System and method to provide secure navigation to resources on the internet
First Claim
1. An electronic-business-to-electronic business portal that organizes access to extended business applications wherein enhanced security and administrative tools allow said portal to be shared throughout enterprises and across supply chains, providing secure access to collaborative applications by business partners and suppliers, comprising:
- means for implementing a plurality of dynamic containers wherein said dynamic containers are configurable and are represented in a desired hierarchy, said hierarchy including at least one resource link;
means for adding and deleting resource links to a list of available resource objects in said hierarchy, said resource links allowing user access to an application represented by a resource object, wherein said resource objects are chosen from a set of resource classes defining general categories of application types and the parameters needed to access said applications;
means for managing sets of resource users and resource managers in said hierarchy allowing said resource managers to see all resource links to which they have authority to manage, and allowing said resource users to see only links to a list of available resource objects in said hierarchy which said resource users have been allowed access, said access granted by said resource managers; and
means for dynamically altering a user interface to said hierarchy or said dynamic containers and said resource objects through a Web management application.
2 Assignments
0 Petitions
Accused Products
Abstract
Provide an electronic-business-to-electronic-business portal that organizes the access to extended business applications. A method allows end users to access a server using standard Web browsers, and then view their own customized menu of applications. Enhanced security and administrative tools allow this portal to be shared throughout enterprises and across supply chains, providing secure access to collaborative applications by business partners and suppliers. Access to specific applications is granted to authorized users and teams, within and outside of a company. Real-time, on-line registration of users allows for rapid changes in teams and projects. Users can be added, deleted, or have access levels altered to reflect changes in the makeup of teams. Provide a common infrastructure for application administration, security management, and directory use, which can help reduce information technology (IT) costs and speed solution deployment.
348 Citations
20 Claims
-
1. An electronic-business-to-electronic business portal that organizes access to extended business applications wherein enhanced security and administrative tools allow said portal to be shared throughout enterprises and across supply chains, providing secure access to collaborative applications by business partners and suppliers, comprising:
-
means for implementing a plurality of dynamic containers wherein said dynamic containers are configurable and are represented in a desired hierarchy, said hierarchy including at least one resource link;
means for adding and deleting resource links to a list of available resource objects in said hierarchy, said resource links allowing user access to an application represented by a resource object, wherein said resource objects are chosen from a set of resource classes defining general categories of application types and the parameters needed to access said applications;
means for managing sets of resource users and resource managers in said hierarchy allowing said resource managers to see all resource links to which they have authority to manage, and allowing said resource users to see only links to a list of available resource objects in said hierarchy which said resource users have been allowed access, said access granted by said resource managers; and
means for dynamically altering a user interface to said hierarchy or said dynamic containers and said resource objects through a Web management application. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9)
a plurality of uniquely identified container documents and a plurality of uniquely identified resource link documents, wherein a resource link document comprises the contents of a dynamic container using a plurality of databases containing a plurality of resource link documents, a plurality of resource object documents, and a plurality of resource class documents, said dynamic container being a member of a specialized class of resource objects;
said hierarchy comprising a plurality of said dynamic containers and a plurality of said resource link documents, each having both a group of users and a group of managers, wherein said group of managers is a subset of said group of users, said group of users having at least read access to said dynamic containers and said resource links, and said managers having read/write access to said dynamic containers and said resources links;
a plurality of documents stored in a database, each said document associated with at least one user having at least one first field controlling read access and at least one second field controlling read/write access whereby said first fields and said second fields are used to authenticate user access to a document; and
an access scheme whereby nested groups of users are implemented wherein each dynamic container has associated with it and controlling access to it, a group of users, contents of said group of users being dynamically managed through a Web interface in such a way as to guarantee that after each modification to user of management access, user and manager groups of each of the dynamic containers reflect a hierarchy where;
1) each manager of a dynamic container has manager access to the entire set of child containers and resource links to said container, and 2) each user of a dynamic container or resource link has access to the entire set of parent containers to said container or said resource link, up to and including the top of the hierarchy of containers.
-
-
9. An electronic-business-to-electronic-business portal as recited in claim 5 wherein each said resource link contains an HyperText Markup Language (HTML) link to an application represented by a resource object, said application residing on an intranet or on the Internet and accessible using a standard Web browser.
-
10. A method for creating a resource object by a resource manager which allows said resource manager to provide access to said resource object in multiple dynamic containers in an electronic-business-to-electronic-business portal, said method comprising the steps:
-
(a) creating a resource object of a desired class of resources accessible through a dynamic container containing a link to said resource object by creating a new resource object document in a resource object database with parameters selected by a resource manager, wherein a set of available parameters are defined in a resource class document in a resource class database of said desired class and a set of available resource classes is defined by a resource integrator;
(b) entering a name of said desired resource class in said resource object document, wherein said resource class name acts as a link between said resource object and its parent class document;
(c) creating a plurality of group documents in a system directory wherein said group documents control user and manager access to said resource object; and
(d) constructing said resource object, comprising the steps;
(1) creating a resource link document to said resource object, said resource link document residing in a resource link database, containing a system unique ID of a dynamic container document in which a resource link was created and also containing a system unique ID of said resource object to which said resource link is associated;
(2) creating a plurality of group documents in a system directory wherein said group documents control user and manager access to said resource link;
(3) adding said group names to a first field controlling read access and to a second field controlling read/write access of said resource link document allowing dynamic addition and deletion of new resource links; and
(4) adding said group names to group documents that control access to resource object documents. - View Dependent Claims (11, 12)
-
-
13. A method allowing end users to access resources via a portal using standard Web browsers to view and execute their own customized menu of applications, said method comprising the steps of:
-
(a) creating a set of available resource classes;
(b) creating enterprise resources, including containers, resource objects, and resource links;
(c) granting and deleting access and control to resource managers and resource users;
(d) Repeating steps (a) through (c), as necessary, to accommodate changes in an enterprise hierarchy of resources and containers, and changes in resource user and resource manager access; and
(e) displaying said customized menu in a standard Web browser. - View Dependent Claims (14, 15, 16, 17, 18)
(1) creating a set of resource managers and a set of resource users;
(2) modifying at least one first field controlling read access and at least one second field controlling read/write access associated with said resource objects and resource links, by a resource manager enabling each authorized resource user to access a custom hierarchy using a standard Web interface; and
(3) authenticating said resource managers, and said resource users via a userid and password protocol built in to a Web interface, wherein said userid is matched with names in a system database comprising the name of every user, user group, and server in a domain, as well as access levels of each said user, to determine which said customized menu is to be accessed.
-
-
17. A method allowing end users to access resources via a portal using standard Web browsers to view and execute their own customized menu of applications as recited in claim 14, wherein the step of defining a plurality of resource classes further comprising the steps:
-
A. creating a class definition for a container comprising the steps;
(1) filling out a new class document by a resource integrator;
(2) naming the resource class by a resource integrator;
(3) choosing an icon of the class by a resource integrator; and
(4) choosing container types to include by a resource integrator; and
B. creating a container of a class type of container comprising the steps;
(1) creating a new instance of said container class by a resource integrator;
(2) naming said new instance of said container by a resource integrator;
(3) describing said new instance of said container by a resource integrator; and
(4) submitting information to the system for processing, wherein step (A) is repeated to add a new class definition for a container or modify an existing class definition for a container, and is skipped if said new instance of said container class is for an existing container class.
-
-
18. A method allowing end users to access resources via a portal using standard Web browsers to view and execute their own customized menu of applications as recited in claim 15 wherein said containers may be nested.
-
19. A machine readable medium containing code implementing an electronic-business-to-electronic business portal that organizes access to extended business applications wherein enhanced security and administrative tools allow said portal to be shared throughout enterprises and across supply chains, providing secure access to collaborative applications by business partners and suppliers, comprising:
-
a first code section for implementing a plurality of dynamic containers wherein said dynamic containers are configurable and are represented in a desired hierarchy, said hierarchy including at least one resource link;
a second code section implementing a means for adding and deleting resource links to a list of available resource objects in said hierarchy, said resource links allowing user access to an application represented by a resource object, wherein said resource objects are chosen from a set of resource classes defining general categories of application types and the parameters needed to access said applications;
a third code section for implementing a means for managing sets of resource users and resource managers in said hierarchy allowing said resource managers to see all resource links to which they have authority to manage, and allowing said resource users to see only links to a list of available resource objects in said hierarchy which said resource users have been allowed access, said access granted by said resource managers; and
a fourth code section for implementing a means for dynamically altering the user interface to said hierarchy or said dynamic containers and said resource objects through a Web management application.
-
-
20. A machine readable medium containing code implementing a method for creating a resource object by a resource manager which allows said resource manager to provide access to said resource object in multiple dynamic containers in an electronic-business-to-electronic-business portal, said code implementing the steps of:
-
(a) creating a resource object of a desired class of resources accessible through a dynamic container containing a link to said resource object by creating a new resource object document in a resource object database with parameters selected by a resource manager, wherein a set of available parameters are defined in a resource class document in a resource class database of said desired class and a set of available resource classes is defined by a resource integrator;
(b) entering a name of said desired resource class in said resource object document, wherein said resource class name acts as a link between said resource object and its parent class document;
(c) creating a plurality of group documents in a system directory wherein said group documents control user and manager access to said resource object; and
(d) constructing said resource object, comprising the steps;
(1) creating a resource link document to said resource object, said resource link document residing in a resource link database, containing a system unique ID of a dynamic container document in which a resource link was created and also containing a system unique ID of said resource object to which said resource link is associated;
(2) creating a plurality of group documents in a system directory wherein said group documents control user and manager access to said resource link;
(3) adding said group names to a first field controlling read access and to a second field controlling read/write access of said resource link document allowing dynamic addition and deletion of new resource links; and
(4) adding said group names to group documents that control access to resource object documents.
-
Specification