Remote access to resources over a network

US 9,906,534 B2
Filed: 03/31/2017
Issued: 02/27/2018
Est. Priority Date: 12/10/2003
Status: Active Grant

First Claim

Patent Images

1. A method for providing provisioning objects, the method comprising:

receiving via a user interface an input identifying a resource associated with a rule governing access and a selection of a first zone of trust;

receiving a request to access the resource sent over a communication network from a computing device associated with a person;

interrogating the computing device to identify whether at least one required object is installed on the computing device, the at least one required object corresponding to the first zone of trust and identified by the rule governing access to the resource, wherein the at least one object is installed on the computing device when the at least one required object is not yet installed on the computing device; and

allowing the computing device to access the resource based on the at least one object being installed on the computing device in accordance with the rule governing access to the resource.

View all claims

5 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

Systems and techniques are provided for controlling requests for resources from remote computers. A remote computer'"'"'s ability to access a resource is determined based upon the computer'"'"'s operating environment. The computer or computers responsible for controlling access to a resource will interrogate the remote computer to ascertain its operating environment. The computer or computers responsible for controlling access to a resource may, for example, download one or more interrogator agents onto the remote computer to determine its operating environment. Based upon the interrogation results, the computer or computers responsible for controlling access to a resource will control the remote computer'"'"'s access to the requested resource.

145 Citations

17 Claims

1. A method for providing provisioning objects, the method comprising:
- receiving via a user interface an input identifying a resource associated with a rule governing access and a selection of a first zone of trust;
  
  receiving a request to access the resource sent over a communication network from a computing device associated with a person;
  
  interrogating the computing device to identify whether at least one required object is installed on the computing device, the at least one required object corresponding to the first zone of trust and identified by the rule governing access to the resource, wherein the at least one object is installed on the computing device when the at least one required object is not yet installed on the computing device; and
  
  allowing the computing device to access the resource based on the at least one object being installed on the computing device in accordance with the rule governing access to the resource.
- View Dependent Claims (2, 3, 4, 5, 6)
- - 2. The method of claim 1, further comprising receiving a selection of one or more software programs via the user interface, wherein the rule governing access further requires that the computing device access the resource via the one or more selected software programs.
  - 3. The method of claim 1, wherein the at least one required object is an anti-malware agent.
  - 4. The method of claim 1, wherein the rule governing access to the resource is associated with one or more pre-authentication requirements.
  - 5. The method of claim 4, wherein the at least one required object is one of the pre-authentication requirements.
  - 6. The method of claim 1, wherein the rule governing access to the resource is associated with one or more post-authentication requirements.

7. A non-transitory computer readable storage medium having embodied thereon a program executable by a processor for providing provisioning objects, the method comprising:
- receiving via a user interface an input identifying a resource associated with a rule governing access and a selection of a first zone of trust;
  
  receiving a request to access the resource sent over a communication network from a computing device associated with a person;
  
  interrogating the computing device to identify whether at least one required object is installed on the computing device, the at least one required object corresponding to the first zone of trust and identified by the rule governing access to the resource, wherein the at least one object is installed on the computing device when the at least one required object is not yet installed on the computing device; and
  
  allowing the computing device to access the resource based on the at least one object being installed on the computing device in accordance with the rule governing access to the resource.
- View Dependent Claims (8, 9, 10, 11, 12)
- - 8. The non-transitory computer readable storage medium of claim 7, the program further executable to receive a selection of one or more software programs via the user interface, wherein the rule governing access further requires that the computing device access the resource via the one or more selected software programs.
  - 9. The non-transitory computer readable storage medium of claim 7, wherein the at least one required object is an anti-malware agent.
  - 10. The non-transitory computer readable storage medium of claim 7, wherein the rule governing access to the resource is associated with one or more pre-authentication requirements.
  - 11. The non-transitory computer readable storage medium of claim 10, wherein the at least one required object is one of the pre-authentication requirements.
  - 12. The non-transitory computer readable storage medium of claim 7, wherein the rule governing access to the resource is associated with one or more post-authentication requirements.

13. An apparatus for providing provisioning objects to provide to a computing device, the apparatus comprising:
- a user interface that receives an input identifying a resource associated with a rule governing access and a selection of a first zone of trust;
  
  a network interface that receives a request to access the resource sent over a communication network from a computing device associated with a person; and
  
  a processor that executes instructions stored in memory, wherein execution of the instructions by the processor;
  
  interrogates the computing device to identify whether at least one required object is installed on the computing device, the at least one required object corresponding to the first zone of trust and identified by the rule governing access to the resource, wherein the at least one object is installed on the computing device when the at least one required object is not yet installed on the computing device, andallows the computing device to access the resource based on the at least one object being installed on the computing device in accordance with the rule governing access to the resource.
- View Dependent Claims (14, 15, 16, 17)
- - 14. The apparatus of claim 13, wherein the user interface further receives a selection of one or more software programs, wherein the rule governing access further requires that the computing device access the resource via the one or more selected software programs.
  - 15. The apparatus of claim 13, wherein the at least one required object is an anti-malware agent.
  - 16. The apparatus of claim 13, wherein the rule governing access to the resource is associated with one or more pre-authentication requirements.
  - 17. The method of claim 15, wherein the at least one required object is a one of the pre-authentication requirements.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
SonicWALL US Holdings, Inc. (SonicWall Holdings Ltd.)
Original Assignee
SonicWALL, Inc. (SonicWall Holdings Ltd.)
Inventors
Hopen, Chris, Tomlinson, Gary, Anandam, Parvez, Young, Brian, Flagg, Alan, O'Reilley, Jude Michael Dylan
Primary Examiner(s)
Zand, Kambiz
Assistant Examiner(s)
KAPLAN, BENJAMIN A

Application Number

US15/476,547
Publication Number

US 20170244710A1
Time in Patent Office

333 Days
Field of Search

726 1
US Class Current
CPC Class Codes

G06F 21/56   Computer malware detection ...

G06F 2221/034   Test or assess a computer o...

H04L 12/2856   Access arrangements, e.g. I...

H04L 47/783   Distributed allocation of r...

H04L 47/805   QOS or priority aware

H04L 63/0227   Filtering policies mail mes...

H04L 63/0263   Rule management

H04L 63/0272   Virtual private networks

H04L 63/08   for authentication of entit...

H04L 63/10   for controlling access to d...

H04L 63/20   for managing network securi...

H04L 67/01   Protocols

H04L 67/02   based on web technology, e....

H04L 67/563   Data redirection of data ne...

H04L 67/63   Routing a service request d...

Remote access to resources over a network

First Claim

5 Assignments

0 Petitions

Accused Products

Abstract

145 Citations

17 Claims

Specification

Solutions

Use Cases

Quick Links

Remote access to resources over a network

First Claim

5 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

145 Citations

17 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links