×

Controlling access to resources on a network

  • US 8,713,646 B2
  • Filed: 12/09/2011
  • Issued: 04/29/2014
  • Est. Priority Date: 12/09/2011
  • Status: Active Grant
First Claim
Patent Images

1. A system, comprising:

  • a proxy server that receives a request from a user of one of a plurality of client devices to access at least one enterprise resource provided by an enterprise device on a network, wherein the request comprises a set of user access credentials associated with the user and a device identifier associated with the one of the plurality of client devices, the proxy server being configured to;

    store a copy of a plurality of device profiles respectively associated with the plurality of client devices,receive periodic updates to the plurality of device profiles from the respectively associated plurality of client devices, andauthenticate the user and the client device to determine whether the user is authorized to access to access the requested at least one enterprise resource from the client device, wherein the proxy server authenticates the user based at least in part on the set of user access credentials associated with the user and authenticates the client device based at least in part on the device identifier associated with the client device;

    a compliance service that authorizes the client device to communicate with the enterprise device in response to the proxy server authenticating the user and the client device, wherein the compliance service authorizes the client device based at least in part on a determination of whether the periodically updated device profile associated with the client device stored on the proxy server is in compliance with at least one compliance rule; and

    wherein the proxy server is further configured to;

    modify the request to remove the user access credentials and insert a set of approved enterprise access credentials,transmit the modified request to the enterprise device if the client device is authorized to communicate with the enterprise device and the user has permission to access the at least one enterprise resource from the client device,receive the at least one enterprise resource provided by the enterprise device; and

    transmitting the at least one enterprise resource to the client device.

View all claims
  • 5 Assignments
Timeline View
Assignment View
    ×
    ×