Device access based on centralized authentication

US 7,487,233 B2
Filed: 12/05/2001
Issued: 02/03/2009
Est. Priority Date: 12/05/2001
Status: Active Grant

First Claim

Patent Images

1. A method for controlling access to a peripheral device by a user, wherein the peripheral device is accessible by the user based on access management information, and wherein the peripheral device is constructed to provide the user with a plurality of features and/or services including at least one of a printer service, a scanner service, a facsimile service and a copy service, the method comprising:

receiving, at a computer, from a server, access management information which specifies a feature and/or a service of the peripheral device available to the user from among the plurality of features and/or services of the peripheral device, or which specifies a feature and/or a service of the peripheral device not available to the user from among the plurality of features and/or services of the peripheral device;

receiving, at the peripheral device, the access management information and a job from the computer;

determining, at the peripheral device, whether the user can use the feature and/or the service of the peripheral device necessary to perform the received job, based on the received access management information; and

performing, at the peripheral device, the received job in a case that it is determined that the user can use the feature and/or the service necessary to perform the received job.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

Access control to a networked peripheral device by a walk-up user, wherein the networked peripheral device is accessible by both the walk-up user and a remote user, based on centralized access management information. Access control comprises receiving authenticated information for the walk-up user from the networked peripheral device at a centralized location, determining at the networked peripheral device a level of access to the networked peripheral device by the walk-up user based on received access management information for the walk-up user, and allowing the walk-up user to access the determined user-available features of the networked peripheral device based on the determined level of access.

131 Citations

View as Search Results

27 Claims

1. A method for controlling access to a peripheral device by a user, wherein the peripheral device is accessible by the user based on access management information, and wherein the peripheral device is constructed to provide the user with a plurality of features and/or services including at least one of a printer service, a scanner service, a facsimile service and a copy service, the method comprising:
- receiving, at a computer, from a server, access management information which specifies a feature and/or a service of the peripheral device available to the user from among the plurality of features and/or services of the peripheral device, or which specifies a feature and/or a service of the peripheral device not available to the user from among the plurality of features and/or services of the peripheral device;
  
  receiving, at the peripheral device, the access management information and a job from the computer;
  
  determining, at the peripheral device, whether the user can use the feature and/or the service of the peripheral device necessary to perform the received job, based on the received access management information; and
  
  performing, at the peripheral device, the received job in a case that it is determined that the user can use the feature and/or the service necessary to perform the received job.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9)
- - 2. A method according to claim 1, further comprising:
    - receiving, at the server, authentication information corresponding to the user from the computer; and
      
      authenticating, at the server, the user based on the received authentication information,wherein the server transmits the access management information to the computer after the server authenticates the user.
  - 3. A method according to claim. 2, wherein the authentication information includes a username and/or a password.
  - 4. A method according to claim 1, further comprising:
    - transmitting, at the peripheral device, to the computer, a message for denying the access by the user, in case that the peripheral device receives the job without receiving the access management information for the user.
  - 5. A method according to claim 1, further comprising:
    - transmitting, at the peripheral device, to the computer, a message for denying the job, in case that the user can not use the feature and/or the service necessary to perform the received job.
  - 6. A method according to claim 1, further comprising:
    - transmitting, at the computer, to the server, a request for the access management information, wherein the request identifies the user and the peripheral device,wherein the computer receives the access management information corresponding to the user and the peripheral device.
  - 7. A method according to claim 1, further comprising:
    - receiving, at the peripheral device, access management information for a second user from the server and not through the computer;
      
      determining, at the peripheral device, a level of access to the peripheral device available to the second user based on the received access management information for the second user; and
      
      allowing, at the peripheral device, the second user access to the peripheral device based on the determined level of access to the peripheral device.
  - 8. A method according to claim 7, further comprising:
    - receiving, at the server, authentication information corresponding to the second user from the peripheral device; and
      
      authenticating, at the server, the second user based on the received authentication information,wherein the server transmits the access management information for the second user to the peripheral device after the server authenticates the second user.
  - 9. A method according to claim 1, wherein at the peripheral device, the access management information is received along with the job from the computer.

10. A method for controlling access to a peripheral device by a user, wherein the peripheral device is accessible by the user based on access management information, and wherein the peripheral device is constructed to provide the user with a plurality of features and/or services including at least one of a printer service, a scanner service, a facsimile service and a copy service, the method comprising:
- receiving, at a computer, from a server, access management information which specifies a feature and/or a service of the peripheral device available to the user from among the plurality of features and/or services of the peripheral device;
  
  receiving, at the peripheral device, the access management information and a job from the computer;
  
  determining, at the peripheral device, whether the user can use the feature and/or the service of the peripheral device necessary to perform the received job, based on the received access management information; and
  
  performing, at the peripheral device, the received job in a case that it is determined that the user can use the feature and/or the service necessary to perform the received job.
- View Dependent Claims (11)
- - 11. A method according to claim 10, wherein at the peripheral device, the access management information is received along with the job from the computer.

12. A peripheral device which is accessible by a user based on access management information, and wherein the peripheral device is constructed to provide the user with a plurality of features and/or services including at least one of a printer service, a scanner service, a facsimile service and a copy service, comprising:
- a reception unit constructed to receive, from a computer, a job and access management information which specifies a feature and/or a service of the peripheral device available to a user from among the plurality of features and/or services of the peripheral device, or which specifies a feature and/or a service of the peripheral device not available to the user from among the plurality of features and/or services of the peripheral device, wherein the access management information is transmitted from a server to the computer before the access management information is transmitted from the computer to the peripheral device; and
  
  a controller constructed to determine, based on the received access management information, whether the user can use the feature and/or the service of the peripheral device necessary to perform the received job, and constructed to perform the received job in a case that it is determined that the user can use the feature and/or the service necessary to perform the received job.
- View Dependent Claims (13, 14, 15, 16, 17)
- - 13. A peripheral device according to claim 12, wherein the peripheral device is constructed to provide at least the printer service and the job is a print job.
  - 14. A peripheral device according to claim 12, further comprising:
    - a transmission unit constructed to transmit, to the computer, a message for denying the access by the user, in case that said reception unit receives the job without receiving the access management information for the user.
  - 15. A peripheral device according to claim 12, further comprising:
    - a transmission unit constructed to transmit, to the computer, a message for denying the job, in case that the user can not use the feature and/or the service necessary to perform the received job.
  - 16. A peripheral device according to claim 12,wherein said reception unit receives access management information for a second user from the server and not through the computer,said controller determines a level of access to the device available to the second user based on the received access management information for the second user, andsaid controller allows the second user access to the device based on the determined level of access to the device.
  - 17. A peripheral device according to claim 12, wherein the reception unit receives, from the computer, the access management information along with the job.

18. A peripheral device which is accessible by a user based on access management information, and wherein the peripheral device is constructed to provide the user with a plurality of features and/or services including at least one of a printer service, a scanner service, a facsimile service and a copy service, comprising:
- a reception unit constructed to receive, from a computer, a job and access management information which specifies a feature and/or a service of the peripheral device available to the user from among the plurality of features and/or services of the peripheral device, wherein the access management information is transmitted from a server to the computer before the access management information is transmitted from the computer to the peripheral device; and
  
  a controller constructed to determine, based on the received access management information, whether the user can use the feature and/or the service of the peripheral device necessary to perform the received job, and constructed to perform the received job in case that it is determined that the user can use the feature and/or the service necessary to perform the received job.
- View Dependent Claims (19)
- - 19. A peripheral device according to claim 18, wherein the reception unit receives, from the computer, the access management information along with the job.

20. A server for use in controlling access to a peripheral device by a user, wherein the peripheral device is accessible by the user based on access management information, and wherein the peripheral device is constructed to provide the user with a plurality of features and/or services including at least one of a printer service, a scanner service, a facsimile service and a copy service, the server comprising:
- a reception unit constructed to receive, from a computer, authentication information corresponding to a user;
  
  an authentication unit constructed to authenticate the user using the received authentication information; and
  
  a transmission unit constructed to transmit, to the computer, access management information which specifies a feature and/or a service of the peripheral device available to the authenticated user from among the plurality of features and/or services of the peripheral device, or which specifies a feature and/or a service of the peripheral device not available to the authenticated user from among the plurality of features and/or services of the peripheral device,wherein the computer transmits the access management information and a job to the peripheral device,the peripheral device determines, based on the transmitted access management information, whether the user can use the feature and/or the service of the peripheral device necessary to perform the job, andthe peripheral device performs the job in case that it is determined that the user can use the feature and/or the service necessary to perform the job.
- View Dependent Claims (21, 22)
- - 21. A server according to claim 20,wherein said reception unit receives, from the peripheral device, authentication information corresponding to a second user,said authentication unit authenticates the second user using the received authentication information corresponding to the second user,said transmission unit transmits, to the peripheral device, access management information which specifies a feature and/or a service of the peripheral device available to the second user from among the plurality of features and/or services of the peripheral device, or which specifies a feature and/or a service of the peripheral device not available to the second user from among the plurality of features and/or services of the peripheral device,the peripheral device determines a level of access to the peripheral device available to the second user based on the access management information for the second user, andthe peripheral device allows the second user access to the peripheral device based on the determined level of access to the peripheral device.
  - 22. A server according to claim 20, wherein the computer transmits the access management information along with the job to the peripheral device.

23. A server for use in controlling access to a peripheral device by a user, wherein the peripheral device is accessible by the user based on access management information, and wherein the peripheral device is constructed to provide the user with a plurality of features and/or services including at least one of a printer service, a scanner service, a facsimile service and a copy service, the server comprising:
- a reception unit constructed to receive, from a computer, authentication information corresponding to a user;
  
  an authentication unit constructed to authenticate the user using the received authentication information; and
  
  a transmission unit constructed to transmit, to the computer, access management information which specifies a feature and/or a service of the peripheral device available to the authenticated user from among the plurality of features and/or services of the peripheral device,wherein the computer transmits the access management information and a job to the peripheral device,the peripheral device determines, based on the transmitted access management information, whether the user can use the feature and/or the service of the peripheral device necessary to perform the job, andthe peripheral device performs the job in case that it is determined that the user can use the feature and/or the service necessary to perform the job.
- View Dependent Claims (24)
- - 24. A server according to claim 23, wherein the computer transmits the access management information along with the job to the peripheral device.

25. A computer for transmitting a job to a peripheral device, wherein the peripheral device is accessible by a user based on access management information, and wherein the peripheral device is constructed to provide the user with a plurality of features and/or services including at least one of a printer service, a scanner service, a facsimile service and a copy service, the computer comprising:
- a reception unit constructed to receive, from a server, access management information which specifies a feature and/or a service of the peripheral device available to a user from among the plurality of features and/or services of the peripheral device, or which specifies a feature and/or a service of the peripheral device not available to the user from among the plurality of features and/or services of the peripheral device; and
  
  a transmission unit constructed to transmit the received access management information and a job to the peripheral device,wherein the peripheral device determines whether the user can use the feature and/or the service of the peripheral device necessary to perform the job, based on the transmitted access management information, andthe peripheral device performs the job in case that it is determined that the user can use the feature and/or the service necessary to perform the job.
- View Dependent Claims (26, 27)
- - 26. A computer according to claim 25, further comprising:
    - a second transmission unit constructed to transmit, to the server, authentication information corresponding to the user,wherein the server authenticates the user using the authentication information and transmits the access management information for the authenticated user to the computer.
  - 27. A computer according to claim 25, wherein the transmission unit transmits the received access management information along with the job to the peripheral device.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Canon Kabushiki Kaisha (Canon Inc.)
Original Assignee
Canon Kabushiki Kaisha (Canon Inc.)
Inventors
Paek, Jeanette Y., Yang, Joseph, Khosrova, Eliza, Martinez, Martin, Seikh, Attaullah, Iwamoto, Neil Y., Chern, Wei-Jhy, Slick, Royce E.
Primary Examiner(s)
Vu; Thong H

Application Number

US10/017,438
Publication Number

US 20030105849A1
Time in Patent Office

2,617 Days
Field of Search

709/227, 709/229, 709/225, 709/245, 709/223, 709/224, 709/219, 709/226, 709/220, 709/202, 709/203, 709/228, 709/217, 375/141, 375/356, 713/200, 713/156, 713/164, 713/167, 455/466, 455/510, 455/552, 455/432, 701/200, 705/8, 705/10, 705/35, 705/53, 705/16, 705/28, 725/76, 718/104, 379/88, 379/100, 726/28, 235/375, 463/42, 463/45, 707/100, 707/10, 358/1.15, 717/131, 702/03, 702/17
US Class Current

709/223
CPC Class Codes

G06F 21/604   Tools and structures for ma...

G06F 21/6218   to a system of files or obj...

G06F 21/84   output devices, e.g. displa...

G06F 2221/2113   Multi-level security, e.g. ...

G06F 2221/2149   Restricted operating enviro...

H04L 63/083   using passwords cryptograph...

H04L 63/105   Multiple levels of security

H04N 1/00509   Personalising for a particu...

Device access based on centralized authentication

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

131 Citations

27 Claims

Specification

Use Cases

Quick Links

Others

Device access based on centralized authentication

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

131 Citations

27 Claims

Specification

Subscription Required

Use Cases

Quick Links

Others