GB2360368A - Confirming access of data stored in a remote database - Google Patents

Confirming access of data stored in a remote database Download PDF

Info

Publication number
GB2360368A
GB2360368A GB0005113A GB0005113A GB2360368A GB 2360368 A GB2360368 A GB 2360368A GB 0005113 A GB0005113 A GB 0005113A GB 0005113 A GB0005113 A GB 0005113A GB 2360368 A GB2360368 A GB 2360368A
Authority
GB
United Kingdom
Prior art keywords
data
query
user
identification data
output
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Granted
Application number
GB0005113A
Other versions
GB0005113D0 (en
GB2360368B (en
Inventor
John Reavil Williams
Colin Patrick Shanley
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
TRUSTMARQUE INTERNAT Ltd
Original Assignee
TRUSTMARQUE INTERNAT Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by TRUSTMARQUE INTERNAT Ltd filed Critical TRUSTMARQUE INTERNAT Ltd
Priority to GB0005113A priority Critical patent/GB2360368B/en
Publication of GB0005113D0 publication Critical patent/GB0005113D0/en
Priority to PCT/GB2001/000917 priority patent/WO2001065406A2/en
Priority to AU2001237558A priority patent/AU2001237558A1/en
Publication of GB2360368A publication Critical patent/GB2360368A/en
Application granted granted Critical
Publication of GB2360368B publication Critical patent/GB2360368B/en
Anticipated expiration legal-status Critical
Expired - Fee Related legal-status Critical Current

Links

Classifications

    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F16/00Information retrieval; Database structures therefor; File system structures therefor
    • G06F16/90Details of database functions independent of the retrieved data types
    • G06F16/95Retrieval from the web
    • G06F16/958Organisation or management of web site content, e.g. publishing, maintaining pages or automatic linking

Abstract

A computer system comprises a communications network 3.1-3.m, 7 allowing data transfer between user stations 1.1-1.n and a main server 5. When a query is entered at a user station it is transferred, together with user identification data stored within the user station, to main server 5 via the network. The main server processes the query against a first database 20. If the query is fulfilled, additional data associated with the user identification data and held in a second database 24 is accessed and database 24 is updated with a record of the query. This additional data is known to the user and is displayed to the user, thus verifying that database 24 has been accessed. The invention is applicable to verifying the authorised status of websites held on servers 3.1-3.m. For this, the query includes the URL of a web-site to be verified, database 20 includes the URLs of authorised web-sites, and the additional data may be the URLs of sites visited recently by the user and time-stamps of those visits.

Description

2360368 A METHOD AND APPARATUS FOR CONFIRMING ACCESS OF DATA STORED ON A
REMOTE DATABASE
The present application concerns method and apparatus for confirming access of data stored on a remote database. In particular embodiments of the present invention concern a method and apparatus confirming access of data stored on a remote database via the Internet. 10 With the growth of the number of Internet websites available, a need has arisen for a means by which users can distinguish between sites which fulfil certain standards in terms of the content and services which they 15 provide and those sites which do not. one way in which this has been achieved in the prior art is by organisations reviewing the content and services provided by websites and contacting websites which fulfil that organization defined criteria. The organisations then 20 provide computer graphic data files to be included within the web pages which the websites display so that approved sites may display graphics or icons indicating the websites approved status. 25 A problem with identifying authorised websites by the
2 inclusion within web pages of graphical indications that they fulfil the criteria set down by independent organisations is that unscrupulous web designers may copy the graphical displays from authorised sites to give the appearance to users that their sites are also authorised.
In order to overcome this problem some systems have developed means by which a user may select a graphic icon within a display which then causes a user's computer to connect via the Internet to another server which has stored thereon further information about approved websites which can then be viewed by a user.
However, although preventing simple copying of graphical indications of authorised status, this additional level of confirmation that the website is authorised gives rise to further problems. In particular, if the amount of additional data provided when an icon is selected is not very large, it is possible for an unscrupulous website to mimic the conformation procedure by including within their server's programs which generate similar displays to those provided on the separate server. However, if in order to prevent unscrupulous websites from mimicking the appearance of a confirmation, large amounts of data is included within a confirmation display this increases the 3 time required to download such confirmation data and therefore dissuades users from bothering to access the confirmation data at all.
A system is therefore required which enables users to obtain confirmation that data is being obtained from a third party when attempting to obtain confirmation that a website is authorised which does not require the download of large amounts of data and which it is not possible for an unscrupulous website to mimic.
In accordance with one aspect of the present invention there is provided a computer network comprising:
a plurality of user stations operable to cause the generation of query data, each of said user stations further being arranged to store user data; a main server comprising a database storing data; and a communications network being operable to permit transfer of data between said plurality of user stations and said main server, wherein said main server further comprises:
means for associating items of user data with additional data; said main server being arranged on receipt of query 4 data and user identification data corresponding to identification data stored on a user station, to output via said communications network to said user station, display data if said query data corresponds to any of said data within said database, said display data comprising said additional data associated in said registration database, with user identification data corresponding to said received user identification data.
In accordance with this aspect of the present invention by storing and outputting additional data associated with an item of user data, if a generated query corresponds to data within the main server, a means is provided for users to be provided with additional data, which they know is only available from the main server and hence provides confirmation that an access of the main server has been performed.
In accordance with another aspect of the present invention there is provided a method of confirming the access of data on a remote database via a computer network comprising a plurality of user stations; a main server and communications network comprising the steps of:
providing a database in said main server; storing user identification data in at least one of said plurality of user stations; storing additional data in said main server in association with user identification data stored on said at least one server station; generating a query for said database utilizing one of said at least one server station and transmitting said query to said main server; and outputting said additional data associated with said user data of stored on the utilized user station in dependance upon the processing of said query by said database.
Other aspects of the present invention will become apparent with reference to the accompanying description and drawings in which:
Figure 1 is a schematic block diagram of a computer network embodying the present invention; Figure 2 is a schematic block diagram of an exemplary data structure for records stored within a site database; Figure 3 is a schematic block diagram of an exemplary data structure for a user record within a registration 6 database; Figure 4 is a flow diagram of the processing of a data transfer program; Figure 5 is an illustration of an exemplary initial user display; Figure 6 is a flow diagram of the processing of a control module of a main server; Figure 7 is an illustration of an exemplary site confirmation display; and is Figure 8 is an illustration of an exemplary user warning display. Figure 1 is a schematic block diagram of a computer network embodying the present invention. The computer 20 network comprises a plurality of user stations 1.1-1.n that are connected to a plurality of client servers 3.13. m and a main server 5 via the Internet 7 which enables data to be transferred between the user stations 1.1-1.n, the plurality of client servers 3.1-3.m and the main 25 server 5.
7 The plurality of user stations 1.1-1.n each comprise conventional computer apparatus which are connected to a display and a user input device such as a keyboard or mouse (not shown in Figure 1). Stored within the memory of each of the user stations 1.1-1.n is a browser program 8 comprising a conventional browser program such as Netscape Navigator or Microsoft Explorer. Additionally, stored within the memories of some of the user stations 1.1 are items of encrypted user identification data 9.
The plurality of client servers 3.1-3.m each have stored therein display data 10 such as hypertext mark-up (HTML) scripts for dispatch via the Internet 7 to the user stations 1.1-1.n to cause the browser programs 8 of the user stations 1.1-1.n to generate and display screen displays and user interfaces on the displays of the user stations 1.1-1.n. The plurality of client servers 3.1 3.m also each have stored therein a data transfer program 12 for coordinating the transfer of data between the client server 3. 1; 3.m the main server 5 and the plurality of user stations 1.1-1.n as will be described in detail later.
In this embodiment, the main server 5 has stored therein a control module program 18 for controlling the overall 8 processing of the main server 5; a site database 20 containing site records associating address data the form of universal resource locator (URL) addresses with commentary data relating to the content of data and services available from a client server 3.1;3.m having that URL; a site processing module 22 for processing data received from client servers 3.1-3.m to select and output records from the site database 20; a registration database 24 associating each encrypted user identification data stored on user stations 1.1 with data identifying URL addresses and time data; and a registration module 26 for generating records for storage within the registration database 24.
is In use, additional information about the content of data and services provided by the client servers 3.1-3.m can be obtained by a user inputting a request via a user interface generated by the browser program 8 within a user station 1.1. The request is then transferred via a client server 3.1;3.m into the main server 5 together with a copy of encrypted user identification data 9 where such data is stored in the memory of the user station 1.1. Data associated with the URL of the server 3.1;3.m transferring the request is then output from the site database 20 together with data associated with the 9 received encrypted user identification data 9 within the registration data 24. The output data is then dispatched to the user station 1.1 where it is displayed.
Receipt of data associated with the URL of a server acts to confirm that data associated with the URL of the sever 3.1;3.m is stored within the site database 20. Receipt of data associated with the received user identification acts to provide confirmation that the data related to a 10 server URL has been obtained as a result of the interrogation of the main server 5 and has not been obtained in any other way. In this embodiment of the present invention, when data is is output from the main server 5, the control module 18 causes the record in the registration database 24 associated with received user identification data 9 to be amended to include data indicative of the received URL and the current time. The records associated with 20 encrypted user data 9 within the registration database 24 therefore each comprise data indicative of the time and URL address of each request made by a specific user to obtain data associated with a URL from the site database 20 of the main server 5. Thus in this embodiment the 25 additional data output together with requested data is easily recognisable to a user and changes each time a request for data from the site database 20 is made by a user. The present embodiment therefore provides a means by which the retrieval of data by a client server 3.1,3.m f rom the main server 5 or one occasion does not enable the client server 3.1,3.m to mimic retrieval of data from the main server 5 at a later date.
Prior to describing in detail the processing of the data transfer program 12 and the control module 18 of this embodiment of the present invention, data structures for records within the site database 20 and registration database 24 stored within the main server 5 will now be described with reference to Figures 2 and 3.
Figure 2 is a schematic block diagram of an exemplary data structure for records stored within the site database 20 of the main server 5.
In this embodiment of the present invention, site records within the site database 20 comprise a site URL 28 which is associated with commentary data 29 comprising data that is an independent assessment of the content of data and services provided by a client server 3.1,3.m associated with the site URL 28 of that site record.
11 Figure 3 is a schematic block diagram of an exemplary data structure for a user record within the registration database 24. A user record in this embodiment of the invention comprises encrypted user identification data 30, corresponding to encrypted user identification data 9 stored within one of the user stations 1. 1-1. n, and one or more visit records 32 each comprising a URL and a time stamp. As will be described in detail later whenever a user requests data from the site database 20 of the main server 5 via a client server 3.1-3.3m, the user record having encrypted user identification data 30 corresponding to the encrypted user identification data 9 stored within the user station 1.1;l.n from which a request originated is amended to incorporate a further visit record comprising the URL of the client server 3.1,3.m through which a user's request has passed and a time stamp corresponding to the current time.
The processing of a data transfer program 12 of a client server 3.1;3.m will now be described in detail with reference to Figures 4 and 5.
Figure 4 is a flow diagram of the processing of a data transfer program 12 of a client server 3.1;3.m.
Initially, when a user station 1.1;l.n connects to a 12 server 3.1;3.m via the Internet 7 the data transfer program 12 causes (S1) an initial display interface to be selected from the display data 10 stored within the server 3.1;3.m. This initial user display interface is then dispatched from the client server 3.1;3.m to the user station 1.1;l.n via the Internet 7. When the initial user display interface is received by the user station 1.1;l.n it is shown on the screen of the user station.
Figure 5 is an illustration of an exemplary initial user display. In this embodiment the display comprises a main display 100 containing information provided from the client server 3.1,3.m in which is incorporated a confirm site status button 102 which can be selected by a user of the user station 1.1;l.n using an input device such as a keyboard or mouse.
When data is entered using input device connected to a user station 1.1;l.n the browser program 8 within the user station 1.1;l.n causes the entered data to be transmitted to the client server 3.1;3.m to which the user station 1.1,1.n is currently connected via the Internet 7. By dispatching to a user station 1.1;l.n an initial user display 100 which incorporates a confirm 13 site status button 102, a means is therefore provided by which users may input a request to obtain confirmation that the URL of the client server 3.1;3.m to which they are currently connected is stored within the site records of the site database 20 of the main server 5.
After an initial user display interface has been dispatched to a user station 1.1;l.n from the client server 3.1,3.m the data transfer program 12 then (S2) awaits the receipt of data from a user station 1.1;l.n via the Internet 7. When data is received from a user station 1.1;l.n the data transfer program 12 then (S3) determines whether the data received from the user station 1.1;l.n is indicative of a user's selection of the confirm site status button 102 of the initial user display 100. If the data received from a user station 1. 1; 1. n is not indicative of the selection of the confirm site status button 102, this means that the user has not requested confirmation that a record within the site database 20 of the main server 5 corresponds to the URL of the client server 3.1;3.m to which the user station 1.1-1.n is currently connected and the processing of the data transfer program 12 comes to an end.
If data received from a user station 1.1;l.n is 14 indicative of the selection of a conf irm. site status button 102 in an initial user display, the data transfer program 12 then (S4) causes a request to be dispatched from the client server 3.1;3.m via the Internet 7 to the user station 1.1;l.n from which the request has been received to request the output from the user station 1.1;l.n of stored encrypted user identification data 9, if such data is present or alternatively output data indicative of there being no stored identification data 9.
After requesting retrieval of stored encrypted user identification data 9 the data transfer program 12 then awaits a reply from the user station 1.1;l.n. When a reply is received from a user station 1.1;l.n via the Internet 7, the data transfer program 12 then deterniines (SS) whether the data received comprises encrypted user identification data 9 retrieved from a user station 1.1 or data indicating that no user identification data 9 is stored within the user station 1.n from which a request for confirmation of site status has been received.
If the data transfer program 12 determines that data received from the Internet 7 is indicative of there being no encrypted user identification data 9 stored within the user station 1.n from which a request has been received, the data transfer program 12 then causes an instruction to be sent to the user station 1. n to cause the user station 1.n to be connected directly to the main server 5 via the Internet 7. The processing of the data transfer program 12 then comes to an end.
If the data transfer program 12 determines that data received from a user station 1.1 is encrypted user identification data 9, the data transfer program 12 then (S7) causes the received encrypted user identification data 9 to be sent together with the URL for the client server 3.1;3.m to be dispatched to the main server 5.
The data transfer program 12 then waits (S8) for receipt is of display data dispatched from the main server 5 following the processing of the URL and encrypted user identification data 9. When data has been received, the display data is then incorporated into a user display which is dispatched by the client server 3.1;3.m via the Internet 7 to the user station 1.1 from which a request has been received. The dispatched display is then shown to a user on the screen of the user station 1. 1. The processing of the data transfer program 12 then finishes.
As will be described in detail later following receipt of 16 encrypted user identif ication data 9 and a URL the main server 5 processes the received data and causes to be output to a client server 3.1;3.m either a display comprising commentary on the content or services provided by a client server 3.1 together with data retrieved from the records of the registration database 24 indicating the last three sites that a specific user has chosen to verify or alternatively outputs display data comprising a warning that the URL of the client server 3.1;3.m from which encrypted user identification data 9 has been dispatched is not included within the site database 20.
The processing of the control module 18 of the main server will now be described.
is Figure 6 is a f low diagram of the processing of the control module 18 of a main server 5 in accordance with this embodiment of the present invention following receipt of data via the Internet 7.
Initially (S10) the control module 18 determines whether the data received from the Internet 7 comprises encrypted user identification data 9 together with a URL or whether the data comprises a request instruction from a user station 1.1,1.n to connect directly to the main server 5.
17 If the data received from the Internet 7 comprises a request from a user station 1.1;l.n to connect directly to the main server 5 such a request will have been generated as a result of a client server 3.1,3.m determining that the user station 1.n does not have stored therein encrypted user identification data 9. In such a case the control module 18 then (S11) invokes the registration module 26 to cause to be generated within the registration database 24 a new user record comprising newly generated encrypted user identification data 30 and three visit records comprising the URL for the main server 5 and the current time and date. The registration module 26 then (S12) causes a copy of the newly generated encrypted user identification data 30 of the new record to be dispatched to the user station 1.n from which the original request to connect to the main server 5 originated for storage in the memory of that user station I.n. Thus in this way following a determination by the client server 3.1;3.m that there is no encrypted user data 9 stored with a specific user station 1.n, by causing that the user station 1.n to connect to the main server 5 a means is provided to cause encrypted user identification data 9 to be written to the user station 1.n corresponding to a user identification 30 within a 18 newly generated user record within the registration database so that in the future that user station 1.n may be used to access the content of the site database 20 of the main server 5.
If the control module 18 of the main server 5 determines that data received from the Internet 7 does not relate to a request to register this will have occurred because the data transfer program 12 of a client server 3.1,3.m will have transferred to the main server 5 data indicative of its URL together with encrypted user data 9 retrieved from a user station 1.1. The control module 18 the invokes the site processing module 22 to determine (S13) whether any of the site URLs 28 of the site records is within the site database 20 correspond to the URL received from the client server 3.1;3.m.
If the site processing module 22 determines that one of the site records within the site database 20 does have a site URL 28 corresponding to the URL received from the client server 3.1,3.m. The site processing module 22 then (S14) causes a user record from within the registration database 24 having user identification data corresponding to the encrypted user identification data 9 received from the client server 3.1;3.m to be 19 retrieved f rom the registration database 24 and amended to incorporate a further visit record comprising the received URL and the current time and date.
In this way the site processing module 22 causes the user records within the registration database 24 to include the URLs of which servers 3.1,3.m a user has accessed and then requested to be confirmed by selecting the confirmed site status button 102 in an initial user display. As 10 the sites which have been verif ied by a user will be known to that user but are only stored within a computerised form within the registration database 24 of the main server 5 the inclusion of data f rom this registration database 24 within the output of a client is server is indicative of the client server having been permitted access to the registration database 26 and hence -indirectly provides conf irmation to a user that the URL of the client server is stored within a site record in the site database 20. 20 After the site processing module 22 has caused the user record associated within received encrypted user identification data 9 to be updated to include an additional visit record corresponding to the received URL 25 and current time and date the site processing module 22 then (S15) causes to be dispatched to the client server 3.1,3.m from which a URL and encrypted user identif ication data 9 ha s been received, display data comprising a copy of the commentary data 29 of the site record within the site database 20 having an associated site URL 28 corresponding to the received URL from the client server 3.1,3.m together with copies of the three visit records associated with user identification data 30 corresponding to the encrypted user identification data received from the client server 3.1,3.m which comprise URL's and time stamps having the three most recent times associated with them. This data is then dispatched to the client server 3. 1; 3.m for incorporation within a user display as will now be described. The processing of the control module 18 and the site precessing module 22 then comes to an end.
Figure 7 is an illustration of an exemplary site confirmation display in accordance with this embodiment of the present invention. The display 110 contains a written commentary 112 corresponding to the commentary data 29 of the site record having a site URL 28 corresponding to the URL of the client server 3.1;3.m to which a user station 1.1;l.n is connected to via the Internet 7. Beneath the displayed commentary data 12 are 21 three URL's 113 each associated with a time and date 114 being URLIs associated with the three most recent times and dates in visit records associated with encrypted user identification data 9 received from a client server within user records within the registration database 24.
Thus in this way since the commentary data displayed to a user 112 is displayed together with data retrieved from within the registration database 24 the fact that data must have been passed to the client server 3.1;3.m from the main server 5 is therefore made apparent to a user.
Furthermore, since the data within the site records in the site database 20 and the user records in the registration database 24 is only made available when data corresponding to a client server URL is stored within a site record stored in the main server 5, a user is also therefore provided with confirmation that the client server 3.1;3.m to which the user station is connected fulfills whatever requirements have been laid down for entry of a record for the client servers URL within the site database 20.
Returning to Figure 6, if following receipt of encrypted user identification data 9 and a URL, the site processing module 22 determines (S13) that none of the site records 22 within the site database 20 has a site URL 28 corresponding to a site URL received from a client server 3. 1,3.m. This causes the site processing module to cause to be dispatched (S16) display data comprising a warning message to warn a user that the URL of the client server 3. 1, 3. m to which the user station is currently connected via the Internet 7 is not contained within the site database 20. The processing of the site processing module 22 and the control module 18 then finishes.
Figure 8 is an exemplary illustration of a user warning display generated from data output by a main server 5 when the main server determines that the URL received from a client server 3.1;3.m does not correspond to a site URL 28 within a site record in the site database 20.
In this embodiment the user warning display comprises a written warning 120 displayed within a window generated by the browser program 8 within a user station 1.1,1.n.
The data for generating a user warning display does not however incorporate the references to previously visited and verify client servers as indicated within one or more visit records 32 associated with encrypted user identification data 30 in user records in the registration database 24.
23 Following the determination (S13) of the site processing module 22 that a received URL does not correspond to any of the URL's 28 to the site records within the site database 20, no access is made to the records stored within the registration database 24. Data indicative of the visit records 32 associated with a received encrypted user identification data 9 is therefore not included with the display data output to the client server 3.1;3.m.
As the content of the visit records 32 is not available to the client server 3.1;3.m in any other way it is not possible for the client server 3.1;3.m to output to a user station 1.1,1.n a false site confirmation interface incorporating such data. As the client servers 3.1-3.m are unable to generate a site confirmation display for dispatch to the user stations 1.1;l.n independently of the main server 5, the receipt of a site confirmation display indicating the content of the visit records 32 by a user station 1.1;l.n therefore provides confirmation that a record within the site database 20 corresponds to the URL of the client server 3.1;3.m to which they are currently connected via the Internet 7; and that this confirmation has been generated by accessing the databases 20,24 stored within the main server 5.
24 Although in the previously described embodiment apparatus has been described which is arranged to output to a user station 1.1;l.n data indicative of the three most recent client servers that a user has selected for confirmation, it will be appreciated that other data could be used to provide an indication to a user that access of data within a main server 5 has occurred. Thus for example instead of outputting the content of three visit records associated with encrypted user identification data 9 any other number of visit records associated with encrypted user identification data 9 could be output. Instead of selecting visit records on the basis of the time data associated within a visit record other criteria could be used instead or in addition to the time data to select which visit records are incorporated in data output to a client server. For example, the site processing module 22 could be arranged to only output visit records corresponding to different URLs. Although in the previously described embodiment the content of a user
record is only updated following selection of a confirm site status button 102 within an initial user interface, the data transfer module 12 stored within client servers 3.1-3.m and the control module 18 of the main server 5 could be arranged to cause records within the registration database 24 to be automatically updated whenever a user station accesses display data 10 stored within a client server 3.1;3.m.
In such a system, the content of the visit records 32 associated with encrypted user identification data 9 would correspond to data indicative of the client servers 3.1-3.m visited by a user. The data transfer module 12 and the site processing module 22 could also additionally be arranged to include within visit records additional data indicative of the actions such as the making of a purchase via a website on the client server 3.1;3.m for inclusion within a visit record.
Although in the above described embodiment data stored within the registration database 24 comprised encoded user identification data 30 and one or more visit records 32. other data could be stored in addition to this data.
Thus for example, instead of the registration module 26 automatically creating a user record the registration module 26 could be arranged to cause to be generated within a user station 1.1;l.n a user interface for inputting data indicative of personal user details such as name, address, age etc for inclusion within a user record. Additionally, the registration module 26 could be arranged to identify the processor number of a 26 processor within the user station 1. 1; 1. n to which it is connected via the Internet 7 to include such data within a user record available for retrieval when confirmation of the status of a client server 3.1;3.m is requested.
Although not a preferred embodiment the site processing module 22 could be arranged to select and output only this personal data as an indication of confirmation that access has been made to the databases of the main server 5. In such a system no visit records would need to be included within a user record associated with encrypted user identification data 30 as the personal data alone would provide an indication that access of the databases within the main server 5 had occurred. However, if a system is provided which is not arranged to alter the content of user records, once a user has confirmed the status of a client server 3.1;3.m. If that client server 3.1;3.m ceases to fulfil the requirements for inclusion within the site database 20 the impression that records for that client sever 3.1;3.m are still within the site database 20 may be given since the data associated with encrypted user identification data 9 will have been made available to the server 3.1;3.m at the earlier time.
Although in the previous embodiment apparatus has been 27 described in which confirmation of the authorised status of a client server 3. 1 has been provided by means of including commentary data within an output display, it will be appreciated that other means could be provided to indicate to a user that a client server 3.1;3.m is in some way authorised. Thus for example the display data dispatched from a client server to a user station could comprise solely the data retrieved from the record associated with received encrypted user identification data 9.
Although the embodiments of the invention described with reference to the drawings comprise computer apparatus and processes performed in computer apparatus, the invention also extends to computer programs, particularly computer programs on or in a carrier, adapted for putting the invention into practice. The program may be in the form of source or object code or in any other form suitable for use in the implementation of the processes according to the invention. The carrier be any entity or device capable of carrying the program.
For example, the carrier may comprise a storage medium, such as a ROM, for example a CD ROM or a semiconductor ROM, or a magnetic recording medium, for example a floppy 28 disc or hard disk. Further, the carrier may be a transmissible carrier such as an electrical or optical signal which may be conveyed via electrical or optical cable or by radio or other means.
When a program is embodied in a signal which may be conveyed directly by a cable or other device or means, the carrier may be constituted by such cable or other device or means.
Alternatively, the carrier may be an integrated circuit in which the program is embedded, the integrated circuit being adapted for performing, or for use in the performance of, the relevant processes.
29

Claims (31)

  1. A computer network comprising:
    one or more user stations each having stored thereon respective identification data, each of said user stations further being operable to generate query data; main server; and communications network for transferring data between said user stations and said main server; said main server comprising:
    data storage means for storing records associating identification data corresponding to identification data stored on said user stations in association with further data; and is query processing means for processing query data received from said user stations, via said communications network, said query processing means being arranged to output to a user station from which query data has been received via said communications network, said further data associated by a record within said storage means with said respective identification data stored on said user station in dependence upon the processing of said query by said query processing means.
  2. 2. A computer network in accordance with claim 1, further comprising selection means for selecting on the basis of the content of said further data a portion of said further data, said query processing means being arranged to output to a user station said selected portion of said further data in dependence upon said processing of query by said processing means.
  3. 3. A computer network in accordance with claim 1 or 2, further comprising one or more user stations not having stored thereon identification data, wherein said query processing means is arranged upon receipt of query data from said one or more user stations not having stored thereon identification data, to generate and output via said communications network identification data for storage on said user station from which query data has been received, said query processing means further being arranged to store said generated identification data together with further data as a record in said data storage means.
  4. 4. A computer network in accordance with claim 3, wherein said query processing means further comprises user input generation means for generating upon receipt of query data from a user station not having stored thereon identification data, a user interface in said 31 user station arranged to enable the input and transmission via said communications network of additional data, wherein said query processing means is arranged upon receipt of said additional data to store said newly generated identification data in association with further data comprising said additional data.
  5. 5. A computer network in accordance with any preceding claim, wherein said query processing means comprises database means associating data indicative of a plurality of queries with output data, wherein said query processing means is arranged to output said output data together with said further data when data indicative of a query is received via said communications network is corresponding to data within said database.
  6. 6. A computer network in accordance with any of claims 1 to 4, wherein said query processing means comprises database means storing data indicative of a plurality of queries, wherein said query processing means is arranged to output said further data if received query data corresponds to data stored within said database means.
  7. 7. A computer network in accordance with any preceding claim, wherein said communication network comprises a 32 plurality of client servers and communication means for transferring data between said user stations, said main server and said client servers, wherein said client servers each comprise query input interface generation means for generating user query input interfaces within said user stations wherein said client servers are arranged to generate query data for processing by said processing means following receipt of data input via said query input interfaces in said user stations.
  8. 8. A computer network in accordance with any preceding claim, wherein said query processing means is arranged to modify said further data stored in association with identification data identifying a user station from which is query data has been received by including within said further data, data indicative of said query.
  9. 9. A computer network in accordance with any of claims 1 to 7, wherein each of said client servers further comprise data storage means and means for determining identification data stored in user stations accessing data stored within said client server, each of said client servers being arranged to transmit identification data stored on a user station determined to be accessing data stored within the client server to said main server, 33 wherein said main server f urther comprises update means for amending upon receipt of said identification data from a client server further data associated with said identification data within said data storage means, to incorporate data indicative of the client server from which identification data has been received.
  10. 10. A computer network in accordance with claim 8 or claim 9, wherein said main server further comprises time determination means for determining the time further data within said data storage means is amended wherein data indicative of time of amendment is incorporated in said further data stored within said data storage means.
  11. 11. Computer apparatus for outputting data in response to received query data, comprising:
    association means for storing records comprising items of identification data in association with output data; receiving means for receiving query data together with an item of identification data; and query processing means for processing query data received by said receiving means, said query processing means being arranged to output output data associated by a record within said association means with said item of 34 identification data received together with said query data if said processing by said processing means fulf ills a predefined condition.
  12. 12. Apparatus in accordance with claim 11, wherein said query processing means comprises a database having records stored therein, wherein said predef ined condition comprises said query data corresponding to a record stored within said database. 10
  13. 13. Apparatus in accordance with claim 12, wherein said records in said database further comprise additional output data associated with query data, wherein said query processing means is arranged to output said 15 additional output together with said output data associated with said item of identification data received with said query data.
  14. 14. Apparatus in accordance with any of claims 11 to 13, 20 further comprising selection means for selecting a portion of output data associated by a record within said association means with an item of identification data, wherein said query processing means is arranged to output selected output data associated by a record within said 25 association means with said item of identification data received together with query data if said processing by said processing means fulf ills said predefined condition.
  15. 15. Apparatus in accordance with any of claims 11 to 14, wherein said receiving means is arranged to receive data indicative of a request for generation of an item of identification data, said apparatus further comprising means for generating within said association means a record comprising a further item of identification data in association with output data; and means for outputting said identification data.
  16. 16. Apparatus in accordance with claim 15, further comprising input interface generation means for is generating an input interface enabling the input of data, said identification data generation means being arranged to generate records for storage within said association means in association with output data comprising data input via said input interface genera-ted by said input interface generation means.
  17. 17. Apparatus in accordance with any of claims 11 to 16, further comprising data update means for updating output data associated with identification da-ta corresponding to identification data received by said receiving means, 36 wherein said data update means is arranged to amend output data associated with received identification data to include data indicative of query data received with said identification data by said receiving means.
  18. 18. Apparatus in accordance with any of claims 11 to 16, wherein said receiving means is arranged to receive update data together with an item of identification data; said apparatus further comprising update means for amending output data associated with identification data associated with received identification data received by said receiving means utilizing said update data.
  19. 19. A method of obtaining output data comprising the is steps of:
    providing one or more user stations each having stored thereon respective identification data; providing data storage means for storing records associating identification data corresponding to identification data stored on said user stations in association with output data; inputting query data via one of said user stations; processing query data input via said user station and outputting to a user station from which query data has been input, said output data associated by a record 37 within said storage means with said respective identification data stored on said user station in dependence upon the processing of said query data.
  20. 20. A method in accordance with claim 19, further comprising the steps of:
    selecting on the basis of the content of said output data a portion of said output data, and outputting to a user station said selected portion of said output data in dependence upon said processing of query data.
  21. 21. A method in accordance with claim 19 or 20, further comprising the steps of:
    amending said output data associated with identification data corresponding to identification data stored on a user station utilized to input query data to incorporate data indicative of said query data input via said user station.
  22. 22. A computer network for verifying the authorised status of websites comprising:
    a plurality of user stations operable to generate query data, at least some of said user stations having stored thereon different items of identification data; a main server; and 38 a communications network for transferring data between said plurality of user stations and said main server; wherein said main server comprises:
    first database means storing records associating output data with each of said different items of identification data stored on said at least some of said user stations; second database means storing records identifying authorised websites; and receiving means for receiving via said communications network query data generated by said user stations; said main server being arranged upon receipt of query data by said receiving means to output said output data associated with an item of identification stored on the user station utilized to generate said query data, if said query data corresponds to a record within said second database means.
  23. 23. A computer network in accordance with claim 22, wherein said communications network comprises a plurality of client servers each storing websites accessible by said plurality of user stations, wherein said query data comprises data identifying said client servers.
    39
  24. 24. A computer network in accordance with claim 23, wherein said main server is arranged upon receipt of said query data to amend said output data associated with an item of identification data corresponding to an item of identification data stored on the user station utilized to generate said query data to include within said output data, data indicative of said query data.
  25. 25. A computer network in accordance with claim 23, wherein said plurality of client servers are each operable to identify items of identification data stored on user stations accessing websites stored on said client servers, said main server, on receipt of identification data identified by said client server, being arranged to update said record associating output data with said identification data to include data indicative of said client sever.
  26. 26. A storage medium storing computer implementable instructions for generating within a programmable computer, apparatus in accordance with any of claims 11 to 18.
  27. 27. A storage medium in accordance with claim 26, comprising a disc.
  28. 28. A disc in accordance with claim 27, comprising a magnetic, optical or magnetic optical disc.
  29. 29. A storage medium in accordance with claim 26, comprising an electrical signal in a communications network.
  30. 30. A computer system for obtaining data indicative of the verified authorised status of websites as described herein with reference to the accompanying drawings.
  31. 31. A method of obtaining data indicative of the verified authorised status of websites as described herein with reference to the accompanying drawings.
GB0005113A 2000-03-02 2000-03-02 A method and apparatus for confirming access of data stored on a remote database Expired - Fee Related GB2360368B (en)

Priority Applications (3)

Application Number Priority Date Filing Date Title
GB0005113A GB2360368B (en) 2000-03-02 2000-03-02 A method and apparatus for confirming access of data stored on a remote database
PCT/GB2001/000917 WO2001065406A2 (en) 2000-03-02 2001-03-02 A method and apparatus for certifying access to a remote database
AU2001237558A AU2001237558A1 (en) 2000-03-02 2001-03-02 A method and apparatus for confirming access of data stored on a remote database

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
GB0005113A GB2360368B (en) 2000-03-02 2000-03-02 A method and apparatus for confirming access of data stored on a remote database

Publications (3)

Publication Number Publication Date
GB0005113D0 GB0005113D0 (en) 2000-04-26
GB2360368A true GB2360368A (en) 2001-09-19
GB2360368B GB2360368B (en) 2002-05-29

Family

ID=9886870

Family Applications (1)

Application Number Title Priority Date Filing Date
GB0005113A Expired - Fee Related GB2360368B (en) 2000-03-02 2000-03-02 A method and apparatus for confirming access of data stored on a remote database

Country Status (3)

Country Link
AU (1) AU2001237558A1 (en)
GB (1) GB2360368B (en)
WO (1) WO2001065406A2 (en)

Citations (8)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
WO1995016947A1 (en) * 1993-12-14 1995-06-22 Hughes Aircraft Company Method for providing mutual authentication of a user and a server on a network
US5671354A (en) * 1995-02-28 1997-09-23 Hitachi, Ltd. Method of assisting server access by use of user authentication information held in one of servers and a method of assisting management user account for use of servers
EP0862105A2 (en) * 1997-02-28 1998-09-02 Xcert Software, Inc. Method of and apparatus for providing secure distributed directory services and public key infrastructure
WO1998040809A2 (en) * 1997-03-13 1998-09-17 Cha! Technologies, Inc. Method and system for secure online transaction processing
US5875296A (en) * 1997-01-28 1999-02-23 International Business Machines Corporation Distributed file system web server user authentication with cookies
US5995965A (en) * 1996-11-18 1999-11-30 Humetrix, Inc. System and method for remotely accessing user data records
US6018724A (en) * 1997-06-30 2000-01-25 Sun Micorsystems, Inc. Method and apparatus for authenticating on-line transaction data
GB2349244A (en) * 1999-04-22 2000-10-25 Visage Developments Limited Providing network access to restricted resources

Family Cites Families (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
EP0449242A3 (en) * 1990-03-28 1992-10-28 National Semiconductor Corporation Method and structure for providing computer security and virus prevention
US5983273A (en) * 1997-09-16 1999-11-09 Webtv Networks, Inc. Method and apparatus for providing physical security for a user account and providing access to the user's environment and preferences

Patent Citations (8)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
WO1995016947A1 (en) * 1993-12-14 1995-06-22 Hughes Aircraft Company Method for providing mutual authentication of a user and a server on a network
US5671354A (en) * 1995-02-28 1997-09-23 Hitachi, Ltd. Method of assisting server access by use of user authentication information held in one of servers and a method of assisting management user account for use of servers
US5995965A (en) * 1996-11-18 1999-11-30 Humetrix, Inc. System and method for remotely accessing user data records
US5875296A (en) * 1997-01-28 1999-02-23 International Business Machines Corporation Distributed file system web server user authentication with cookies
EP0862105A2 (en) * 1997-02-28 1998-09-02 Xcert Software, Inc. Method of and apparatus for providing secure distributed directory services and public key infrastructure
WO1998040809A2 (en) * 1997-03-13 1998-09-17 Cha! Technologies, Inc. Method and system for secure online transaction processing
US6018724A (en) * 1997-06-30 2000-01-25 Sun Micorsystems, Inc. Method and apparatus for authenticating on-line transaction data
GB2349244A (en) * 1999-04-22 2000-10-25 Visage Developments Limited Providing network access to restricted resources

Also Published As

Publication number Publication date
AU2001237558A1 (en) 2001-09-12
WO2001065406A3 (en) 2002-02-14
GB0005113D0 (en) 2000-04-26
GB2360368B (en) 2002-05-29
WO2001065406A2 (en) 2001-09-07

Similar Documents

Publication Publication Date Title
JP4021941B2 (en) Method and system for customizing a sales service on a network communicating via a hypertext tagging convention
US7730082B2 (en) Remote module incorporation into a container document
US7272655B2 (en) Delivering electronic content
KR100885772B1 (en) Method and system for registering and retrieving product informtion
US6850913B2 (en) Method for administering certification data
WO2007070403A2 (en) Module specification for a module to be incorporated into a container document
WO2007070404A2 (en) Customized container document modules using preferences
KR20090016745A (en) Message catalogs for remote modules
KR101061330B1 (en) Method and system for replacing hyperlinks in web pages
EP1573608A2 (en) Method and apparatus for providing predefined feedback
US20020046278A1 (en) Method and system for global log on in a distributed system
EP1118950A1 (en) Process for personalized access to the internet network
US20010049706A1 (en) Document indexing system and method
JP2002109379A (en) Method and system for managing electronic information distribution, recording medium and program signal
US7099929B1 (en) System and method for transferring information in a hypertext transfer protocol based system
EP1120722A2 (en) Method and apparatus for generating categorization data
GB2360368A (en) Confirming access of data stored in a remote database
US7636786B2 (en) Facilitating access to a resource of an on-line service
KR100393252B1 (en) Method and System for managing translation service
WO2000056015A1 (en) A method and system for providing a service to a client node
CA2422878C (en) System and method for facilitating information requests
KR100620830B1 (en) Facilitating access to a resource of an on-line service
GB2358262A (en) Generating classification data
EP1207467A2 (en) Highlighting world wide web documents of special interest in a displayed session history list of web documents received during a web access session at a receiving web display station
KR20010016332A (en) System and method for providing search engine by using banner

Legal Events

Date Code Title Description
PCNP Patent ceased through non-payment of renewal fee