US Patent No: 6,308,173

Methods and arrangements for controlling resource access in a networked computing environment

Stats

Oct 23, 2001
Issued date
Feb 10, 2000
filing date
09/501,845
serial no
In Force
status

Importance

Loading Importance Indicators... loading....

Abstract

A unified and straightforward approach to managing file and other resource security in a networked computing environment is disclosed. The invention can be implemented in a multi-user computer network that includes a client computer, a server computer that controls a resource sharable among users of the network, such as a shared file folder or directory, and a communications pathway between the client computer and the server computer. The resource is organized as a hierarchy of elements with a root elemnent at the top of the hierarchy and additional elements below the root element. According to the invention, a request is received to change a protection, such as an access permission, of an element of the resource hierarchy (other than the root) with respect to a particular network user. If the element in question lacks an associated access control list, a nearest ancestor element of the hierarchy is located that has an associated access control list. The first (descendant) element inherits the access control list of the second (ancestor) element. This inheritance is done by generating a copy of the access control list of the second element and associating the generated copy with the first element. The requested change in protection is then incorporated into the generated copy that has been associated with the first element so as to establish an updated access control list for the first element. Further, the requested change can be propagated downwards in the hierarchy from the first element to its descendants having access control lists.

Loading the Abstract Image... loading....

First Claim

loading....

Related Publications

Loading Related Publications... loading....

Patent Owner(s)

Patent Owner	Address	Total Patents
MICROSOFT CORPORATION	REDMOND, WA	24226

International Classification(s)

G06F:ELECTRIC DIGITAL DATA PROCESSING

[Classification Symbol]

[Patents Count]

Inventor(s)

Inventor Name	Address	# of filed Patents	Total Citations
Glasser, Daniel S	Seattle, WA	50	742
McCurdy, Ann Elizabeth	Bellevue, WA	3	267
Price, Robert M	Seattle, WA	15	1194

Cited Art

Patent Info	# Cites	Year
HEWLETT-PACKARD DEVELOPMENT COMPANY, L.P. (5)
5,129,083 Conditional object creating system having different object pointers for accessing a set of data structure objects	115	1989
5,136,712 Temporary object handling system and method in an object based computer operating system	64	1989
5,315,657 Compound principals in access control lists	159	1990
5,173,939 Access control subsystem and method for distributed computer system using compound principals	119	1991
5,463,774 Object oriented computer architecture using directory objects	32	1993
INTERNATIONAL BUSINESS MACHINES CORPORATION (5)
5,263,158 Method and system for variable authority level user access control in a distributed data processing system having multiple resource manager	227	1990
5,237,679 Method and system for automatic deletion of a folder having temporary document relationships within a data processing system	12	1990
5,450,593 Method and system for controlling access to objects in a data processing system based on temporal constraints	40	1992
5,469,576 Front end for file access controller	83	1993
5,778,222 Method and system for managing access to objects	52	1997
XEROX CORPORATION (2)
5,388,196 Hierarchical shared books with database	222	1990
5,220,657 Updating local copy of shared data in a collaborative system	400	1991
APPLE INC. (1)
5,615,400 System for object oriented dynamic linking based upon a catalog of registered function set or class identifiers	55	1993
CISCO TECHNOLOGY, INC. (1)
5,048,085 Transaction system security method and apparatus	197	1989
GOOGLE INC. (1)
5,495,533 Personal key archive	292	1994
IPG HEALTHCARE 501 LIMITED (1)
5,335,346 Access control policies for an object oriented database, including access control lists which span across object boundaries	239	1991
MICROSOFT CORPORATION (1)
5,410,705 Method for generating an object data structure layout for a class in a compiler for an object-oriented programming language	32	1993
NEXT SOFTWARE, INC. (1)
5,459,863 Method of maintaining data integrity in a network database	26	1994

Patent Citation Ranking

Forward Cites

Patent Info	# Cites	Year
MICROSOFT CORPORATION (49)
7,240,288 Method and system for making resources available	2	2000
7,111,075 Method and system for processing data records having multiple formats	3	2000
7,912,971 System and method for user-centric authorization to access user-specific information	2	2002
7,076,558 User-centric consent management system and method	58	2002
7,823,077 System and method for user modification of metadata in a shell browser	0	2003
7,890,960 Extensible user context system for delivery of notifications	0	2003
7,925,682 System and method utilizing virtual folders	1	2003
7,627,552 System and method for filtering and organizing items based on common elements	9	2003
7,499,925 File system for displaying items of different types and from different physical locations	11	2003
7,409,644 File system shell	18	2003
7,051,282 Multi-layer graphical user interface	25	2003
7,865,904 Extensible user context system for delivery of notifications	0	2003
7,526,483 System and method for virtual folder sharing including utilization of static and dynamic lists	7	2003
7,536,386 System and method for sharing items in a computer system	8	2003
7,403,191 Tactile overlay for an imaging display	10	2004
7,827,561 System and method for public consumption of communication events between arbitrary processes	0	2004
7,620,685 Smart shares and transports	3	2004
7,657,846 System and method for displaying stack icons	5	2004
7,496,583 Property tree for metadata navigation and assignment	5	2004
7,200,595 Systems and methods for fine grained access control of data stored in relational databases	9	2004
7,661,141 Systems and methods that optimize row level database security	2	2004
8,024,335 System and method for dynamically generating a selectable search extension	0	2004
7,711,750 Systems and methods that specify row level database security	1	2004
7,383,503 Filtering a collection of items	9	2005
7,487,452 Method and system for making resources available	0	2005
7,614,016 Multiple roots in navigation pane	9	2005
8,195,646 Systems, methods, and user interfaces for storing, searching, navigating, and retrieving electronic information	0	2005
7,853,890 Address bar user interface control	3	2005
7,769,794 User interface for a file system shell	22	2005
7,712,034 System and method for shell browser	2	2005
7,587,411 System and method for filtering and organizing items based on common elements	6	2005
7,665,028 Rich drag drop user interface	30	2005
7,650,575 Rich drag drop user interface	5	2005
7,992,103 Scaling icons for representing files	0	2005
7,694,236 Stack icons representing multiple objects	4	2005
8,108,430 Carousel control for metadata navigation and assignment	0	2005
7,779,265 Access control list inheritance thru object(s)	2	2005
7,945,951 Rights-context elevator	1	2006
7,941,848 Elevating rights	0	2006
8,024,813 Task initiated account presentation for rights elevation	1	2006
7,512,586 System and method for filtering and organizing items based on common elements	5	2006
7,797,637 Multi-layer graphical user interface	0	2006
7,610,391 User-centric consent management system and method	2	2006
7,707,197 System and method for filtering and organizing items based on common elements	0	2006
7,711,754 System and method for managing data using static lists	0	2007
8,209,624 Virtual address bar user interface control	1	2007
7,599,937 Systems and methods for fine grained access control of data stored in relational databases	1	2007
7,716,365 Automatically targeting and filtering shared network resources	0	2007
8,185,932 System and method for user-centric authorization to access user-specific information	1	2011
INTERNATIONAL BUSINESS MACHINES CORPORATION (17)
6,581,060 System and method for RDBMS to protect records in accordance with non-RDBMS access control rules	30	2000
6,757,680 System and method for inheriting access control rules	10	2000
7,080,085 System and method for ensuring referential integrity for heterogeneously scoped references in an information management system	10	2000
7,308,580 System and method for ensuring security with multiple authentication schemes	8	2002
7,272,550 System and method for configurable binding of access control lists in a content management system	5	2002
7,917,940 Inheritance of controls within a hierarchy of data processing system resources	1	2002
7,478,094 High run-time performance method for setting ACL rule for content management security	2	2003
8,250,093 Method and system for utilizing a cache for path-level access control to structured documents stored in a database	0	2003
8,150,818 Method and system for storing structured documents in their native format in a database	8	2003
7,792,866 Method and system for querying structured documents stored in their native format in a database	0	2003
7,171,430 Method and system for processing structured documents in a native database	2	2003
7,761,404 System and method for managing application specific privileges in a content management system	2	2005
7,512,608 Method for processing structured documents stored in a database	2	2006
8,001,611 System and method for ensuring security with multiple authentication schemes	1	2007
7,809,749 High run-time performance system	1	2008
8,145,668 Associating information related to components in structured documents stored in their native format in a database	0	2008
8,037,090 Processing structured documents stored in a database	0	2009
SAP AG (5)
7,926,056 Method for effecting a software service in a system of a software system landscape and computer system	1	2005
7,877,730 Method for effecting a preliminary software service in a productive system of a software system landscape and computer system	1	2005
7,853,651 Method for tracking transport requests and computer system with trackable transport requests	0	2005
7,725,891 Method for effecting changes in a software system landscape and computer system	6	2005
7,721,257 Method for effecting software maintenance in a software system landscape and computer system	5	2005
HEWLETT-PACKARD DEVELOPMENT COMPANY, L.P. (3)
7,437,437 Access authentication for distributed networks	2	2001
8,019,871 Federation of grids using rings of trust	0	2006
7,818,414 Access authentication for distributed networks	0	2008
VERIZON DATA SERVICES LLC (3)
7,870,270 Methods and systems for providing capability management and user administration	1	2004
8,347,203 Methods and systems for defining a form navigational structure	0	2005
8,285,856 Methods and systems for integrating a messaging service with an application	0	2005
APPLE INC. (2)
7,739,298 Using a calculation expression to define and control access rights for records in a database	0	2001
7,958,146 Using a calculation expression to define and control access rights for records in a database	0	2010
BIT 9, INC. (2)
8,272,058 Centralized timed analysis in a network security system	1	2005
7,895,651 Content tracking in a network security system	3	2005
E.PIPHANY, INC. (2)
6,772,350 System and method for controlling access to resources in a distributed environment	113	1999
6,944,777 System and method for controlling access to resources in a distributed environment	26	2000
HUMMING HEADS INC. (2)
7,607,131 Information processing method, apparatus, and system for controlling computer resources, control method therefor, storage medium, and program	5	2001
8,356,307 Information processing method, apparatus, and system for controlling computer resources, control method therefor, storage medium, and program	0	2009
OLASS CONSULTING AG, LLC (2)
6,675,205 Peer-to-peer automated anonymous asynchronous file sharing	88	2001
RE42051 Peer-to-peer automated anonymous asynchronous file sharing	0	2008
ORACLE INTERNATIONAL CORPORATION (2)
7,917,537 System and method for providing link property types for content management	0	2006
7,818,344 System and method for providing nested types for content management	1	2006
ARCSOFT, INC. (1)
6,856,989 Dynamic link	16	2000
AUTODESK, INC. (1)
6,870,546 Protectable expressions in objects having authorable behaviors and appearances	10	2000
GOOGLE INC. (1)
7,284,265 System and method for incremental refresh of a compiled access control table in a content management system	3	2002
GUSTAVO S LEONARDOS? (1)
6,778,972 System and method for providing integrated management of electronic information	6	2000
KYOCERA MITA CORPORATION (1)
7,877,449 Push type scanner apparatus for transmitting over a network	0	2007
LENOVO (SINGAPORE) PTE LTD. (1)
6,782,349 Method and system for updating a root of trust measurement function in a personal computer	8	2002
NETAPP, INC. (1)
7,272,848 Method for device security in a heterogeneous storage network environment	10	2002
NETSELECTOR, INC. (1)
7,334,037 Systems and methods for site access	2	2002
PETERS, ROGER (1)
8,230,348 Collaboration software with real-time synchronization		2008
SIEMENS ENTERPRISE COMMUNICATIONS, INC. (1)
7,653,733 Method and apparatus for facilitating granting of a permission regarding a stored element	0	2003
SONY COMPUTER ENTERTAINMENT INC. (1)
7,734,786 Method and system for identifying available resources in a peer-to-peer network	0	2008
SYMANTEC CORPORATION (1)
8,281,410 Methods and systems for providing resource-access information	0	2008
XEROX CORPORATION (1)
6,666,605 Method for improved security in the handling of printer bin output	0	2000
OTHER [CHECK PATENT PROFILE FOR ASSIGNMENT INFORMATION] (2)
7,814,134 System and method for providing integrated management of electronic information	1	2004
8,407,188 Methods and systems for providing data form management	0	2004

Maintenance Fees

Fee	Large entity fee	small entity fee	micro entity fee	due date
11.5 Year Payment	$7400.00	$3700.00	$1850.00	Apr 23, 2013

Fee	Large entity fee	small entity fee	micro entity fee
Surcharge - 11.5 year - Late payment within 6 months	$160.00	$80.00	$40.00
Surcharge after expiration - Late payment is unavoidable	$700.00	$350.00	$175.00
Surcharge after expiration - Late payment is unintentional	$1,640.00	$820.00	$410.00

US Family Size	International Coverage
Patent Longevity	Forward Citations