[eluser]meade[/eluser]
I would suggest creating a denormalized table to maintain user specific/session specific data instead of using cookies to store data. I'm no cookie expert, but I would imagine the time to read/transmit a cookie (if stored on the client) is not much different then a well formed table. There's also some size limits on cookies, time expiration, etc.