System and method for controlling access to documents stored on an internal network
First Claim
1. In a document control system including an internal network, an external interface, and a document server connected to the internal network and to the external interface, wherein the document server contains a plurality of go lists, wherein each go list is associated with a role and wherein each go list indicates if a client assigned to that role has access to a document in a document list, a method of modifying a go list, the method comprising:
- defining client roles, wherein the client roles include a first client role and a second client role;
defining a plurality of Data Owners, wherein each Data Owner sets access rights for one or more client roles, wherein the plurality of Data Owners include a first Data Owner, wherein the first Data Owner sets access rights for the first client role and not for the second client role;
accessing a go list for a client role associated with the first Data Owner;
displaying the go list as a directory tree;
modifying the directory tree;
mapping the modified directory tree into a revised go list; and
saving the revised go list to the document server.
12 Assignments
0 Petitions
Accused Products
Abstract
A system and method of limiting access from an external network to documents stored on an internal network. A client list is built in which each client is assigned to one or more roles. Each role has access to one or more documents as defined on a document list. A request from an external network is reviewed and, if possible, the request is associated with a client on the client list. The requested document is then compared to the document list associated with the client'"'"'s role and, if the requested document is in the list of documents available to a client in the client'"'"'s role, the requested document is fetched, cleaned and sent to the client.
92 Citations
8 Claims
-
1. In a document control system including an internal network, an external interface, and a document server connected to the internal network and to the external interface, wherein the document server contains a plurality of go lists, wherein each go list is associated with a role and wherein each go list indicates if a client assigned to that role has access to a document in a document list, a method of modifying a go list, the method comprising:
-
defining client roles, wherein the client roles include a first client role and a second client role;
defining a plurality of Data Owners, wherein each Data Owner sets access rights for one or more client roles, wherein the plurality of Data Owners include a first Data Owner, wherein the first Data Owner sets access rights for the first client role and not for the second client role;
accessing a go list for a client role associated with the first Data Owner;
displaying the go list as a directory tree;
modifying the directory tree;
mapping the modified directory tree into a revised go list; and
saving the revised go list to the document server. - View Dependent Claims (2, 3, 4, 6, 7, 8)
-
-
5. The method according to claim l, wherein modifying includes marking the directory tree to allow access to a portion of the directory tree.
Specification
-
- Resources
-
Current AssigneeMcAfee, LLC
-
Original AssigneeSecure Computing Corporation (McAfee, LLC)
-
InventorsGreve, Paula Budig, Herberg, Wayne W., Motes, David G., Viets, Richard R.
-
Granted Patent
-
Time in Patent OfficeDays
-
Field of Search
-
US Class Current713/201
-
CPC Class CodesG06F 21/6218 to a system of files or obj...H04L 63/02 for separating internal fro...H04L 63/0227 Filtering policies mail mes...H04L 63/0428 wherein the data content is...H04L 63/08 for authentication of entit...H04L 63/105 Multiple levels of securityH04L 9/40 Network security protocols
