Electrical computers and digital processing systems: multicomput – Computer-to-computer session/connection establishing – Network resources access controlling
Reexamination Certificate
1998-07-15
2001-05-29
Najjar, Saleh (Department: 2154)
Electrical computers and digital processing systems: multicomput
Computer-to-computer session/connection establishing
Network resources access controlling
C709S200000, C709S203000, C709S217000, C709S219000, C709S225000, C709S246000
Reexamination Certificate
active
06240455
ABSTRACT:
BACKGROUND OF THE INVENTION
1. Field of the Invention
The present invention relates to a server and, in particular, to a technique for controlling access to information stored in a server (hereinafter called server information).
2. Description of the Related Art
In recent years, a world wide web (WWW) system has been spread in which a signal (uniform resource locator: URL) requesting user's desired server information (contents) is sent from a client to a server and the server transmits the required server information to the client.
In such a system, in the case of limiting a user's access to the server information, the access control function of an operating system (OS) operated on the server is usually utilized. For example, when the attribute of a file in which server information is recorded is set so as not to be able to be read by a certain user, the user can not receive the file from the server even if a signal requesting the server information recorded in the file is sent from the client to the server. In this manner, it is easily performed to limit a predetermined user's access to the server information by utilizing the access control function of the OS.
However, according to such a technique, each of users can not be determined as to whether or not the each user has access right to server information based on the access control until the each user actually accesses the server information. Accordingly, when server information includes many link information each linked to server information to which a user has no access right, the user is obliged to repeatedly and wastefully access to server information, whereby there arise a problem that the user must waste time upon accessing.
In most cases, the server information to which some users have no access right is generally important data. According to the aforesaid technique, at least the presence of the server information to which the access right is not permitted is known to the users. Thus, some of the users may illegally try to access the server to which the access right is not permitted at any cost.
One of general techniques for controlling the access to a file is a file management method disclosed in JP-A 4-280317. According to this method, when a user has no access right to a file, an icon corresponding to the file is not displayed on a display device. Thus, according to this technique, the presence of a file to which a user has no access right can be concealed from the user.
However, when such a method is applied as it is to a distributing system of hyper link information such as a WWW system, even if the presence of other hyper link information can be concealed, display information to be generated from the original hyper link information is reduced. As a consequence, there arises a problem that all information originally intended by a person who prepared the server information can not be transmitted from a server.
SUMMARY OF THE INVENTION
The present invention has been made in view of the aforesaid problem. An object of the present invention is to provide a server which is able to, without reducing an amount of display information of server information to be transmitted, restrain the access method to other server information associated with the server information from being leaked to users in a predetermined range.
In order to solve the aforesaid problem, the server according to the first invention includes an access permission determining section for determining, when link information is contained in server information to be transmitted to a client, whether or not a user of the client is permitted to access to the server information which is represented as a destination of a link by the link information; and a link information deletion section for transmitting, when it is determined that the user of the client is rejected to access by the access permission determining section, the server information to the client after deleting the link information from the server information.
The server according to the second invention is arranged in a manner that, in the server according to the first invention, the access permission determining section determines a class of user's authorization and determines depending on the class of the user's authorization thus determined whether or not the user is permitted to access to the server information.
The server according to the third invention includes a link destination changing section for changing, when server information is transmitted to a predetermined user, a predetermined link information contained in the server information in such a manner that the link information represents, as a destination of the link, second server information different from first server information represented by the link information.
The server according to the fourth invention is arranged in a manner that, in the server according to the third invention, the link destination changing section includes: a memory section which correspondingly stores therein, with respect to the predetermined user, server information specifying information for specifying the first server information and alternative server information specifying information for specifying the second server information to be transmitted to the user in place of the first server information; and a link information changing section for changing, when a user of a client is the predetermined user and server information to be transmitted to the client includes link information representing the first server information specified by the server information specifying information stored in the memory section as a destination of a link, the link information in a manner that the link information represents as a new destination of a link the second server information specified by the alternative server information specifying information stored in the memory section in correspondence with the server information specifying information corresponding to the link information.
The server according to the fifth invention is arranged in a manner that, in the server according to the third invention, the predetermined user is determined on a basis of a class of user's authorization.
The server according to the sixth invention comprises a memory section for correspondingly storing a key word and server information specifying information for specifying server information, and a link information adding section for adding, when original server information has the key word stored in the memory section at a time of transmitting the server information to a client, to the original server information with link information representing as a destination of a link, the server information specified by the server information specifying information stored in the memory section in correspondence with the key word.
The server according to the seventh invention is arranged in a manner that, in the server according to the sixth invention, the memory section further includes user class information representing a class of a user, and the link information adding section adds when server information has the key word stored in the memory section at a time of transmitting the server information to a client and when a user corresponds to the class represented by the user class information stored in the memory section, to the original server information with link information representing as a destination of a link, the server information specified by the server information specifying information stored in the memory section in correspondence with the key word.
The server according to the eighth invention is arranged in a manner that, in the server according to the seventh invention, the memory section further stores a different user class information and a different server information specifying information in correspondence with a key word.
REFERENCES:
patent: 5678041 (1997-10-01), Baker et al.
patent: 5717860 (1998-02-01), Graber et al.
patent: 5751956 (1998-05-01), Kirsch
patent: 5761683 (1998-06-01), Logan et al.
patent: 5764906 (1998-06-01), Edelstei
Kamasaka Hitoshi
Shiraki Hiroaki
Torato Masashi
Leydig , Voit & Mayer, Ltd.
Mitsubishi Denki & Kabushiki Kaisha
Najjar Saleh
LandOfFree
Internet server providing link destination deletion,... does not yet have a rating. At this time, there are no reviews or comments for this patent.
If you have personal experience with Internet server providing link destination deletion,..., we encourage you to share that experience with our LandOfFree.com community. Your opinion is very important and Internet server providing link destination deletion,... will most certainly appreciate the feedback.
Profile ID: LFUS-PAI-O-2442079