Remote Access Method

US 20100031331A1
Filed: 02/08/2008
Published: 02/04/2010
Est. Priority Date: 05/11/2007
Status: Active Grant

First Claim

Patent Images

1. A remote access method in which an operational computer on an intranet accesses a target computer on the same or on the other intranet via a relay management server on the Internet, comprising:

a step in which each user carries an external storage medium having unique identification information different from each other;

a step in which the target computer transmits authentication information on each user to the relay management server to establish a connection;

a step in which at least a portion of a program for connecting the operational computer and the relay management server is stored in advance in the external storage medium;

a step in which the external storage medium having the unique identification information is connected to the operational computer;

a step in which the operational computer processes the unique identification information to generate special authentication information for the relay management server to perform authentication;

a step in which the user inputs authentication information for authentication of the user from the operational computer;

a step in which the operational computer transmits authentication information and the special authentication information for authentication of the user to the relay management server; and

a step in which the relay management server permits connection to the operational computer when the both of the authentication information and the special authentication information for authentication of the user are transmitted from the operational computer.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

All operations available on an intranet are securely performed from an outside of the intranet without taking out a file on the intranet from the intranet. A file on the intranet is not taken out, but, instead of this, image information on a target computer 1 is transmitted to an operational computer 4 with the http protocol, the https protocol, or the SSL protocol, and keyboard information, pointing information, or the like are transmitted from an operational computer 4 to the target computer 1. Consequently, the target computer 1 is operated.

Citations

10 Claims

1. A remote access method in which an operational computer on an intranet accesses a target computer on the same or on the other intranet via a relay management server on the Internet, comprising:
- a step in which each user carries an external storage medium having unique identification information different from each other;
  
  a step in which the target computer transmits authentication information on each user to the relay management server to establish a connection;
  
  a step in which at least a portion of a program for connecting the operational computer and the relay management server is stored in advance in the external storage medium;
  
  a step in which the external storage medium having the unique identification information is connected to the operational computer;
  
  a step in which the operational computer processes the unique identification information to generate special authentication information for the relay management server to perform authentication;
  
  a step in which the user inputs authentication information for authentication of the user from the operational computer;
  
  a step in which the operational computer transmits authentication information and the special authentication information for authentication of the user to the relay management server; and
  
  a step in which the relay management server permits connection to the operational computer when the both of the authentication information and the special authentication information for authentication of the user are transmitted from the operational computer.
- View Dependent Claims (2, 3)
- - 2. The remote access method as recited in claim 1,wherein the target computer uses an http protocol, an https protocol, or an SSL protocol to transmit image information to the operational computer via the relay management server,the operational computer uses the http protocol, the https protocol, or the SSL protocol to transmit keyboard information, pointing information, and the like to the target computer via the relay management server,the relay management server translates information on the target computer to transfer to the operational computer and translates information on the operational computer to transfer to the target computer,a tunneling connection utilizing port 80 is performed by using two sessions or more when the http protocol is used, anda tunneling connection utilizing port 443 is performed by using one session or more when the https protocol or the SSL protocol is used.
  - 3. The remote access method as recited in claim 1,wherein a portion which cannot be rewritten by a user is provided at least in a part of a memory area of the external storage medium, andat least a part of a program for connecting the operational computer and the relay management server is stored in the portion which cannot be rewritten.

4. A remote access method for accessing a target computer from an operational computer over a network, comprising:
- a user authentication information transmission step in which the operational computer transmits user authentication information to the target computer;
  
  a user authentication information determination step in which the target computer determines whether or not the user authentication information transmitted from the operational computer is based on original user information of a valid user; and
  
  a temporary login permission step in which the user is temporarily enabled to log in to a specific application if it is determined that the user authentication information is based on the original user information of the valid user in the user authentication information determination step.
- View Dependent Claims (5, 6, 7)
- - 5. The remote access method as recited in claim 4,wherein the temporary login permission step has:
    - a step in which a setting is made to disallow all users to log in to a specific application in advance;
      
      a step in which modified user information is made by temporarily modifying first original user information in the original user information if it is determined that the user authentication information is based on the original user information of the valid user in the user authentication information determination step;
      
      a step in which a setting is made to allow the user to log in to the specific application to which a setting is made to disallow all users in advance; and
      
      a step in which the modified user information is transmitted to the operational computer;
      
      in the operational computer, a step in which the modified user information is received;
      
      a step in which the modified user information received in the previous step is automatically input to a login program for the specific application; and
      
      a step in which the modified user information input in the previous step is transmitted to the target computer; and
      
      the temporary login permission step has;
      
      a step in which the user is permitted to log in to the specific application when the modified user information transmitted from the operational computer is received; and
      
      a step in which a setting is made to disallow the user to log in to the specific application once again after the user logs in and, the modified user information, which is temporarily modified, is returned to the first original user information.
  - 6. The remote access method as recited in claim 4, further comprising:
    - an external storage medium connection step in which an external storage medium carried by the user is connected to the operational computer,wherein the operational computer obtains unique identification information for identifying the external storage medium or the original user information from the external storage medium and transmits the unique identification information or the original user information as the user authentication information to the target computer in the user authentication information transmission step.
  - 7. The remote access method as recited in claim 5, further comprising:
    - an external storage medium connection step in which an external storage medium carried by the user is connected to the operational computer,wherein the operational computer obtains unique identification information for identifying the external storage medium or the original user information from the external storage medium and transmits the unique identification information or the original user information to the target computer in the user authentication information transmission step.

8. A program in a remote access method for accessing a target computer from an operational computer over a network which enables the operational computer to perform a user authentication information transmission step in which user authentication information is transmitted to the target computer.

9. A program in a remote access method for accessing a target computer from an operational computer over a network which enables the target computer to perform:
- a user authentication information determination step in which it is determined whether or not user authentication information transmitted from the operational computer is based on original user information of a valid user anda temporary login permission step in which the user is temporarily enabled to log in to a specific application if it is determined that the user authentication information is based on the original user information of the valid user in the user authentication information determination step.

10. An external storage medium used for accessing a target computer by connecting the external storage medium to an operational computer in a remote access method for accessing the target computer from the operational computer over a network,wherein unique identification information for identifying the external storage medium and original user information as user authentication information are stored.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
NTT IT Corp. (Government of Japan)
Original Assignee
NTT IT Corp. (Government of Japan)
Inventors
Hayakawa, Shinpei, Takaya, Kentaro, Shirouzu, Hiroaki, Ichinose, Susumu, Kato, Kikuji

Granted Patent

US 8,688,971 B2
Time in Patent Office

Days
Field of Search
US Class Current

726/6
CPC Class Codes

H04L 63/0853 using an additional device,...

H04L 9/3226 using a predetermined code,...

Remote Access Method

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

Citations

10 Claims

Specification

Solutions

Use Cases

Quick Links

Remote Access Method

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

Citations

10 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links