Method for controlling access to internet sites

US 7,353,283 B2
Filed: 10/18/2001
Issued: 04/01/2008
Est. Priority Date: 10/19/2000
Status: Expired due to Fees

First Claim

Patent Images

1. A method for controlling access to a plurality of web sites, the method comprising the steps of:

registering a plurality of users with a hosting service by storing information identifying each of said users;

registering a plurality of controlled access web sites with the hosting service;

for each of said registered users, storing information including rights of access of said registered users to one or more of said registered sites in a site access control unit;

performing an update of the registered users and of the information on the rights granted to said registered users, wherein the information on the granted rights includes data representing a validity period of the granted rights;

selecting, by a first registered user from the registered users, at least one second registered user from the registered users to have rights for accessing at least one registered site that is a personal site of the first registered user;

checking, in response to a request for accessing the at least one personal site of the first registered user, wherein the request comes from an address of the at least one personal site being selected in an electronic message, whether said request comes from the second user, by using an indicator that provides authentication information to said site access control unit, wherein the indicator is a cookie; and

refusing access to the at least one personal site if said request comes from a user that is not the second user and is either a registered user that does not have rights for accessing the at least one personal site or is not a registered user.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

The invention concerns a method for controlling access to an Internet site from said site address. The inventive method consists in: registering said sites in a hosting service; recording data identifying users of the hosting service and data concerning each of said users including access rights to one or several hosted sites; verifying for every request for access to a hosted site address whether said request originates from a registered user and whether said user has access rights for said address.

Citations

15 Claims

1. A method for controlling access to a plurality of web sites, the method comprising the steps of:
- registering a plurality of users with a hosting service by storing information identifying each of said users;
  
  registering a plurality of controlled access web sites with the hosting service;
  
  for each of said registered users, storing information including rights of access of said registered users to one or more of said registered sites in a site access control unit;
  
  performing an update of the registered users and of the information on the rights granted to said registered users, wherein the information on the granted rights includes data representing a validity period of the granted rights;
  
  selecting, by a first registered user from the registered users, at least one second registered user from the registered users to have rights for accessing at least one registered site that is a personal site of the first registered user;
  
  checking, in response to a request for accessing the at least one personal site of the first registered user, wherein the request comes from an address of the at least one personal site being selected in an electronic message, whether said request comes from the second user, by using an indicator that provides authentication information to said site access control unit, wherein the indicator is a cookie; and
  
  refusing access to the at least one personal site if said request comes from a user that is not the second user and is either a registered user that does not have rights for accessing the at least one personal site or is not a registered user.
- View Dependent Claims (2, 3)
- - 2. The access control method according to claim 1, wherein the information on the rights granted to a registered user includes the address of each registered site that can be accessed by said registered user.
  - 3. The access control method according to claim 1 wherein the validity period indicates when and/or for what period of time the granted rights are valid.

4. A device for controlling access to web sites, comprising:
- hosting means for registering said sites and providing a hosting service;
  
  means for storing identification information identifying registered users of the hosting service and for storing information specific to each of said registered users, including rights for accessing one or more of the registered sites;
  
  means for performing an update of the registered users and of the information on the rights granted to said registered users, wherein the information on the granted rights includes data representing a validity period of the granted rights;
  
  means for selecting, by a first registered user from the registered users, at least one second registered user from the registered users to have rights for accessing at least one registered site that is a personal site of the first registered user;
  
  means for checking, in response to a request for accessing the at least one personal site, wherein the request comes from an address of the at least one personal site being selected in an electronic message, whether the request comes from the second user, by using an indicator that provides authentication information to said means for storing, wherein the indicator is a cookie; and
  
  means for refusing access to the at least one personal site if the request comes from a user that is not the second user and is either a registered user that does not have rights for accessing the at least one personal site or is not a registered user.
- View Dependent Claims (5, 6, 7, 8, 9)
- - 5. The access control device according to claim 4, wherein the hosting means is embodied by a first server implementing the hosting service.
  - 6. The access control device according to claim 5, wherein the means for storing identification information is embodied by a second server implementing user database.
  - 7. The access control device according to claim 6, wherein the means for checking the access requests is embodied by a third server.
  - 8. The access control device according to claim 7, wherein the first, second, and third servers are separate servers at least logically linked together.
  - 9. The access control device according to claim 4 wherein the validity period indicates when and/or for what period of time the granted rights are valid.

10. A server for hosting websites, comprising:
- means for linking to a server implementing a user database containing information identifying registered users of a hosting service and information for each of said registered users, including rights for accessing one or more hosted sites registered with the hosting service;
  
  means for performing an update of the registered users and of the information on the rights granted to said registered users, wherein the information on the granted rights includes data representing a validity period of the granted rights;
  
  means for selecting, by a first registered user from the registered users, at least one second registered user from the registered users to have rights for accessing at least one registered site that is a personal site of the first registered user; and
  
  means for linking to an administration server including a unit for managing site addresses and rights for accessing the registered sites for each registered user, said administration server being designed for;
  
  checking, in response to a request for accessing the at least one personal sites, wherein the request comes from an address of the at least one personal site being selected in an electronic message, whether the request comes from the second user, by using an indicator that provides authentication information to said administration server, wherein the indicator is a cookie; and
  
  refusing access to the at least one personal site if the request comes from a user that is not the second user and is either a registered user that does not have rights for accessing the at least one personal site or is not a registered user.
- View Dependent Claims (11)
- - 11. The server for hosting websites according to claim 10 wherein the validity period indicates when and/or for what period of time the granted rights are valid.

12. An administration server, comprising:
- means for linking to a website hosting server;
  
  a unit for managing addresses of sites registered with a hosting service and information regarding rights for accessing the addresses of the sites for users registered with the hosting service;
  
  means for performing an update of the registered users and of the information on the rights granted to said registered users, wherein the information on the granted rights includes data representing a validity period of the granted rights;
  
  means for selecting, by a first registered user from the registered users, at least one second registered user from the registered users to have rights for accessing at least one registered site that is a personal site of the first registered user; and
  
  means for linking to a server where information identifying said registered users is stored, the server being a user database, containing information identifying said registered users of the hosting service and information for each of said registered users including rights for accessing one or more of the registered sites, said administration server being designed for;
  
  checking, in response to a request for accessing the at least one personal site, wherein the request comes from an address of the at least one personal site being selected in an electronic message, whether the request comes from the second user by using an indicator that provides authentication information to said administration server, wherein the indicator is a cookie; and
  
  refusing access to the at least one personal site if the request comes from a user that is not the second user and is either a registered user that does not have rights for accessing the at least one personal site or is not a registered user.
- View Dependent Claims (13)
- - 13. The administration server according to claim 12 wherein the validity period indicates when and/or for what period of time the granted rights are valid.

14. A user database server, comprising:
- means for storing information identifying users of a hosting service registered with the hosting service and information for each of said registered users including rights for accessing one or more hosted websites registered with the hosting service;
  
  means for performing an update of the registered users and of the information on the rights granted to said registered users, wherein the information on the granted rights includes data representing a validity period of the granted rights;
  
  means for linking to a hosting server providing said hosting service;
  
  means for selecting, by a first registered user from the registered users, at least one second registered user from the registered users to have rights for accessing at least one registered hosted site that is a personal site of the first registered user; and
  
  means for linking to an administration server including a unit for managing addresses of the hosted websites and information regarding the rights for accessing the hosted websites for the registered users, the administration server being designed for;
  
  checking, in response to a request for accessing the at least one personal site, wherein the request comes from an address of the at least one personal site being selected in an electronic message, whether the request comes from the second user by using an indicator that provides authentication information to said administration server, wherein the indicator is a cookie; and
  
  refusing access to the at least one personal site if the request comes from a user that is not the second user and is either a registered user that does not have rights for accessing the at least one personal site or is not a registered user.
- View Dependent Claims (15)
- - 15. The user database server according to claim 14 wherein the validity period indicates when and/or for what period of time the granted rights are valid.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Orange S.A.
Original Assignee
Orange S.A.
Inventors
Aubertin, Laurent, Henaff, Mari-Mai
Primary Examiner(s)
WANG, LIANG CHE A

Application Number

US10/399,618
Publication Number

US 20040049587A1
Time in Patent Office

2,357 Days
Field of Search

709217-220, 709/225, 709/229
US Class Current

709/229
CPC Class Codes

H04L 63/101 Access control lists [ACL]

H04L 63/102 Entity profiles

Method for controlling access to internet sites

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

Citations

15 Claims

Specification

Solutions

Use Cases

Quick Links

Method for controlling access to internet sites

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

Citations

15 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links