Device internet resource access filtering system and method
First Claim
Patent Images
1. An Internet access filtering system, comprising:
- a computer;
a client on a device wherein the client is configured to establish a connection to the computer, the client further comprising a module that gathers information about a request to access a resource by the device and a module that communicates the gathered information to the computer;
the computer further comprising a module that categorizes the resource access of the device based on the gathered information and a module that communicates, in real-time, a resource access decision to the client so that the client controls the access to the resource by the device based on the resource access decision of the computer;
wherein the client further comprises a module that is configured to generate a capability mask for the device and communicates that capability mask to the computer, the capability mask containing information about the filtering capabilities of the device;
wherein the computer is further configured to generate the resource access decision based on the capability mask;
wherein the client further comprises an offline filtering module that controls the resource accesses of the device based on the filtering capabilities of the device when the client is unable to communicate with the computer;
wherein the offline filtering module further comprises an allow all resource access mode, a block all resource access mode and an allow all resource access with logging mode; and
wherein the allow all resource access with logging mode further comprises a module for throttling the offline logs uploaded to the computer in order to control the bandwidth utilized by the offline logs.
9 Assignments
0 Petitions
Accused Products
Abstract
A remote site filtering and monitoring system and method is described in which the Internet accesses of a remote device are monitored and categorized by a remote server in real-time. The system also provides for offline access logging and subsequent uploading, adjustable filtering sensitivities and particular HTTP port filtering.
-
Citations
60 Claims
-
1. An Internet access filtering system, comprising:
-
a computer; a client on a device wherein the client is configured to establish a connection to the computer, the client further comprising a module that gathers information about a request to access a resource by the device and a module that communicates the gathered information to the computer; the computer further comprising a module that categorizes the resource access of the device based on the gathered information and a module that communicates, in real-time, a resource access decision to the client so that the client controls the access to the resource by the device based on the resource access decision of the computer; wherein the client further comprises a module that is configured to generate a capability mask for the device and communicates that capability mask to the computer, the capability mask containing information about the filtering capabilities of the device; wherein the computer is further configured to generate the resource access decision based on the capability mask; wherein the client further comprises an offline filtering module that controls the resource accesses of the device based on the filtering capabilities of the device when the client is unable to communicate with the computer; wherein the offline filtering module further comprises an allow all resource access mode, a block all resource access mode and an allow all resource access with logging mode; and wherein the allow all resource access with logging mode further comprises a module for throttling the offline logs uploaded to the computer in order to control the bandwidth utilized by the offline logs. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15)
-
-
16. An Internet access filtering system, comprising:
-
a computer; a client on a device wherein the client is configured to establish a connection to the computer, the client further comprising means for gathering information about a request to access a resource by the device and means for communicating the gathered information to the computer; the computer further comprising means for categorizing the resource access of the device based on the gathered information and means for communicating, in real-time, a resource access decision to the client so that the client controls the access to the resource by the device based on the resource access decision of the computer; wherein the client further comprises means for generating a capability mask for the device and communicating that capability mask to the computer, the capability mask containing information about the filtering capabilities of the device; wherein the computer further comprises means for generating the resource access decision based on the capability mask; wherein the client further comprises means for offline filtering that controls the resource accesses of the device based on the filtering capabilities of the device when the client is unable to communicate with the computer; wherein the offline filtering means further comprises an allow all resource access mode, a block all resource access mode and an allow all resource access with logging mode; and wherein the allow all resource access with logging mode further comprises means for throttling the offline logs uploaded to the computer in order to control the bandwidth utilized by the offline logs. - View Dependent Claims (17, 18, 19, 20, 21, 22, 23, 24, 25, 26, 27)
-
-
28. An Internet access filtering method using a computer and a client on a device that establishes a connection to the computer, the method comprising:
-
gathering information by the client about a request to access a resource by the device; communicating the gathered information to the computer; categorizing, at the computer, the resource access of the device based on the gathered information; communicating, in real-time, a resource access decision to the client so that the client controls the access to the resource by the device based on the resource access decision of the computer; generating by the client, a capability mask for the device; communicating that capability mask to the computer, the capability mask containing information about the filtering capabilities of the device; generating, by the computer, the resource access decision based on the capability mask; wherein offline filtering by the client controls the resource accesses of the device based on the filtering capabilities of the device when the client is unable to communicate with the computer; wherein the offline filtering further comprises an allow all resource access mode, a block all resource access mode and an allow all resource access with logging mode; and wherein the allow all resource access with logging mode further comprises throttling the offline logs uploaded to the computer in order to control the bandwidth utilized by the offline logs. - View Dependent Claims (29, 30, 31, 32, 33, 34, 35, 36, 37, 38, 39)
-
-
40. A server for an Internet access filtering system, comprising:
-
a module implemented with a processor so as to cause said processor to receive information about a request to access a resource by a remote device wherein the information about the resource access request is communicated from a remote client on the device; a module implemented with a processor so as to cause said processor to categorize the resource access of the device based on the gathered information; a module implemented with a processor so as to cause said processor to communicate, in real-time, a resource access decision to the client so that the client controls the access to the resource by the device based on the resource access decision of the processor; wherein the server further comprises a module implemented with a processor so as to cause said processor to receive a capability mask for the device from a client associated with the device, the capability mask containing information about the filtering capabilities of the device; wherein the processor is further configured to generate the resource access decision based on the capability mask; wherein the client associated with the device is configured to control the resource accesses of the device based on the filtering capabilities of the device when the client is unable to connect to the processor; wherein, when the client is unable to connect to the processor, the client controls the resource accesses of the device with an allow all resource access mode, a block all resource access mode and an allow all resource access with logging mode; and wherein the allow all resource access with logging mode further comprises means for throttling offline logs uploaded to the computer in order to control the bandwidth utilized by the offline logs. - View Dependent Claims (41, 42, 43, 44, 45, 46, 47, 48)
-
-
49. An Internet access filtering client located on a device that communicates with a remote computer, the client comprising:
-
a module implemented with a processor so as to cause said processor to gather information about a request to access a resource by the device; a module implemented with a processor so as to cause said processor to communicates the gathered information to the computer; a module implemented with a processor so as to cause said processor to receive a resource access decision from the remote computer and controls the access to the resource by the device based on the resource access decision of the computer; wherein the client further comprises a module implemented with a processor so as to cause said processor to generate a capability mask for the device and to communicate that capability mask to the computer, the capability mask containing information about the filtering capabilities of the device; wherein the computer is further configured to generate the resource access decision based on the capability mask; wherein the client is further configured to control the resource accesses of the device based on the filtering capabilities of the device when the client is unable to communicate with the computer; wherein the client controls the resource accesses of the device with an allow all resource access mode, a block all resource access mode and an allow all resource access with logging mode; and wherein the allow all resource access with logging mode further comprises means for throttling the offline logs uploaded to the computer in order to control the bandwidth utilized by the offline logs. - View Dependent Claims (50, 51, 52, 53, 54, 55, 56, 57, 58, 59, 60)
-
Specification