information management of the embodiment of the invention.The application scenarios 100 of cookie information management comprises user terminal 102, Cookie server 104, certificate server 106 and WEB server 108.
Fig. 2 is the flow chart according to the management method 200 of the cookie information of the embodiment of the invention.
In step 202, the Cookie server receives user terminal the Cookie server is write or reads writing of cookie information or reads request, and writing of cookie information comprises cookie information in the request; With
In step 204, the Cookie server returns response message according to the request that writes or read to user terminal, comprises the feedback information that writes the cookie information success or not in the response message, or user terminal is because of visiting the cookie information that the web server need read.
Fig. 3 is the flow chart of the management method 300 of cookie information according to another embodiment of the present invention.The description of the management method 300 of cookie information combines the application scenarios 100 of the cookie information management of Fig. 1, but is not limited to the form of the application scenarios 100 of cookie information management.
In step 302, user terminal 102 sends the access request of visit web server 108.Such as, the user can send the access request of visit web server 108 by the browser of user terminal 102.
In step 304, web server 108 will send to Cookie server 104 to the authentication request of user profile according to the access request that receives.Wherein, user profile can comprise the IP address and the MAC Address of user terminal 102, such as, the user profile that need authenticate can comprise the IP address of user terminal 102, user terminal 102 is in the usemame/password of WEB website registration, also can be the cipher key storage device etc. of USB Key and so on.
In step 306, Cookie server 104 authenticates to 106 pairs of user profile of certificate server according to the IP address and the MAC Address of user terminal 102.Cookie server 104 can be according to pre-configured IP address field of the IP address lookup of user terminal 102 and Internet Service Provider's mapping table.The IP address of the corresponding certificate server 106 of the Internet Service Provider that Cookie server 104 obtains and inquires according to Query Result.Cookie server 104 authenticates to 106 pairs of user profile of certificate server according to the IP address of certificate server 106.The authentication of 106 pairs of user profile of certificate server can comprise to the check of the IP address validity of user terminal 102 and as judgement of USB Key (Universal Serial Bus Key, USB key) correctness etc.
In step 308, Cookie server 104 responds the access request that user terminals 102 send according to authentication result by web server 108.On the one hand, when Cookie server 104 received the authentication success message that certificate server 106 returns, Cookie server 104 generated the key of random numbers as the communication information between encryption and decryption Cookie server 104 and the user terminal 102.Can pass through MD5 (Message-Digest Algorithm 5 message digest algorithm), the generation of SHA (Secure Hash Algorithm, SHA) scheduling algorithm as the random number of key.In one embodiment, can be set the time limit to key, key lost efficacy behind the overstepping the time limit, needed identity verification again, to generate new key.After Cookie server 104 receives authentication success message, key and authentication success message are sent to web server 108.The access request of web server 108 response user terminals, the response message that will comprise user profile and key sends to user terminal 102.The cookie information that Cookie server 104 receives and storage user terminal 102 sends.
On the other hand, when Cookie server 104 received the authentification failure message that certificate server 106 returns, Cookie server 104 sent to the web server with authentification failure message.The access request of web server 108 response user terminals 102 sends to user terminal 102 with authentification failure message.
In step 310, when user terminal 102 by the authentication step, and the key that obtains in step 308 is when effective, Cookie server 104 can receive the request that writes that 102 pairs of Cookie servers of user terminal write cookie information.Writing of cookie information comprises cookie information itself in the request.Cookie server 104 is decrypted the request that writes that user terminal 102 sends by key, obtains cookie information wherein, and is applied to Cookie server 104 this locality.
In step 312, Cookie server 104 receives the request of reading that 102 pairs of Cookie servers of user terminal read cookie information.Cookie server 104 is decrypted the request of reading that user terminal 102 sends by key.
In step 314, Cookie server 104 returns response message according to the request of reading to user terminal 102, comprises the cookie information that user terminal need read because of visit web server 108 in the response message.Cookie server 104 is encrypted the response message that sends to user terminal 102 by key.
In step 316, the user can carry the cookie information that obtains from Cookie server 104 in its access message by the browser access WEB server 108 of user terminal 102.
Fig. 4 is the structural representation according to the Cookie server 400 of the embodiment of the invention.Cookie server 400 comprises request receiver module 402 and request respond module 404.
Fig. 5 is the structural representation of Cookie server 500 according to another embodiment of the present invention.Cookie server 500 comprises request receiver module 502, request respond module 504, deciphering module 506, encrypting module 508, authentication module 510, authentication response module 512 and memory module 514.
Request receiver module 502 is used to receive user terminal the Cookie server is write or reads writing of cookie information or reads request, and writing of cookie information comprises cookie information in the request.
Request respond module 504 is used for returning response message according to the request that writes or read to user terminal, comprises the feedback information that writes the cookie information success or not in the response message, or user terminal is because of visiting the cookie information that the web server need read.
Deciphering module 506 is used for by key the request that writes or read that user terminal sends being decrypted.
Encrypting module 508 is used for by key the response message that sends to user terminal being encrypted.
Authentication module 510, be used for when user terminal sends the access request of visit web server, receive the authentication request of web server to user profile, user profile comprises the IP address and the MAC Address of user terminal, user profile is authenticated to certificate server according to the IP address and the MAC Address of user terminal.
Authentication response module 512 is used for according to authentication result, responds the access request that user terminal sends by the web server.Authentication response module 512 also comprises key generation unit 12 and key granting unit 14.Key generation unit 12 is used for when receiving the authentication success message that certificate server returns, and generates the key of random number as the communication information between encryption and decryption Cookie server and the user terminal.Key is provided unit 14, is used for key and authentication success message are sent to the web server, and the access request of web server response user terminal, the response message that will comprise user profile and key sends to user terminal.
Memory module 514 is used to receive and store the cookie information that user terminal sends.
Based on technique scheme, the present invention manages at the cookie information of network side to the user by the application of Cookie server, and user's cookie information is no longer bound with user terminal and browser.Thereby,, can use corresponding C ookie information by the Cookie server even the user uses different terminal access websites.In addition, by having improved the fail safe of cookie information.In addition, the Cookie server by with certificate server alternately to the authentication of user profile, and to the encryption of the communication information between Cookie server and the user terminal, the fail safe that has improved cookie information.
Description of the invention provides for example with for the purpose of describing, and is not exhaustively or limit the invention to disclosed form.Many modifications and variations are obvious for the ordinary skill in the art.Selecting and describing embodiment is for better explanation principle of the present invention and practical application, thereby and makes those of ordinary skill in the art can understand the various embodiment that have various modifications that the present invention's design is suitable for special-purpose.
Claims (10)
1. the management method of a cookie information is characterized in that, comprising:
The Cookie server receives user terminal described Cookie server is write or reads writing of cookie information or reads request, and writing of described cookie information comprises described cookie information in the request; With
Described Cookie server returns response message according to the said write or the request of reading to described user terminal, comprise the feedback information that writes described cookie information success or not in the described response message, or described user terminal is because of visiting the described cookie information that the web server need read.
2. the management method of cookie information according to claim 1 is characterized in that, also comprises:
Described Cookie server is decrypted said write or the request of reading that described user terminal sends by key; With
Described Cookie server is encrypted the described response message that sends to described user terminal by described key.
3. the management method of cookie information according to claim 1 is characterized in that, comprises described Cookie server writing of receiving that described user terminal carries out the cookie information of described Cookie server stores or before reading request:
When described user terminal sent the access request of the described web server of visit, described Cookie server received the authentication request of described web server to user profile, and described user profile comprises the IP address and the MAC Address of described user terminal;
Described Cookie server authenticates described user profile to certificate server according to the IP address and the MAC Address of described user terminal;
Described Cookie server responds the described access request that described user terminal sends according to described authentication result by described web server; With
Described Cookie server receives and stores the described cookie information that described user terminal sends.
4. the management method of cookie information according to claim 3 is characterized in that, described Cookie server is according to described authentication result, responds the described access request that described user terminal sends by described web server and comprises:
When described Cookie server received the authentication success message that described certificate server returns, described Cookie server generated the key of random number as the communication information between described Cookie server of encryption and decryption and the described user terminal;
Described Cookie server sends to described web server with described key and authentication success message; With
Described web server responds the described access request of described user terminal, and the response message that will comprise described user profile and described key sends to described user terminal.
5. the management method of cookie information according to claim 3 is characterized in that, described Cookie server is according to described authentication result, responds the described access request that described user terminal sends by described web server and comprises:
When described Cookie server receives the authentification failure message that described certificate server returns, authentification failure message is sent to described web server; With
Described web server responds the described access request of described user terminal, and authentification failure message is sent to described user terminal.
6. the management method of cookie information according to claim 3 is characterized in that, described Cookie server authenticates described user profile to certificate server according to the IP address of described user terminal and MAC Address and comprises:
Described Cookie server is according to the IP address lookup IP address field of described user terminal and Internet Service Provider's mapping table;
The IP address of the corresponding described certificate server of Internet Service Provider that described Cookie server obtains and inquires according to Query Result; With
Described Cookie server authenticates described user profile to described certificate server according to the IP address of described certificate server.
7. a Cookie server is characterized in that, comprising:
The request receiver module is used to receive user terminal described Cookie server is write or reads writing of cookie information or reads request, and writing of described cookie information comprises described cookie information in the request; With
The request respond module, be used for returning response message to described user terminal according to the said write or the request of reading, comprise the feedback information that writes described cookie information success or not in the described response message, or described user terminal is because of visiting the described cookie information that the web server need read.
8. Cookie server according to claim 7 is characterized in that, also comprises:
Deciphering module is used for by key said write or the request of reading that described user terminal sends being decrypted; With
Encrypting module is used for by described key the described response message that sends to described user terminal being encrypted.
9. Cookie server according to claim 7 is characterized in that, also comprises:
Authentication module, be used for when described user terminal sends the access request of the described web server of visit, receive the authentication request of described web server to user profile, described user profile comprises the IP address and the MAC Address of described user terminal, described user profile is authenticated to certificate server according to the IP address and the MAC Address of described user terminal;
The authentication response module is used for according to described authentication result, responds the described access request that described user terminal sends by described web server; With
Memory module is used to receive and store the described cookie information that described user terminal sends.
10. Cookie server according to claim 9 is characterized in that, described authentication response module comprises:
The key generation unit is used for when receiving the authentication success message that described certificate server returns, and generates the key of random number as the communication information between described Cookie server of encryption and decryption and the described user terminal;
Key is provided the unit, be used for described key and authentication success message are sent to described web server, described web server responds the described access request of described user terminal, and the response message that will comprise described user profile and described key sends to described user terminal.
Priority Applications (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN2009102501992A CN101702647B (en) | 2009-11-30 | 2009-11-30 | Management method of Cookie information and Cookie server |
Applications Claiming Priority (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN2009102501992A CN101702647B (en) | 2009-11-30 | 2009-11-30 | Management method of Cookie information and Cookie server |
Publications (2)
Publication Number | Publication Date |
---|---|
CN101702647A CN101702647A (en) | 2010-05-05 |
CN101702647B true CN101702647B (en) | 2011-10-05 |
Family
ID=42157542
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
CN2009102501992A Active CN101702647B (en) | 2009-11-30 | 2009-11-30 | Management method of Cookie information and Cookie server |
Country Status (1)
Country | Link |
---|---|
CN (1) | CN101702647B (en) |
Families Citing this family (9)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN102158493B (en) * | 2011-04-15 | 2015-12-09 | 北京奇虎科技有限公司 | A kind of Cookie analytic method, device and a kind of client |
CN102682080B (en) * | 2012-03-31 | 2015-04-29 | 北京奇虎科技有限公司 | Cookie information sharing method and system |
CN102638581B (en) * | 2012-03-31 | 2015-11-25 | 北京奇虎科技有限公司 | A kind of cookie information storage means and system |
CN104715186B (en) * | 2012-03-31 | 2019-02-26 | 北京奇虎科技有限公司 | Cookie information sharing method and system |
CN102868719B (en) * | 2012-06-29 | 2015-09-16 | 北京奇虎科技有限公司 | A kind of Network Access Method based on buffer memory and server |
CN106330844B (en) | 2015-07-02 | 2020-08-04 | 阿里巴巴集团控股有限公司 | Cross-terminal login-free method and device |
CN105847422A (en) * | 2016-05-16 | 2016-08-10 | 乐视控股(北京)有限公司 | User tracking method and server |
CN106130952A (en) * | 2016-05-31 | 2016-11-16 | 美通云动(北京)科技有限公司 | A kind of method and device of accession page |
CN107454441B (en) * | 2017-06-30 | 2019-12-03 | 武汉斗鱼网络科技有限公司 | A kind of method, live streaming Platform Server and the computer readable storage medium of detection direct broadcasting room brush popularity behavior |
-
2009
- 2009-11-30 CN CN2009102501992A patent/CN101702647B/en active Active
Also Published As
Publication number | Publication date |
---|---|
CN101702647A (en) | 2010-05-05 |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
CN101702647B (en) | Management method of Cookie information and Cookie server | |
US11165579B2 (en) | Decentralized data authentication | |
CN103685282B (en) | A kind of identity identifying method based on single-sign-on | |
CN101771532B (en) | Method, device and system for realizing resource sharing | |
US7484012B2 (en) | User enrollment in an e-community | |
CN102201915B (en) | Terminal authentication method and device based on single sign-on | |
JP4746266B2 (en) | Method and system for authenticating a user for a sub-location in a network location | |
CN104954330B (en) | A kind of methods, devices and systems to be conducted interviews to data resource | |
CN103220303B (en) | The login method of server and server, authenticating device | |
CN103188248A (en) | Identity authentication system and method based on single sign-on | |
CN108322461A (en) | Method, system, device, equipment and the medium of application program automated log on | |
CN101997685A (en) | Single sign-on method, single sign-on system and associated equipment | |
CN101540757A (en) | Method and system for identifying network and identification equipment | |
CN104767731A (en) | Identity authentication protection method of Restful mobile transaction system | |
CN103916244A (en) | Verification method and device | |
CN106411823A (en) | CDN-based access control method and associated equipment | |
CN103780580A (en) | Method, server and system for providing capability access strategy | |
CN105429991A (en) | Efficient data transmission method for mobile terminal | |
CN102801713A (en) | Website logging-in method and system as well as accessing management platform | |
CN103634111B (en) | Single-point logging method and system and single sign-on client-side | |
CN102143131A (en) | User logout method and authentication server | |
US9882899B2 (en) | Remotely authenticating a device | |
Hu et al. | Keychain: Blockchain-based key distribution | |
US20170104748A1 (en) | System and method for managing network access with a certificate having soft expiration | |
CN109495458A (en) | A kind of method, system and the associated component of data transmission |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
C06 | Publication | ||
PB01 | Publication | ||
C10 | Entry into substantive examination | ||
SE01 | Entry into force of request for substantive examination | ||
C14 | Grant of patent or utility model | ||
GR01 | Patent grant |