Tom Hume

Welcome to Mobile - where everything is different. We've come up with a solution that solves this problem for web developers. Our software allows you to send real time device capabilities to a web server using the HTTP request headers (via the browser). This allows you to know exactly what the device is capable of doing before you even have to send a page. Works on all mobile platforms as well. If you're not interested in encrypting the meta data then there is no server side installation required. All you will need is a script to read the incoming headers with all the answers. You can send anything you want from the device - all you do is read the OS API and then our software does the rest.

Cheers,

Peter
www.5o9inc.com

Hi,

some time age I noticed that HTC Hero (don't know about other Android devices) has a browser setting for allowing mobile view. If you enable that setting, UA string is

Mozilla/5.0 (Linux; U; Android 1.5; en-se; HTC Hero Build/CUPCAKE) AppleWebKit/528.5+ (KHTML, like Gecko) Version/3.1.2 Mobile Safari/525.20.1 525.20.1

but if you don't want mobile pages, UA string is

Mozilla/5.0(Macintosh; U; Intel Mac OS X 10_5_5; en- se) AppleWebKit/525.18 (KHTML, like Gecko) Version/3.1.2 Safari/525.20.1

so it seems that UA also depends on user's settings.

Cheers,
Harri - http://www.mobilitics.net

Hi Tom,

You already figured it out :). Here's how it works. We have a database that sits on the mobile device (a mobile app if you will). It collects meta data from the device. We break it down into three buckets... Who, What and Where. For What and Where we simply read any device side API that we want the meta data from. This along with personal information added by the user gets stored in the database. The database can be encrypted and also every piece of meta data is under the control of the user. (In addition the meta data can be encrypted in transit for additional protection). What happens next is straightforward. Part of Mobile app contains a browser plugin that essentially adds the meta data to the HTTP request headers when I navigate to an approved domain (also under the control of the user). It adds it via the W3C approved X header format. So for example a header might be HTTP_X_TOM_HUME_LATITUDE="meta data goes here". Now as you've already figured out all I have to do at the server is use a script to read the incoming headers and the data inside them. It conforms to all approved standards and allows you to know in real time what the device is capable of doing without looking anything up.

We're the inventors of mod_gzip, so we took that which is already IT approved and turned it into Mod_Mobile. It now supports real time data compression using both gzip and bz2 and also real time decryption of the incoming content.

There's lots more information on our web site (www.5o9inc.com) including free trial versions. You don't need anything on the server to see it work. Just a script to read the incoming headers. After that you can do whatever you want with the data. We also have introduced something called contextual menus inside the browser. Think of this as nav links that can be coded in HTML but show up in the browser menu for quick navigation like a mobile app would do. Except you can do it with a single line of HTML.

BTW we run on iPhone, Symbian, Blackberry, Windows Mobile and Android and on the server side (if you need the encryption/content acceleration) we support IIS and Apache 2.x.x

Cheers,

Peter.

You don't need client side scripting - only server side. The data is pushed to the server, not read from the device. That's the beauty of it. The meta data (Device Capabilities) becomes part of the web page request. Doesn't require any effort or anything fancy on the client.

Although for those who only want to use JavaScript we have a solution we call JSAPI (pronounced j-sappy). This allows you to use JavaScript in your web page to access device side capabilities (assumes that the user gives you permission). To see what the code looks like go to this page: http://www.5o9mm.com/jsapime.htm and right click and view source. It's all there.

Cheers,

Peter

The browser does it for you. Here's the deal... on your Nokia 6230i you open up the browser and navigate to a web site, www.tomhume.com Inside that web page request is all the meta data that tells you what the device is capable of doing in real time. Go to this site: http://www.5o9mm.com/ and you can click on the Symbian link and see it running on an N97. Same principal applies to the other phones. The dependency is an HTTP browser and a connection to the web.

You're not being slow at all. It takes a few tries before everyone gets their head around it.

>> What HTTP header fields is the browser adding into the HTTP request I'm making?

The ones that are in the database. (the mobile app that sits on the device). For example it might be, carrier, cell tower id, lat, long, speed, browser height, browser width, my name, address, email address, zip code, likes, ad preferences. Basically it's a fully customizable database. All of these "headers" and the associated meta data can now be added in real time to the HTTP request.

>> And how is your software persuading the S40 browser to modify its HTTP headers in the first place?

We're not :) What we do is "jump in" as the browser sends the request to www.tomhume.org and for a split second we hold it up and ask the mobile app if it has any meta data for that domain. If so, we add it. If not we release it. (This all takes about a nano second).

>> I'm struggling to see how you'd alter the behaviour of a web browser on devices where there are no third-party native apps allowed.

You're correct here. If the device does not allow third party apps then our solution doesn't apply "unless" we work with the OEM and they include our software on the device.

>> how does the "jumping in" work?

We use a standard browser filter and as the request leaves the browser we simply stop it and add the new meta content (if there is any to add, if not we don't stop the transmission)

>> I can imagine lots of applications for such a thing (and plenty of security risks too)...

Let's talk about the security issues first. When we started we met with prospective clients both on the Enterprise side and also the Consumer. The consumer (mobile user) wanted three things:

1) Convenience
2) Privacy
3) Control

Nothing happens unless the user first enables it. In fact we've been caught a few times doing tech support when programmers can't see the headers. We suddenly remember that unless you have added www.tomhume.org to your approved domain list nothing happens. Also people wanted granular control over what they shared that was personal. So for instance I can share my zip/postal code but not my real time lat/long. Or vice versa. Or as I trust the web service I can share more data that drives relevance.

Also we added a set of Open API's. Let's say that you have a mobile app that uses some proprietary encryption - you don't want to share those algorithms with anyone. No problem. You encrypt the meta data and then hand it over to us via the API and we add it to the HTTP request headers. It arrives at the other end (web server) and all you do is have a script that reads it and then passes it to an engine that does the decryption.

On the Enterprise side we learned that they wanted three things...

1) To make money via "net new revenue opportunities
2) Nothing new to learn - they wanted to use their existing programmers and their toolsets (perl, python, php, javascript etc)
3) Zero integration issues - we solved this by taking something that they already like mod_gzip and turning it into mod_mobile. All you need is a single line in your config file to run it

When we started we approached the problem from the standpoint that the web that we currently know in the future will be the web that knows me. There is nothing sinister in this - we just don't see people typing anything on these devices. Or if they do it's minimal. What we wanted was a way to overcome the limitations of the device, small keyboard, no mouse and tiny monitor. This allows you to do everything without the need to enter data.

Finally it also allows you to offer new services based for example on sensors that attach to a mobile device. A blood pressure monitor connected by bluetooth sends "meta data" to an app on the device. You can then share this data in real time via our solution and you don't have to worry about encryption or privacy etc.

Cheers,

Peter

A browser filter also known as a mime filter, or a browser plugin. An example is "NetNanny" which installs as part of your browser and allows you to filter certain URL's from loading. Also think of it as an app... so as long as the Nokia 6230i supports the ability to load an app then you can install a browser filter (app).

With our solution there is no configuration, it all runs in the background. The database app which stores the real time meta data simply talks to it anytime the browser gets a web page request.

Database (app) sends data to ---> browser filter (app) which appends it to the outgoing HTTP request headers which goes to the ---> web server where they are read by a script. You can then use CGI to pass the data ---> to a web app server

What I should have said when making the statement that it's available for all platforms is the following - the mobile platform must support a HTTP connection via a browser and the OS must allow for the addition of third party applications. If not then we don't work. Sorry about the confusion. Going forward I see this as a significant part of the future for mobile.

I'll check on the S40 series - but the above caveat will apply.

That cuts out an awful lot of devices :) And leaves mainly the more advanced ones, no?

Are you able to quantify what percentage of devices your product runs on, which aren't capable of identifying screen width and height through client-side scripting? Those would seem to be the ones where a product like this would really prove itself.

Tom,

One more follow up. Just reading about the device specs for the WinPho7 - see below

800×480 screen (320×480 to follow)
256MB RAM, 8GB flash storage
4-point multi-touch
ARMv7 Cortex/Scorpion or better
DirectX9 support by GPU
Codec acceleration (probably on GPU via DirectX)
5 megapixel camera with flash and separate camera button
Three hard buttons: Start, Search, and Back
GPS, accelerometer, compass, light and proximity sensors

The first and last are important - all kinds of sensors are going to be added to these devices and the screen size and resolution is going to be all over the map. Building mobile apps cross platform is going to become cost prohibitive. Which leaves the browser as the way to go. This brings us full circle back to the very problem you talk about - device capabilities. No way JavaScript is going to tell you about the sensors and other items (SIM cards, Processor ID etc). And User Agent will not be able to keep up with all the new things that are going to appear in the next 5 years.

There is no silver bullet in mobile. Ours is one approach that solves the problem. Others will likely appear. It's a mess out there.

Cheers,

Peter

One more, I'm off to bed now ;)

I'm familiar with some of the problems of developing apps across platforms, and with the pain of dealing with fragmentation in mobile. I agree that long-term the browser may be the route things go; in the meantime, both Apple and Google are doing a much better job at dealing with fragmentation than the folks behind J2ME managed to do tho.

There's a JavaScript API for access to sensors documented here, it's been part of the WRT spec since 1.1:

http://library.forum.nokia.com/index.jsp?topic=/Web_Developers_Library/GUID-6C74942D-1C2F-4B7A-A501-2434B54611E2.html

night night :)