Using Browser Cookies for Event Monitoring and User Verification of an Account

Abstract

In a server-based system where end users use their own account to get connection to the server and possibly other accounts, encapsulation and protection of data of the accounts is a big factor. The administrator must be aware of data security of an account, so that it is not passed to any third party. Another job of administrator is to monitor the identity of the user of an account, which unfortunately is not taken care of most of the times. A third job that an administrator should take care of is monitoring the events in an account - such as devices used to open the website or whether more than one device is using a single account at the same time. In this paper, we have given a concept of using browser cookies effectively in order to monitor the identity of user and the events in an account. In this context we have managed to give solution for three different problems - a) Possibility and technology approach of how to control who is using login/password system; b) The login/password information is not passed to other person for use without the notice of administrator team; c) Ability to identify simultaneous use of login/password. We have used cookies for 2 different parameters - a) Protocol id: A unique id for each and every protocol (i.e., browser + device system); and b) Client id: Varies whenever the user changes his protocol, even if he opens the same account. Our system has efficiency to give solutions of all the said problems.