Method, a portal system, a portal server, a personalized access policy server, a firewall and computer software products for dynamically granting and denying network resources

US 20040010719A1
Filed: 06/11/2003
Published: 01/15/2004
Est. Priority Date: 07/12/2002
Status: Active Grant

First Claim

Patent Images

1. A method to provide a dynamically defined limited Internet access to a user'"'"'s terminal client wherein a portal server, providing a portal web site with portal information identifying the set of accessible resources, the terminal client having access to said portal web site, dynamically deriving a set of granted resources from the portal web site with respect to user'"'"'s grants and with respect to already accessed resources by a personalized access policy server (pAPS), accessing granted resources, only, via a firewall located between the terminal client and the Internet, and configuring the firewall individually, just in time for said user such that only said granted resources are permitted.

View all claims

9 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

The invention relates to an personalized access policy server (pAPS) C1 deriving dynamically granted resources with respect to user'"'"'s grants and with respect to already accessed resources. It relates to a method for providing dynamically defined limited Internet access to a user'"'"'s terminal client A1, wherein a portal server C2 provides a portal web site with portal information identifying the set of accessible resources, the terminal client A1 has access to said portal web site; from the portal web site a set of granted resources B3 is dynamically derived with respect to user'"'"'s grants and with respect to already accessed resources by the personalized access policy server. Further it relates to a portal system, a portal server C2, a personalized access policy server (pAPS) C1, a firewall B2, and corresponding computer software products.

80 Citations

View as Search Results

15 Claims

1. A method to provide a dynamically defined limited Internet access to a user'"'"'s terminal client wherein a portal server, providing a portal web site with portal information identifying the set of accessible resources, the terminal client having access to said portal web site, dynamically deriving a set of granted resources from the portal web site with respect to user'"'"'s grants and with respect to already accessed resources by a personalized access policy server (pAPS), accessing granted resources, only, via a firewall located between the terminal client and the Internet, and configuring the firewall individually, just in time for said user such that only said granted resources are permitted.
- View Dependent Claims (2, 3, 4, 5, 6, 7)
- - 2. The method according to claim 1 where the grant or deny is time-dependent.
  - 3. The method according to claim 1 where the grant or deny is dependent on to already accessed resources.
  - 4. The method according to claim 1 where the grant or deny is dependent on the content of the requested resource.
  - 5. The method according to claim 1 where the grant or deny is dependent on the resource identifier.
  - 6. The method according to claim 1 where the grant or deny is dependent on resource meta-information.
  - 7. The method according to claim 1 where the grant or deny is dependent on portal site information.

8. A portal system to provide a dynamically defined limited Internet access to a user'"'"'s terminal client comprising a portal server providing a portal web site with portal information identifying the set of to be accessible resources, said terminal client having access to said portal web site, a personalized access policy server (pAPS) deriving dynamically granted resources with respect to user'"'"'s grants and with respect to already accessed resources, and a firewall located between the terminal client and the Internet configured individually, just in time for said user such that only said granted resources are permitted.

9. A portal server for providing a portal web site with portal information comprising means for identifying the set of to be accessible resources, an interface to a personalized access policy server (pAPS) providing and retrieving granting information, and an interface to an individually and just in time configured firewall providing granted resources.
- View Dependent Claims (10)
- - 10. A portal server according to claim 9 realized by a web server that is enriched by a personalized access policy server interface or module and a firewall interface or module.

11. A personalized access policy server (pAPS) deriving dynamically granted resources with respect to user'"'"'s grants and with respect to already accessed resources comprising authentication means for authentication and authorization of a user, accounting means for recognizing already accessed resources, and for deriving a set of dynamically granted resources to said user, and granting means for instructing a firewall with respect to the set of dynamically granted resources.

12. A firewall providing a dynamically defined limited Internet access to a user'"'"'s terminal client comprising configuration means for configuring dynamically a current set of granted resources for a terminal client and/or a user, and granting means for individually, just in time permitting access, only to said set of granted resources for said terminal client and/or said user.

13. A computer software product deriving dynamically granted resources with respect to user'"'"'s grants and with respect to already accessed resources implementing an access policy by authenticating and authorizing a user, recognizing already accessed resources, deriving a set of dynamically granted resources to said user, and instructing a firewall with respect to the set of dynamically granted resources.

14. A computer software product providing a portal web site with portal information by identifying the set of to be accessible resources.

15. A computer software product providing a dynamically defined limited Internet access to a user'"'"'s terminal client by configuring dynamically a current set of granted resources for a terminal client and/or a user, and individually, just in time permitting access, only to said set of granted resources for said terminal client and/or said user.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
InterDigital Patent Holdings, Inc. (InterDigital, Inc.)
Original Assignee
Alcatel SA (Nokia Corporation)
Inventors
Daenen, Koen Regina Eduard

Granted Patent

US 7,448,078 B2
Time in Patent Office

Days
Field of Search
US Class Current

713/201
CPC Class Codes

H04L 63/0227 Filtering policies mail mes...

Method, a portal system, a portal server, a personalized access policy server, a firewall and computer software products for dynamically granting and denying network resources

First Claim

9 Assignments

0 Petitions

Accused Products

Abstract

80 Citations

15 Claims

Specification

Solutions

Use Cases

Quick Links

Method, a portal system, a portal server, a personalized access policy server, a firewall and computer software products for dynamically granting and denying network resources

First Claim

9 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

80 Citations

15 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links