Access control system for an ISP hosted shared email server

Electrical computers and digital processing systems: multicomput – Computer conferencing – Demand based messaging

Reexamination Certificate

Rate now

  [ 0.00 ] – not rated yet Voters 0   Comments 0

Details

C709S229000, C713S152000

Reexamination Certificate

active

06374292

ABSTRACT:

FIELD OF THE INVENTION
The present invention relates in general to client/server data communication systems and, more particularly, to a mail server included in an electronic mail system for use within a client/server data processing system. More particularly still, the present invention is directed towards a method and apparatus for defining a virtual domain in an email system.
BACKGROUND OF THE INVENTION
Computer systems are well known in the art and have become a business staple and are also found in many homes. One feature available to the business world is that of using electronic mailing (email) to send and receive messages and other information to and from one another in a business setting. Similarly, home computers, such as desk tops or laptops, and other information devices, such as personal digital assistants (PDAs), allow telecommuting such that a user can connect to the user's work server and down load and upload messages.
The email system allows clients of a network system, which is maintained by a server system, to send messages or data from one user to another. In order to minimize disk space and requirements as well as to maximize functionality and consistency of the electronic mailing engine used in the network system, the engine is typically located on the server and is merely accessed by a client in order to send messages or retrieve messages to or from another user or client on the server system. In this way, the client system typically allows the user to perform such operations as composing, updating, and sending messages while the server in such a system provides, in part, a server based message repository as well as providing message transmission and reception functions for the user at the client level.
A traditional email system
100
, configured to operate in what is referred to as a consumer host mode, is illustrated in FIG.
1
. The email system
100
includes a number of consumers and/or businesses
102
-
1
(“abc.com”) through
102
-n (“xyz.gov”) each of which is coupled to a service provider (SP)
104
(“isp.net”). Traditionally, the service provider (SP)
104
provides the various consumers and/or businesses
102
with just an unprotected IP router. The consumers and/or businesses
102
also operate and maintain their own application servers, including the email server, DNS server, and (if needed) LDAP server (not shown). For their own protection, each of the consumers and/or businesses
102
must operate through a firewall that filters out undesirable packets and insulates the organization's internal network from the Internet. Notice that for many organizations, especially small ones, the email server may actually be the firewall system.
In the email system
100
, those consumers and/or businesses
102
-
1
through
102
-n who wish to read their mail must be connected to a service provider (SP) email server
106
. The SP
106
also operates an email mailbox
108
, and a DNS server
110
that provides the following services, a primary master server for the SP's own domain (ISP.net), to designate as the root server for all consumers and/or businesses, act as a primary master server for consumers and/or businesses who do not wish to maintain their own public DNS server, and as a secondary server for consumers and/or businesses who prefer to maintain their own public server.
As part of the services provided by the SP
106
, an SMTP relay host
112
that is managed by the SP offers offer a number of value added services, for which the SP may charge additional fees. In some cases, the relay host can be configured to allow the relay host to accept and hold the consumer's email when their mail server is down. However, unfortunately, the relay host imposes a significant management burden on the SP since in some cases, consumer email may live on this server for an indefinite time raising issues of backup and failure recovery. If one of the consumer servers fails because of being swamped, for example, then the consumer's email may roll over to the SP's relay host. Because of this, most SPs do not offer a relay host for those consumers and/or businesses that are hosting their own email server. The SP also provides a directory service in the form of the LDAP Directory server that is located at the consumer's site, which can be operated by the consumer. In this way, most organizations do not expose their LDAP servers to the public network for security reasons.
In the example shown in
FIG. 1
, a mail user in ABC, Inc. (which lawfully owns its DNS domain name abc.com, but relies on the ISP isp.net to host its email) desiring to send and receive mail uses the domain name username@abc.com even though his mailserver is really mailhost.isp.net. It also means that any user in the abc.com domain, connects to a mailhost in the domain abc.com—for example mail.abc.com—to access his/her mail.
Since the email system
100
requires a separate mail server to be supported by the SP
106
for each of the domains abc.com through xyz.gov, although well understood and easy to manage, the email system
100
is not cost effective for small domains. In addition, as the number of domains increases, the management of the individual services becomes increasingly unwieldy. Internet service providers (ISPs) have a growing interest in hosting email services for always larger and more numerous organizations. Many businesses see the ability to farm out email services as a very attractive cost-saving idea. It is therefore desirable that an email service provider be able to offer email services to multiple organizations each of which has their own virtual domain and to support the ability to define such domains in the directory and host them on a shared mail server. Thus, an email architecture that can support a single mail server which, in turn, can support many different domains associated with consumers and/or businesses is desirable.
However, when the users within a domain are granted a particular set of user level services, that set of user level services must be a proper subset of the associated allowed set of domain services.
Therefore, what is desired is a set of precedence rules that govern the granting of user level for a particular domain having a set of domain services.
SUMMARY OF THE INVENTION
To achieve the foregoing, and in accordance with the purpose of the present invention, methods for granting a user level service based upon a set of allowed domain level services is provided. In accordance with one aspect of the present invention, a method is disclosed where a requested user level service is granted or not based won a set of allowed domain level services. The user level service is requested and a subsequent determination is made whether or not the requested user level service is a member of a proper subset of the set of allowed domain level services. If the requested service is determined to be a member of the proper subset of allowed domain level services, then the requested user level service is granted. In so doing, the granted user level services becomes a member of a set of allowed user level services.


REFERENCES:
patent: 5263157 (1993-11-01), Janis
patent: 5649099 (1997-07-01), Theimer et al.
patent: 5706349 (1998-01-01), Aditham et al.
patent: 5751791 (1998-05-01), Chen et al.
patent: 5765033 (1998-06-01), Miloslavsky
patent: 5768505 (1998-06-01), Gilchrist et al.
patent: 5835727 (1998-11-01), Wong et al.
patent: 5884046 (1999-03-01), Antonov
patent: 5913210 (1999-06-01), Call
patent: 5920697 (1999-07-01), Masters et al.
patent: 5938729 (1999-08-01), Cote et al.
patent: 6012088 (2000-01-01), Li et al.
patent: 6105027 (2000-08-01), Schneider et al.
patent: 6131095 (2000-10-01), Low et al.
patent: 6154738 (2000-11-01), Call
patent: 6163805 (2000-12-01), Silva et al.
patent: 6175832 (2001-01-01), Luzzi et al.
patent: 6199062 (2001-03-01), Byrne et al.
Newton, H., Newton's Telecom Dictionary, Telecom Books, pp. 246-247, Oct. 1998.*
International Search Report from Corresponding PCT Application PCT/US01/07298.
Internatio

LandOfFree

Say what you really think

Search LandOfFree.com for the USA inventors and patents. Rate them and share your experience with other people.

Rating

Access control system for an ISP hosted shared email server does not yet have a rating. At this time, there are no reviews or comments for this patent.

If you have personal experience with Access control system for an ISP hosted shared email server, we encourage you to share that experience with our LandOfFree.com community. Your opinion is very important and Access control system for an ISP hosted shared email server will most certainly appreciate the feedback.

Rate now

     

Profile ID: LFUS-PAI-O-2873008

  Search
All data on this website is collected from public sources. Our data reflects the most accurate information available at the time of publication.