Method and system for assigning access control levels in providing access to networked content files
First Claim
Patent Images
1. An intermediary between a server and a client node, for granting the client node access to resources, the intermediary comprising:
- a first module initiating information gathering on a first client node operated by a user via a first collection agent responsive to a request from the first client node to access a resource, receiving the gathered information about the first client node, initiating information gathering on a second client node operated by the user via a second collection agent responsive to a request from the second client node to access the resource, and receiving the gathered information about the second client node; and
a policy engine in communication with the first collection agent and the second collection agent, granting to the user a first level of access to the resource responsive to application of a policy to the information gathered about the first client node when used by the user, and granting to the user a second level of access to the resource responsive to application of a policy to the information gathered about the second client node when used by the user,wherein the first level of access is selected from a plurality of levels of access, and wherein the second level of access is selected from the plurality of levels of access and allows access to the resource by requiring the use of an application hosted by a remote server to perform operations on the resource instead of an application hosted by the second client node.
8 Assignments
0 Petitions
Accused Products
Abstract
A method and system for assigning access control levels when granting access to resources includes a client node, a collection agent, and a policy engine. The client node requests access to a resource. The collection agent gathers information about the client node. The policy engine receives the gathered information and assigns one of a plurality of levels of access responsive to application of a policy to the received information and transmits the information.
-
Citations
34 Claims
-
1. An intermediary between a server and a client node, for granting the client node access to resources, the intermediary comprising:
-
a first module initiating information gathering on a first client node operated by a user via a first collection agent responsive to a request from the first client node to access a resource, receiving the gathered information about the first client node, initiating information gathering on a second client node operated by the user via a second collection agent responsive to a request from the second client node to access the resource, and receiving the gathered information about the second client node; and a policy engine in communication with the first collection agent and the second collection agent, granting to the user a first level of access to the resource responsive to application of a policy to the information gathered about the first client node when used by the user, and granting to the user a second level of access to the resource responsive to application of a policy to the information gathered about the second client node when used by the user, wherein the first level of access is selected from a plurality of levels of access, and wherein the second level of access is selected from the plurality of levels of access and allows access to the resource by requiring the use of an application hosted by a remote server to perform operations on the resource instead of an application hosted by the second client node. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16, 17, 18, 19, 20, 21)
-
-
22. A method of granting, by an intermediary between a server and a client node, access to resources, the method comprising:
-
(a-1) initiating, by an intermediary, information gathering on a first client node operated by a user via a first collection agent in response to a request from the first client node for access to a resource; (a-2) initiating, by the intermediary, information gathering on a second client node operated by the user via a second collection agent in response to a request from the second client node to access the resource; (b-1) receiving, by the intermediary, the information about the first client node; (b-2) receiving, by the intermediary, the information about the second client node; (c-1) granting to the user, by a policy engine of the intermediary in communication with the first collection agent and the second collection agent, a first of level of access to the resource responsive to application of a policy to the information gathered about the first client node when used by the user; and (c-2) granting to the user, by the policy engine, a second level of access to the resource responsive to application of a policy to the information gathered about the second client node when used by the user, wherein the first level of access is selected from a plurality of levels of access, and wherein the second level of access is selected from the plurality of levels of access and allows access to the resource by requiring the use of an application hosted by a remote server to perform operations on the resource instead of an application hosted by the second client node. - View Dependent Claims (23, 24, 25, 26, 27, 28, 29, 30, 31, 32, 33, 34)
-
Specification