Consigning Authentication Method
First Claim
1. A method for sharing content between clients at a common trust level in a trust hierarchy associated with a network implementing policy-based management, the method comprising:
- receiving a first request from a first client for delivery of content to the first client at a first trust level in the trust hierarchy;
approving the delivery of content to the first client at a policy enforcement point in the network based at least in part on the first trust level in the trust hierarchy;
delivering the content to the first client;
receiving a second request for permission from the first client allowing the first client to deliver the content to a second client at the first trust level in the trust hierarchy, the second request including integrity information about the second client;
determining whether to allow the first client to deliver the content to the second client based at least in part on the integrity information about the second client; and
communicating to the first client the determination of whether the first client may deliver the content to the second client.
2 Assignments
0 Petitions
Accused Products
Abstract
A method for sharing content between clients at a common trust level in a trust hierarchy associated with a network implementing policy-based management includes making a first request for delivery of content, receiving the requested electronic content, receiving a second request for delivery of the electronic content, communicating the second request, receiving a decision, and delivering the electronic content if the second request is granted. The first request is made to a policy enforcement point in the network for delivery of content to a first client, and includes a trust level of the first client. The second request is for delivery of the content to a second client at the trust level of the first client and includes integrity information about the second client, and is communicated to the policy enforcement point. If the second request is granted, the content is delivered from the first client to the second client.
-
Citations
22 Claims
-
1. A method for sharing content between clients at a common trust level in a trust hierarchy associated with a network implementing policy-based management, the method comprising:
-
receiving a first request from a first client for delivery of content to the first client at a first trust level in the trust hierarchy; approving the delivery of content to the first client at a policy enforcement point in the network based at least in part on the first trust level in the trust hierarchy; delivering the content to the first client; receiving a second request for permission from the first client allowing the first client to deliver the content to a second client at the first trust level in the trust hierarchy, the second request including integrity information about the second client; determining whether to allow the first client to deliver the content to the second client based at least in part on the integrity information about the second client; and communicating to the first client the determination of whether the first client may deliver the content to the second client. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13)
-
-
14. A method for sharing content between clients at a common trust level in a trust hierarchy associated with a network implementing policy-based management, the method comprising:
-
making a first request to a policy enforcement point in the network for delivery of content to a first client, the first request including a trust level of the first client; receiving the requested content from the policy enforcement point; receiving a second request for delivery of the content to a second client at the trust level of the first client, the second request including integrity information about the second client; communicating the second request to the policy enforcement point; receiving a decision from the policy enforcement point regarding the second request; and if the second request is granted, delivering the content to the second client. - View Dependent Claims (15, 16, 17, 18, 19, 20, 21)
-
-
22. A network system for sharing electronic content among clients at a common trust level in a trust hierarchy, the network system implementing policy-based management, the network system comprising:
-
a plurality of clients, each client having a respective trust level in the trust hierarchy; a storage unit configured to deliver electronic content to the plurality of clients; a policy enforcement point in electronic communication with the storage unit and a first one of the plurality of clients, the policy enforcement point configured to receive a first request from the first one of the plurality of clients for the delivery of electronic content from the storage unit; and a policy decision point in electronic communication with the policy enforcement point, the policy decision point configured to assess the first one of the plurality of clients including assessing at least the trust level of the first one of the plurality of clients and to grant permission to the policy enforcement point to deliver the content from the storage unit to the first one of the plurality of clients; the policy enforcement point further configured to receive from the first one of the plurality of clients a second request for permission to deliver the electronic content to a second one of the plurality of clients, the second request including at least integrity information associated with the first one of the plurality of clients; and the policy decision point further configured to make a policy-based decision whether to allow the first one of the plurality of clients to deliver the electronic content to the second one of the plurality of clients based at least in part on the integrity information associated with the first one of the plurality of clients.
-
Specification