METHOD AND SYSTEM FOR DYNAMICALLY ASSOCIATING ACCESS RIGHTS WITH A RESOURCE
First Claim
1. A method for dynamically associating, by a server, access rights with a resource, the method comprising the steps of:
- (a) receiving, by a server, a request for a resource from a client;
(b) requesting, by the server, from a policy engine, an identification of a plurality of access rights to associate with the resource, the plurality of access rights identified responsive to an application of a policy to the client;
(c) associating, by the server, the resource with the plurality of access rights via a rights markup language;
(d) transmitting, by the server, the resource to the client with an identification of the associated plurality of access rights;
(e) making, by an application program on the client, an access control decision responsive to the associated plurality of access rights; and
(f) providing, by the application program, restricted access to the resource responsive to the access control decision.
7 Assignments
0 Petitions
Accused Products
Abstract
A method for dynamically associating, by a server, access rights with a resource includes the step of receiving, by the server, a request for a resource from a client. The server requests, from a policy engine, an identification of a plurality of access rights to associate with the resource, the plurality of access rights identified responsive to an application of a policy to the client. The server associates the resource with the plurality of access rights via a rights markup language. The server transmits the resource to the client with the identification of the associated plurality of access rights. An application program on the client makes an access control decision responsive to the associated plurality of access rights. The application program provides restricted access to the resource responsive to the access control decision.
161 Citations
43 Claims
-
1. A method for dynamically associating, by a server, access rights with a resource, the method comprising the steps of:
-
(a) receiving, by a server, a request for a resource from a client; (b) requesting, by the server, from a policy engine, an identification of a plurality of access rights to associate with the resource, the plurality of access rights identified responsive to an application of a policy to the client; (c) associating, by the server, the resource with the plurality of access rights via a rights markup language; (d) transmitting, by the server, the resource to the client with an identification of the associated plurality of access rights; (e) making, by an application program on the client, an access control decision responsive to the associated plurality of access rights; and (f) providing, by the application program, restricted access to the resource responsive to the access control decision. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16, 17, 18, 19)
-
-
20. A system for dynamically associating access rights with a resource comprising:
-
a server receiving a request for access to a resource from a client; a policy engine receiving a request from the server for an identification of a plurality of access rights to associate with the resource, the plurality of access rights identified responsive to an application of a policy to the client; and an application program receiving, from the server, a copy of the resource associated with the identified plurality of access rights via a rights markup language, and an identification of the associated plurality of access rights. - View Dependent Claims (21, 22, 23, 24, 25, 26, 27, 28, 29, 30, 31, 32, 33, 34, 35, 36, 37, 38, 39, 40, 41, 42, 43)
-
Specification