US Patent No: 6,321,334

Number of patents in Portfolio can not be more than 2000

Administering permissions associated with a security zone in a computer system security model

5 Status Updates

Stats

ATTORNEY / AGENT: (SPONSORED)
 

Importance

Loading Importance Indicators... loading....

Abstract

Computer-based systems and methods are disclosed for a comprehensive security model for managing foreign content downloaded from a computer network. The methods and systems include the configuration of a system security policy that is stored on a host computer. The system security policy includes one or more independently configurable security zones. Each security zone corresponds to a group of network locations and may have one or more associated configurable protected operations that control the access to the host system by foreign content downloaded from the computer network. A protected operations may have one or more associated configurable permissions that define the capabilities of the protected operation. Each permission may be defined by one or more parameters and each parameter may be defined by one or more primitives. The permissions may be defined to enable the permission, disable the permission, or prompt the user when the permission is required. The permission may also be configured to the "fine grained" level of the primitives. Default permission levels that provide predefined parameter and primitive entries that are grouped as high security, medium security, and low security may be selected by the user at most levels of the configuration.

Loading the Abstract Image... loading....

First Claim

Related Publications

Loading Related Publications... loading....

Patent Owner(s)

Patent OwnerAddressTotal Patents
MICROSOFT CORPORATIONREDMOND, WA24226

International Classification(s)

  • [Classification Symbol]
  • [Patents Count]

Inventor(s)

Inventor Name Address # of filed Patents Total Citations
Bisset, Jeffrey A Issaquah, WA 4 500
Jerger, Michael S Kirkland, WA 3 489
Sinclair, Craig T Sammamish, WA 15 733
Toutonghi, Michael J Bellevue, WA 36 1123

Cited Art

Patent Info (Count) # Cites Year
 
SUN MICROSYSTEMS, INC. (2)
5,958,051 Implementing digital signatures for data streams and data archives 128 1997
6,138,238 Stack-based access control using code and executor identifiers 30 1998
 
BELL ATLANTIC NETWORK SERVICES, INC. (1)
5,958,005 Electronic mail security 235 1997
 
BMC SOFTWARE, INC. (1)
5,919,247 Method for the distribution of code and data updates 333 1996
 
CHECK POINT SOFTWARE TECHNOLOGIES LTD. (1)
5,835,726 System for securing the flow of and selectively modifying packets in a computer network 401 1996
 
CHECK POINT SOFTWARE TECHNOLOGIES, INC. (1)
5,987,611 System and methodology for managing internet access on a per application basis for client computers connected to the internet 536 1997
 
COMPUTER ASSOCIATES THINK, INC. (1)
5,796,942 Method and apparatus for automated network-wide surveillance and security breach intervention 258 1996
 
COOPER UNION FOR THE ADVANCEMENT OF SCIENCE AND ART (1)
5,678,041 System and method for restricting user access rights on the internet based on rating information stored in a relational database 469 1995
 
FMR LLC (1)
5,991,878 Controlling access to information 89 1997
 
FREESCALE SEMICONDUCTOR, INC. (1)
5,828,893 System and method of communicating between trusted and untrusted computer systems 79 1995
 
HEWLETT-PACKARD DEVELOPMENT COMPANY, L.P. (1)
5,963,142 Security control for personal computer 31 1997
 
INTERVOICE LIMITED PARTNERSHIP (1)
5,930,792 Monitoring and directing flow of HTML documents for security and access 36 1996
 
MULTEX.COM, INC. (1)
5,940,843 Information delivery system and method including restriction processing 127 1997
 
SYNOPSYS, INC. (1)
5,684,951 Method and system for user authorization over a multi-user computer system 181 1996
 
TL TECHNOLOGY RESEARCH (M) SDN. BHD. (1)
6,041,412 Apparatus and method for providing access to secured data or area 95 1997

Patent Citation Ranking

Forward Cites

Patent Info (Count) # Cites Year
 
MICROSOFT CORPORATION (107)
6,519,647 Methods and apparatus for synchronizing access control in a web server 103 1999
7,051,368 Methods and systems for screening input strings intended for use by web servers 7 1999
7,624,356 Task-sensitive methods and systems for displaying command sets 12 2000
7,346,848 Single window navigation methods and systems 39 2000
7,191,394 Authoring arbitrary XML documents using DHTML and XSLT 70 2000
7,155,667 User interface for integrated spreadsheets and word processing tables 6 2000
7,117,435 Spreadsheet fields in text 4 2000
7,000,230 Network-based software extensions 31 2000
6,948,135 Method and systems of providing information to computer users 99 2000
6,883,168 Methods, systems, architectures and data structures for delivering software via a network 57 2000
6,874,143 Architectures for and methods of providing network-based software extensions 98 2000
7,318,238 Security settings for markup language elements 11 2002
7,415,672 System and method for designing electronic forms 3 2003
7,370,066 System and method for offline editing of data files 19 2003
7,275,216 System and method for designing electronic forms and hierarchical schemas 18 2003
7,913,159 System and method for real-time validation of structured data files 11 2003
7,516,145 System and method for incrementally transforming and rendering hierarchical data files 4 2003
7,168,035 Building a view on markup language data through a set of components 90 2003
7,559,082 Method of assisting an application to traverse a firewall 3 2003
7,197,515 Declarative solution definition 21 2003
7,581,177 Conversion of structured documents 11 2003
7,406,660 Mapping between structured data and a visual surface 66 2003
7,334,187 Electronic form aggregation 11 2003
7,454,700 Method and apparatus for restricting the application of formatting to the contents of an electronic document 0 2003
7,251,822 System and methods providing enhanced security model 2 2003
7,296,017 Validation of XML data files 71 2003
7,451,392 Rendering an HTML electronic form by applying XSLT to XML using a solution 70 2003
7,376,673 Offline editing of XML files using a solution 23 2003
8,332,943 Tiered object-related trust decisions 0 2004
7,430,711 Systems and methods for editing XML documents 13 2004
7,318,063 Managing XML documents containing hierarchical database information 5 2004
7,950,000 Architecture that restricts permissions granted to a build process 0 2004
7,617,519 System and method for intelligent recommendation with experts for user trust decisions 4 2004
7,743,425 Security restrictions on binary behaviors 4 2004
7,496,837 Structural editing with schema awareness 83 2004
8,108,902 System and method for local machine zone lockdown with relation to a network browser 0 2004
7,571,459 System and method for zone transition mitigation with relation to a network browser 1 2004
7,412,645 User interface for integrated spreadsheets and word processing tables 12 2004
7,568,101 Digital signatures with an embedded view 11 2004
7,281,018 Form template data source change 87 2004
7,774,620 Executing applications at appropriate trust levels 13 2004
7,676,843 Executing applications at appropriate trust levels 17 2004
7,533,268 Digital signature with an embedded view 12 2004
7,712,048 Task-sensitive methods and systems for displaying command sets 10 2004
7,610,562 Task-sensitive methods and systems for displaying command sets 14 2004
7,512,896 Task-sensitive methods and systems for displaying command sets 12 2004
7,818,677 Single window navigation methods and systems 19 2004
7,779,027 Methods, systems, architectures and data structures for delivering software via a network 12 2004
7,673,227 User interface for integrated spreadsheets and word processing tables 18 2004
7,350,141 User interface for integrated spreadsheets and word processing tables 37 2004
7,392,522 Architectures for and methods of providing network-based software extensions 11 2004
7,692,636 Systems and methods for handwriting to a screen 17 2004
7,702,997 Spreadsheet fields in text 0 2004
7,549,115 System and method for integrated spreadsheets and word processing tables 26 2004
7,523,390 Spreadsheet fields in text 2 2004
7,506,242 System and method for integrating spreadsheets and word processing tables 3 2004
7,120,866 Spreadsheet fields in text 7 2004
7,506,243 System and method for integrating spreadsheets and word processing tables 1 2004
7,712,022 Mutually exclusive options in electronic forms 18 2004
7,584,417 Role-dependent action for an electronic form 27 2004
7,721,190 Methods and systems for server side form processing 17 2004
7,509,353 Methods and systems for exchanging and rendering forms 2 2004
8,020,141 Operating-system process construction 1 2004
7,904,801 Recursive sections in electronic forms 4 2004
7,437,376 Scalable object model 7 2004
7,937,651 Structural editing operations for network forms 7 2005
7,743,063 Methods and systems for delivering software via a network 12 2005
7,689,929 Methods and systems of providing information to computer users 17 2005
7,346,610 Methods and systems of providing information to computer users 35 2005
7,392,253 System and method for secure full-text indexing 1 2005
7,725,834 Designer-created aspect for an electronic form template 16 2005
7,360,171 Methods and systems of providing information to computer users 1 2005
8,010,515 Query to an electronic form 5 2005
8,078,740 Running internet applications with low rights 3 2005
7,543,228 Template for rendering an electronic form 27 2005
8,200,975 Digital signatures for network forms 2 2005
8,108,430 Carousel control for metadata navigation and assignment 0 2005
7,613,996 Enabling selection of an inferred schema part 25 2005
8,245,270 Resource based dynamic security authorization 0 2005
7,979,856 Network-based software extensions 6 2005
7,882,565 Controlled access to objects or areas in an electronic document 3 2005
7,861,297 Reducing security threats from untrusted code 0 2005
7,251,834 Filtering a permission set using permission requests associated with a code assembly 0 2005
7,792,964 Running internet applications with low rights 4 2005
7,310,822 Filtering a permission set using permission requests associated with a code assembly 1 2005
8,001,459 Enabling electronic documents for limited-capability computing devices 4 2005
7,779,343 Opening network-enabled electronic documents 0 2006
7,490,109 System and method for offline editing of data files 19 2006
8,074,231 Configuration of isolated extensions and device drivers 0 2006
8,032,898 Kernel interface with categorized kernel objects 0 2006
7,882,317 Process isolation using protection domains 3 2006
7,900,134 Authoring arbitrary XML documents using DHTML and XSLT 10 2006
7,991,902 Reputation-based authorization decisions 0 2006
8,185,737 Communication across domains 1 2007
7,900,248 Access control negation using negative groups 1 2007
7,971,230 System and methods providing enhanced security model 0 2007
7,865,477 System and method for real-time validation of structured data files 10 2007
8,074,217 Methods and systems for delivering software 6 2007
7,971,139 Correlation, association, or correspondence of electronic forms 6 2007
7,925,621 Installing a solution 9 2008
8,438,636 Secure and extensible policy-driven application platform 0 2008
8,078,960 Rendering an HTML electronic form by applying XSLT to XML using a solution 1 2008
8,046,683 Structural editing with schema awareness 2 2009
8,429,756 Security restrictions on binary behaviors 0 2010
8,161,563 Running internet applications with low rights 0 2010
8,429,522 Correlation, association, or correspondence of electronic forms 0 2011
8,335,929 Communication across domains 0 2012
 
CASHEDGE, INC. (14)
7,797,207 Method and apparatus for analyzing financial data 18 2000
7,383,223 Method and apparatus for managing multiple accounts 59 2000
8,249,983 Method and apparatus for managing transactions 0 2001
7,203,845 Multiple trust modes for handling data 18 2002
8,086,508 Method and apparatus for delegating authority 12 2002
7,536,340 Compliance monitoring method and apparatus 15 2003
7,873,677 Method and apparatus for retrieving and processing data 11 2005
7,505,937 Method and apparatus for implementing financial transactions 14 2007
7,321,874 Method and apparatus for implementing financial transactions 42 2007
7,321,875 Method and apparatus for implementing financial transactions 38 2007
7,657,761 Multiple trust modes for handling data 13 2007
8,266,065 Method and apparatus for managing transactions 0 2007
8,255,336 Method and apparatus for managing transactions 0 2007
8,229,850 Method and apparatus for managing transactions 0 2007
 
AVENTAIL LLC (8)
8,255,973 Provisioning remote computers for accessing resources 0 2004
7,827,590 Controlling access to a set of resources in a network 3 2005
8,005,983 Rule-based routing to resources through a network 3 2007
7,779,469 Provisioning an operating environment of a remote computer 3 2007
7,770,222 Creating an interrogation manifest request 4 2007
7,698,388 Secure access to remote resources over a network 13 2007
8,090,827 Secure access to remote resources over a network 2 2010
8,301,769 Classifying an operating environment of a remote computer 0 2010
 
INTERNATIONAL BUSINESS MACHINES CORPORATION (8)
6,526,513 Architecture for dynamic permissions in java 42 1999
7,020,842 Method and apparatus for providing dynamic assistance for disabled user interface resources 3 2000
7,702,785 Methods, systems and computer program products for selectively allowing users of a multi-user system access to network resources 0 2001
7,448,066 Application server object-level security for distributed computing domains 0 2002
7,958,150 Method for implementing fine-grained access control using access restrictions 0 2004
7,761,905 Method and system for assigning access rights in a computer system 1 2005
7,865,521 Access control for elements in a database object 0 2005
7,810,132 Application server object-level security for distributed computing domains 0 2008
 
MCAFEE, INC. (8)
6,499,109 Method and apparatus for securing software distributed over a network 24 1999
6,986,160 Security scanning system and method utilizing generic IP addresses 5 2001
6,988,209 Uniform resource locator (URL)-based secure download system and method 11 2002
7,480,941 System, method and computer program product for performing one or more maintenance tasks on a remotely located computer connected to a server computer via a data network 4 2005
8,438,499 Indicating website reputations during user interactions 0 2006
8,429,545 System, method, and computer program product for presenting an indicia of risk reflecting an analysis associated with search results within a graphical user interface 0 2007
8,296,664 System, method, and computer program product for presenting an indicia of risk associated with search results within a graphical user interface 2 2007
8,321,791 Indicating website reputations during website manipulation of user information 1 2009
 
CHECK POINT SOFTWARE TECHNOLOGIES, INC. (7)
7,546,629 System and methodology for security policy arbitration 33 2002
6,850,943 Security system and methodology for providing indirect access control 36 2003
8,136,155 Security system with methodology for interprocess communication control 0 2003
7,788,726 System and methodology providing information lockbox 1 2003
7,590,684 System providing methodology for access control with cooperative enforcement 7 2004
7,540,013 System and methodology for protecting new computers by applying a preconfigured security update policy 3 2004
7,725,737 System and methodology providing secure workspace environment 2 2005
 
GOOGLE INC. (4)
6,691,230 Method and system for extending Java applets sand box with public client storage 106 1998
6,449,723 Method and system for preventing the downloading and execution of executable objects 18 1998
6,918,043 Method and system for preventing the downloading and execution of executable objects 3 2002
8,347,083 Encrypted cross-origin communication via an intermediary 0 2012
 
BEACHHEAD SOLUTIONS, INC. (3)
7,543,144 System and method for lost data destruction of electronic data stored on portable electronic devices 7 2004
7,540,016 System and method for lost data destruction of electronic data stored on a portable electronic device which communicates with servers that are inside of and outside of a firewall 2 2004
8,037,304 System and method for lost data destruction of electronic data stored on portable electronic devices 0 2009
 
INFOASSURE, INC. (3)
7,739,501 Cryptographic key construct 2 2005
7,715,565 Information-centric security 8 2005
7,711,120 Cryptographic key management 2 2005
 
SPRINT COMMUNICATIONS COMPANY L.P. (3)
7,636,852 Call center dashboard 3 2004
8,006,298 Fraud detection system and method 3 2006
8,195,819 Application single sign on leveraging virtual local area network identifier 1 2009
 
CEELOX, INC. (2)
7,962,755 System and method for biometrically secured, transparent encryption and decryption 0 2006
7,818,395 Method and apparatus for interfacing with a restricted access computer system 1 2006
 
FACEBOOK, INC. (2)
6,832,321 Public network access server having a user-configurable firewall 23 1999
8,011,000 Public network access server having a user-configurable firewall 1 2004
 
INVENSYS SYSTEMS, INC. (2)
7,761,923 Process control methods and apparatus for intrusion detection, protection and network hardening 0 2005
7,614,083 Process control methods and apparatus for intrusion detection, protection and network hardening 2 2005
 
PENNAR SOFTWARE CORPORATION (2)
6,845,448 Online repository for personal information 52 2000
8,117,644 Method and system for online document collaboration 0 2010
 
BANK OF AMERICA CORPORATION (1)
8,316,453 Dynamic community generator 0 2009
 
BEACHEAD SOLUTIONS, INC. (1)
8,185,735 System and method for lost data destruction of electronic data stored on portable electronic devices 0 2011
 
BRIGHT SUN TECHNOLOGIES (1)
7,320,073 Secure method for roaming keys and certificates 1 2003
 
CIENA CORPORATION (1)
6,983,362 Configurable fault recovery policy for a computer system 41 2000
 
CISCO TECHNOLOGY, INC. (1)
6,467,049 Method and apparatus for configuration in multi processing engine computer systems 8 1999
 
GEORGIA TECH RESEARCH CORPORATION (1)
8,019,079 Asymmetric cryptosystem employing paraunitary matrices 0 2007
 
HEWLETT-PACKARD DEVELOPMENT COMPANY, L.P. (1)
7,065,644 System and method for protecting a security profile of a computer system 6 2001
 
HON HAI PRECISION INDUSTRY CO., LTD. (1)
7,246,201 System and method for quickly accessing user permissions in an access control list 2 2004
 
NETWORKS ASSOCIATES TECHNOLOGY, INC. (1)
6,789,202 Method and apparatus for providing a policy-driven intrusion detection system 111 1999
 
NOKIA CORPORATION (1)
7,444,624 Method for the secure interpretation of programs in electronic devices 1 2005
 
OKI DATA CORPORATION (1)
8,134,754 Image forming apparatus, image forming system, and image processing apparatus 0 2006
 
ORACLE INTERNATIONAL CORPORATION (1)
7,788,489 System and method for permission administration using meta-permissions 0 2003
 
PROXIMA THERAPEUTICS, INC. (1)
7,516,399 Structured-document path-language expression methods and systems 13 2004
 
SBC KNOWLEDGE VENTURES, L.P. (1)
7,565,430 Firewall switching system for communication system applications 1 2003
 
SECURITYPROFILING, INC. (1)
8,266,699 Multiple-path remediation 0 2004
 
SONY CORPORATION (1)
8,090,764 Communication system, communication apparatus, communication method, storage medium, and package medium 1 2002
 
SYMANTEC CORPORATION (1)
7,694,139 Securing executable content using a trusted computing platform 4 2002
 
TELEFONAKTIEBOLAGET LM ERICSSON (PUBL) (1)
7,934,197 Maintaining code integrity in a central software development system 0 2006
 
TREND MICRO INCORPORATED (1)
6,910,128 Method and computer program product for processing signed applets 12 2000
 
VERIZON LABORATORIES INC. (1)
7,035,817 Electronic catalog method 7 1999
 
OTHER [CHECK PATENT PROFILE FOR ASSIGNMENT INFORMATION] (4)
8,407,683 Software uninstallation system, method and computer program product 0 2006
8,443,354 Detecting new or modified portions of code 0 2006
8,448,218 Method and apparatus for a cryptographically assisted computer system designed to deter viruses and malware via enforced accountability 0 2008
8,443,429 Integrated sign on 0 2010

Maintenance Fees

Fee Large entity fee small entity fee micro entity fee due date
11.5 Year Payment $7400.00 $3700.00 $1850.00 May 20, 2013
Fee Large entity fee small entity fee micro entity fee
Surcharge - 11.5 year - Late payment within 6 months $160.00 $80.00 $40.00
Surcharge after expiration - Late payment is unavoidable $700.00 $350.00 $175.00
Surcharge after expiration - Late payment is unintentional $1,640.00 $820.00 $410.00