Secure Network Portal

US 20090320115A1
Filed: 06/24/2008
Published: 12/24/2009
Est. Priority Date: 06/24/2008
Status: Active Grant

First Claim

Patent Images

1. A secure portal network comprising:

at least one application server operable to provide a plurality of secure services over a network;

a client computer that is operable to display a graphical user interface; and

a portal server coupling the at least one application server to the client computer, the portal server operable to;

create a login session with the graphical user interface, the login session being associated with one authorization level among a plurality of authorization levels;

display, on the graphical user interface, a service access point for each of the plurality of secure services; and

restrict access to each of the plurality of secure services according to the one authorization level of the login session.

View all claims

11 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

According to one embodiment, a secure network portal includes a number of application servers coupled to one or more clients through a portal server. The application servers serve a number of secure services that may be consumed by clients. The portal server creates a login session with a graphical user interface in which the login session is associated with a particular authorization level. The portal server then displays a service access point for each of the plurality of secure services and restricts access to each of the secure services according to the authorization level of the login session.

49 Citations

View as Search Results

24 Claims

1. A secure portal network comprising:
- at least one application server operable to provide a plurality of secure services over a network;
  
  a client computer that is operable to display a graphical user interface; and
  
  a portal server coupling the at least one application server to the client computer, the portal server operable to;
  
  create a login session with the graphical user interface, the login session being associated with one authorization level among a plurality of authorization levels;
  
  display, on the graphical user interface, a service access point for each of the plurality of secure services; and
  
  restrict access to each of the plurality of secure services according to the one authorization level of the login session.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8)
- - 2. The secure portal network of claim 1, wherein the graphical user interface comprises a web browser having a plurality of windows, the service access point for each of the plurality of secure services comprising one of the plurality of windows.
  - 3. The secure portal network of claim 1, wherein one of the plurality of secure services comprises a storage device that stores a plurality of files, each of the plurality of files having a tag indicating a file authorization level of its respective file, the portal server operable to restrict access to the storage device by comparing the authorization level of the login session with the file authorization level of each of the plurality of files.
  - 4. The secure portal network of claim 3, wherein the authorization level comprises a confidentiality level and one or more sub-confidentiality levels.
  - 5. The secure portal network of claim 1, wherein the portal server is further operable to display textual content using a cross-dissolve display technique.
  - 6. The secure portal network of claim 1, wherein the portal server comprises a firewall that is operable to restrict access to the at least one application server according to a set of rules.
  - 7. The secure portal network of claim 1, wherein the portal server comprises a proxy server operable to provide a level of indirection for the at least one application server from the graphical user interface.
  - 8. The secure portal network of claim 1, further comprising an administrative server coupled to the portal server through a firewall, the administrative server operable to store authorization level information associated with each of a plurality of users.

9. A secure portal access method comprising:
- creating a login session with a graphical user interface, the login session being associated with one authorization level among a plurality of authorization levels;
  
  displaying, on the graphical user interface, a service access point for each of a plurality of secure services, the plurality of secure services communicating with the graphical user interface through a network; and
  
  restricting access to each of the plurality of secure services according to the one authorization level of the login session.
- View Dependent Claims (10, 11, 12, 13, 14, 15, 16)
- - 10. The secure portal access method of claim 9, wherein creating a login session with a graphical user interface comprises creating a login session with a web browser having a plurality of windows, the service access point for each of the plurality of secure services comprising one of the plurality of windows.
  - 11. The secure portal access method of claim 9, wherein displaying a service access point for each of a plurality of secure services comprises displaying a service access point for a storage device that stores a plurality of files, each of the plurality of files having a tag indicates a file authorization level of its respective file, and restricting access to the storage device by comparing the authorization level of the login session with the file authorization level of each of the plurality of files.
  - 12. The secure portal access method of claim 9, wherein creating a login session associated with the one authorization level comprises creating a login session associated with the one authorization level comprising a confidentiality level and one or more sub-confidentiality levels.
  - 13. The secure portal access method of claim 9, further comprising displaying, on the graphical user interface, textual content using a cross-dissolve display technique.
  - 14. The secure portal access method of claim 9, wherein restricting access to each of the plurality of secure services comprises restricting access to each of the plurality of secure services using a firewall.
  - 15. The secure portal access method of claim 9, wherein restricting access to each of the plurality of secure services comprises restricting access to each of the plurality of secure services using a proxy server.
  - 16. The secure portal access method of claim 9, further comprising an administrative server coupled to the portal server through a firewall, the administrative server operable to store authorization level information associated with each of a plurality of users.

17. Code embodied on a computer-readable medium, when executed by a computer operable to perform at least the following:
- create a login session with a graphical user interface, the login session being associated with one authorization level among a plurality of authorization levels;
  
  display, on the graphical user interface, a service access point for each of a plurality of secure services, the plurality of secure services communicating with the graphical user interface through a network; and
  
  restrict access to each of the plurality of secure services according to the one authorization level of the login session.
- View Dependent Claims (18, 19, 20, 21, 22, 23, 24)
- - 18. The code of claim 17, wherein creating a login session with a graphical user interface comprises creating a login session with a web browser having a plurality of windows, the service access point for each of the plurality of secure services comprising one of the plurality of windows.
  - 19. The code of claim 17, wherein displaying a service access point for each of a plurality of secure services comprises displaying a service access point for a storage device that stores a plurality of files, each of the plurality of files having a tag indicates a file authorization level of its respective file, and restricting access to the storage device by comparing the authorization level of the login session with the file authorization level of each of the plurality of files.
  - 20. The code of claim 17, wherein creating a login session associated with the one authorization level comprises creating a login session associated with the one authorization level comprising a confidentiality level and one or more sub-confidentiality levels.
  - 21. The code of claim 17, further comprising displaying, on the graphical user interface, textual content using a cross-dissolve display technique.
  - 22. The code of claim 17, wherein restricting access to each of the plurality of secure services comprises restricting access to each of the plurality of secure services using a firewall.
  - 23. The code of claim 17, wherein restricting access to each of the plurality of secure services comprises restricting access to each of the plurality of secure services using a proxy server.
  - 24. The code of claim 17, further comprising an administrative server coupled to the portal server through a firewall, the administrative server operable to store authorization level information associated with each of a plurality of users.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Forcepoint Federal Holdings LLC (Forcepoint LLC)
Original Assignee
Forcepoint Federal LLC (Forcepoint LLC)
Inventors
Dean, Irvin L., Brooks, Randall S.

Granted Patent

US 9,172,709 B2
Time in Patent Office

Days
Field of Search
US Class Current

726/8
CPC Class Codes

H04L 63/105   Multiple levels of security

H04L 63/168   above the transport layer

H04L 67/51   Discovery or management the...

Secure Network Portal

First Claim

11 Assignments

0 Petitions

Accused Products

Abstract

49 Citations

24 Claims

Specification

Solutions

Use Cases

Quick Links

Secure Network Portal

First Claim

11 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

49 Citations

24 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links