Extension of browser web page content labels and password checking to communications protocols
First Claim
1. A method of establishing access control within a data processing system, comprising:
- obtaining content label categories at the data processing system that present a unique label identifying the type of content for each respective category of a plurality of categories;
Obtaining associated user restrictions at the data processing system defining at least one user'"'"'s access privileges to each respective category of the plurality of categories as a function of the content label categories;
distributing the obtained content label categories and obtained associated user restrictions to each of a plurality of communications programs within the data processing system, wherein at least two of the communications programs employ different communications protocols;
setting access controls for at least two of the communications programs within the data processing system that employ different communications protocols as a function of the content label categories and associated user restrictions; and
during installation of a communications program subsequent to setting access controls for each communications program within the data processing system as a function of the content label categories and associated user restrictions checking for existing access control settings for other communications programs and setting access controls for the communications program being installed utilizing the existing access control settings.
1 Assignment
0 Petitions
Accused Products
Abstract
Content label categories and associated user restrictions for desired access control may be entered by a privileged user in any communications programs (such as a browser) within a system, and are automatically distributed to all other communications programs (such as a different browser or a newsreader) within the system regardless of whether the same communications protocol is utilized. Communications programs being installed check for access control settings within other communications programs or via a common API in a centrally located operating system access control support function, and employ such settings in configuring internal access controls. Content-based access control is thus implemented uniformly across the system without work arounds being available to the nonprivileged users. Content labels for requested content, which may be embedded within the requested content, contained within a communications header for transactions bearing the requested content, or looked up in internal or external databases utilizing an identifier for the requested content, are checked against content label categories restricted for a current user. If restricted content is detected, the user is prompted for a password before the requested content is displayed.
31 Citations
3 Claims
-
1. A method of establishing access control within a data processing system, comprising:
-
obtaining content label categories at the data processing system that present a unique label identifying the type of content for each respective category of a plurality of categories;
Obtaining associated user restrictions at the data processing system defining at least one user'"'"'s access privileges to each respective category of the plurality of categories as a function of the content label categories;distributing the obtained content label categories and obtained associated user restrictions to each of a plurality of communications programs within the data processing system, wherein at least two of the communications programs employ different communications protocols; setting access controls for at least two of the communications programs within the data processing system that employ different communications protocols as a function of the content label categories and associated user restrictions; and during installation of a communications program subsequent to setting access controls for each communications program within the data processing system as a function of the content label categories and associated user restrictions checking for existing access control settings for other communications programs and setting access controls for the communications program being installed utilizing the existing access control settings.
-
-
2. A system for establishing access control within a data processing system, comprising:
-
means for obtaining content label categories at the data processing system that present a unique label identifying the type of content for each respective category of a plurality of categories; means for obtaining associated user restrictions at the data processing system defining at least one user'"'"'s access privileges to each respective category of the plurality of categories as a function of the content label categories; means for distributing the obtained content label categories and obtained associated user restrictions to each of a plurality of communications programs within the data processing system, wherein at least two of the communications programs employ different communications protocols; means for setting access controls for at least two of the communications programs within the data processing system that employ different communications protocols as a function of the content label categories and associated user restrictions; and means operable during installation of a communications program subsequent to setting access controls for each communications program within the data processing system as a function of the content label categories and associated user restrictions for checking for existing access control settings for other communications programs and for setting access controls for the communications program being installed utilizing the existing access control settings.
-
-
3. A computer program product within a computer usable medium for establishing access control within a data processing system, comprising:
-
instructions for obtaining content label categories at the data processing system that present a unique label identifying the type of content for each respective category of a plurality of categories; Instructions for obtaining associated user restrictions at the data processing system defining at least one user'"'"'s access privileges to each respective category of the plurality of categories as a function of the content label categories; instructions for distributing the obtained content label categories and obtained associated user restrictions to each of a plurality of communications programs within the data processing system, wherein at least two of the communications programs employ different communications protocols; instructions for setting access controls for at least two of the communications programs within the data processing system that employ different communications protocols as a function of the content label categories and associated user restrictions; and instructions executed during installation of a communications program subsequent to setting access controls for each communications program within the data processing system as a function of the content label categories and associated user restrictions for checking for existing access control settings for other communications programs and for setting access controls for the communications program being installed utilizing the existing access control settings.
-
Specification