Method and apparatus for providing policy-based document control
First Claim
Patent Images
1. A system of granting access to resources comprising:
- (a) a client node requesting access to a file;
(b) a collection agent gathering information about the client node in response to the request to access the file;
(c) a first component of a policy engine receiving the gathered information and generating a dataset comprising a plurality of identifiers, each of the plurality of identifiers identifying a respective condition satisfied by the gathered information;
(d) a second component of the policy engine granting one of a plurality of levels of access granted to the client node to access the file responsive to application of a policy to the generated dataset; and
(e) a transformation server receiving the request for the file from the policy engine, and in response to the one of the plurality of levels of access granted, transforming the contents of the file from a native format to a second format, and presenting the transformed contents of the file to the client node.
7 Assignments
0 Petitions
Accused Products
Abstract
A method and apparatus for providing policy-based document control includes a client node, a collection agent, a policy engine, and a transformation server. The client node requests access to a resource. The collection agent gathers information about the client node. The policy engine receives the gathered information and makes an access control decision based on the received information. The transformation server transforms the contents of the file from a native format to a second format and presents the transformed contents of the file to the client node.
323 Citations
26 Claims
-
1. A system of granting access to resources comprising:
-
(a) a client node requesting access to a file; (b) a collection agent gathering information about the client node in response to the request to access the file; (c) a first component of a policy engine receiving the gathered information and generating a dataset comprising a plurality of identifiers, each of the plurality of identifiers identifying a respective condition satisfied by the gathered information; (d) a second component of the policy engine granting one of a plurality of levels of access granted to the client node to access the file responsive to application of a policy to the generated dataset; and (e) a transformation server receiving the request for the file from the policy engine, and in response to the one of the plurality of levels of access granted, transforming the contents of the file from a native format to a second format, and presenting the transformed contents of the file to the client node. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16)
-
-
17. A method of granting access to resources, the method comprising:
-
(a) requesting, by a client node, access to a file; (b) gathering, by a collection agent, information about the client node in response to the request to access the file; (c) receiving, by a first component of a policy engine, the gathered information, and generating a dataset comprising a plurality of identifiers, each of the plurality of identifiers identifying a respective condition satisfied by the gathered information; (d) granting, by a second component of the policy engine, one of a plurality of levels of access granted to the client node to access the file responsive to application of a policy to the generated dataset; (e) transforming, by a transformation server, contents of the file from a native format to a second format in response to the one of the plurality of levels of access granted; and (f) presenting, by the transformation server, the transformed contents of the file to the client node. - View Dependent Claims (18, 19, 20, 21, 22, 23, 24, 25, 26)
-
Specification