Despite the widespread use and adoption of cookies as the basis for web applications to keep state information, cookies present some design issues that are yet to be fully addressed. The fact that cookies are stored on client-side's memory means that they are tightly coupled to the machine that is interacting with the web server. Yet often, these cookies are initiated by web applications to identify user's preferences and identifications. As the user moves across different machines to access the same site, the information previously recorded is lost and the web application has no way of restoring the state, unless the user revisits the same client machine, where the original cookies were set. This paper presents a novel solution to address the need for cookies to be "mobile" by leveraging on smart card to manage cookies, with the benefit of mobility in a pocket. We describe the design and implementation of the CookiesCard framework that uses smart card as a secure and mobile storage media to manage personalized cookies. The article presents the development of the CookiesCard proxy that directly interacts with the smart card to provide cookies management, while acting as an intermediatary between the client browser and a web server.

Note: OCR errors may be found in this Reference List extracted from the full text article. ACM has opted to expose the complete List rather than only correct and linked references.

	1	Stephen Thomas, "HTTP Essentials", Wiley, 2000, ISBN 041398233.
	2	Balachander Krishnamurthy and Jennifer, "Web Protocols and Practices: HTTP 1.1, Networking Protocols, Caching and Measurement", Addison-Wesley, May 2001, ISBN 0201710889.
	3	David M. Kristol, HTTP Cookies: Standards, privacy, and politics, ACM Transactions on Internet Technology (TOIT), v.1 n.2, p.151-198, November 2001  [doi>10.1145/502152.502153]
	4	Simon St. Laurent, "Cookies", McGraw-Hill, 1998, ISBN 0070504989.
	5	Uwe Hansmann , Martin S. Nicklous , Frank Seliger , Thomas Schaeck, Smart Card Application Development Using Java, Springer-Verlag New York, Inc., Secaucus, NJ, 1999
	6	ISO/IEC 7816: Integrated Circuit(s) Cards with Contacts - Part 3: Electronic Signals and Transmission Protocols, International Organization for Standardization (ISO), Geneva, Nov 1994.