GB2355905B - System and method for providing security for a network site - Google Patents

System and method for providing security for a network site

Info

Publication number
GB2355905B
GB2355905B GB0020389A GB0020389A GB2355905B GB 2355905 B GB2355905 B GB 2355905B GB 0020389 A GB0020389 A GB 0020389A GB 0020389 A GB0020389 A GB 0020389A GB 2355905 B GB2355905 B GB 2355905B
Authority
GB
United Kingdom
Prior art keywords
client
information
access
sewer
request
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Expired - Fee Related
Application number
GB0020389A
Other versions
GB2355905A (en
GB0020389D0 (en
Inventor
David Robert Wray
David John Blanchfield
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
AUTHORISZOR Ltd
Original Assignee
AUTHORISZOR Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by AUTHORISZOR Ltd filed Critical AUTHORISZOR Ltd
Publication of GB0020389D0 publication Critical patent/GB0020389D0/en
Priority to PCT/GB2000/003873 priority Critical patent/WO2001044904A2/en
Priority to AU2000276742A priority patent/AU2000276742A1/en
Publication of GB2355905A publication Critical patent/GB2355905A/en
Application granted granted Critical
Publication of GB2355905B publication Critical patent/GB2355905B/en
Anticipated expiration legal-status Critical
Expired - Fee Related legal-status Critical Current

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/10Network architectures or network communication protocols for network security for controlling access to devices or network resources
    • H04L63/102Entity profiles
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/30Authentication, i.e. establishing the identity or authorisation of security principals
    • G06F21/31User authentication
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L67/00Network arrangements or protocols for supporting network services or applications
    • H04L67/01Protocols
    • H04L67/02Protocols based on web technology, e.g. hypertext transfer protocol [HTTP]
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F2221/00Indexing scheme relating to security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F2221/21Indexing scheme relating to G06F21/00 and subgroups addressing additional information or applications relating to security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F2221/2127Bluffing
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L69/00Network arrangements, protocols or services independent of the application payload and not provided for in the other groups of this subclass
    • H04L69/30Definitions, standards or architectural aspects of layered protocol stacks
    • H04L69/32Architecture of open systems interconnection [OSI] 7-layer type protocol stacks, e.g. the interfaces between the data link level and the physical level
    • H04L69/322Intralayer communication protocols among peer entities or protocol data unit [PDU] definitions
    • H04L69/329Intralayer communication protocols among peer entities or protocol data unit [PDU] definitions in the application layer [OSI layer 7]

Abstract

The invention relates to electronic security over a network, and in particular to a client/server arrangement. Each time a client 00, 05 wishes to access information, e.g. a web site, it generates a client identifier key (CIK) based on the software/hardware configuration of the client's terminal for verification at the sewer 37. Requests for information by the client take the form of a pseudo (or dummy) uniform resource locator (PURL), which appear the same as ordinary URLs but define tasks to be performed in response to the request rather than the address of the requested information. The sewer profiles the security level of the client and that of the requested information and determines whether the client should have access. If access is denied, instead of notifying the client of this outcome, the server generates and transmits a substitute dummy web page 42 which may contain harmless public information. In this way, an unauthorised client is unaware that the request has been unsuccessful.
GB0020389A 1999-10-05 2000-08-21 System and method for providing security for a network site Expired - Fee Related GB2355905B (en)

Priority Applications (2)

Application Number Priority Date Filing Date Title
PCT/GB2000/003873 WO2001044904A2 (en) 2000-08-21 2000-10-06 System and method for providing security for a network site
AU2000276742A AU2000276742A1 (en) 2000-08-21 2000-10-06 System and method for providing security for a network site

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
US41223999A 1999-10-05 1999-10-05

Publications (3)

Publication Number Publication Date
GB0020389D0 GB0020389D0 (en) 2000-10-04
GB2355905A GB2355905A (en) 2001-05-02
GB2355905B true GB2355905B (en) 2002-03-20

Family

ID=23632201

Family Applications (1)

Application Number Title Priority Date Filing Date
GB0020389A Expired - Fee Related GB2355905B (en) 1999-10-05 2000-08-21 System and method for providing security for a network site

Country Status (1)

Country Link
GB (1) GB2355905B (en)

Families Citing this family (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US7352867B2 (en) * 2002-07-10 2008-04-01 General Instrument Corporation Method of preventing unauthorized distribution and use of electronic keys using a key seed
GB2394805A (en) 2002-10-31 2004-05-05 Hewlett Packard Co Determining when to revoke a key in an ancestral hierarchy key distribution system
GB2394803A (en) 2002-10-31 2004-05-05 Hewlett Packard Co Management of security key distribution using an ancestral hierarchy

Citations (7)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US5481700A (en) * 1991-09-27 1996-01-02 The Mitre Corporation Apparatus for design of a multilevel secure database management system based on a multilevel logic programming system
WO1997015008A1 (en) * 1995-06-06 1997-04-24 At & T Ipm Corp. System and method for database access control
WO1998007250A1 (en) * 1996-08-16 1998-02-19 Net 1 Incorporated Secure transmission of sensitive information over a public/insecure communications medium
WO1998038759A2 (en) * 1997-02-14 1998-09-03 International Business Machines Corporation Generic user authentication for network computers
EP0863453A1 (en) * 1997-03-07 1998-09-09 Xerox Corporation Shared-data environment in which each file has independent security properties
JPH1153310A (en) * 1997-07-31 1999-02-26 Taisei Corp Device and method for data transmission
JP2000047987A (en) * 1998-07-30 2000-02-18 Fuji Photo Film Co Ltd Method and device for outputting data, and storage medium

Patent Citations (7)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US5481700A (en) * 1991-09-27 1996-01-02 The Mitre Corporation Apparatus for design of a multilevel secure database management system based on a multilevel logic programming system
WO1997015008A1 (en) * 1995-06-06 1997-04-24 At & T Ipm Corp. System and method for database access control
WO1998007250A1 (en) * 1996-08-16 1998-02-19 Net 1 Incorporated Secure transmission of sensitive information over a public/insecure communications medium
WO1998038759A2 (en) * 1997-02-14 1998-09-03 International Business Machines Corporation Generic user authentication for network computers
EP0863453A1 (en) * 1997-03-07 1998-09-09 Xerox Corporation Shared-data environment in which each file has independent security properties
JPH1153310A (en) * 1997-07-31 1999-02-26 Taisei Corp Device and method for data transmission
JP2000047987A (en) * 1998-07-30 2000-02-18 Fuji Photo Film Co Ltd Method and device for outputting data, and storage medium

Also Published As

Publication number Publication date
GB2355905A (en) 2001-05-02
GB0020389D0 (en) 2000-10-04

Similar Documents

Publication Publication Date Title
FI981132A (en) Preventing unauthorized use of the Service
DE60315914T2 (en) Ad hoc security access to documents and services
US7721339B2 (en) Method for controlling access to digital content and streaming media
ATE249122T1 (en) APPARATUS AND METHOD WITH SECURE AND PUBLIC ACCESS
PL363770A1 (en) Method and system designed to authenticate user for sub-location of network location
WO2003007102A3 (en) Modular authentication and authorization scheme for internet protocol
GB2360107A (en) Maintaining security in a distributed computer network
CN1478348A (en) Secure session management and authentication for WEB sites
WO2001054375A3 (en) Method and system for decreasing the response time
MY148705A (en) Method and system for securely provisioning a client device
WO2005065008A3 (en) System and method for managing a proxy request over a secure network using inherited security attributes
EP0862105A3 (en) Method of and apparatus for providing secure distributed directory services and public key infrastructure
GB0420024D0 (en) System,method and apparatus for use in monitoring or controlling internet access
AU2001235765A1 (en) Method and apparatus for internet web site accreditation
FR2806234B1 (en) SYSTEM PROVIDING SOFTWARE APPLICATIONS TO A MULTITUDE OF REMOTE SYSTEMS THROUGH A NETWORK
WO2003067905A3 (en) Method and system for providing third party authentification of authorization
TW200607302A (en) An architecture and design for central authentication and authorization in an on-demand utility environment using a secured global hashtable
US7711117B1 (en) Management of a communication network and the migration of mobile agents
BR0010522A (en) Communication device and host computer intrusion protection methods and remote entity communication method in a communications system
EP1467533A3 (en) Home device authentication system and method
EP1562101A2 (en) Digital rights management method and system for content copyright protection
CN109274579A (en) It is a kind of that user's uniform authentication method is applied based on wechat platform more
WO2001041401A3 (en) System and method for encoding user information in domain names
GB2355324B (en) System and method for a virtual page publication system
GB2355905B (en) System and method for providing security for a network site

Legal Events

Date Code Title Description
PCNP Patent ceased through non-payment of renewal fee

Effective date: 20050821