Information security – Prevention of unauthorized use of data including prevention... – Access control
Reexamination Certificate
2008-01-08
2008-01-08
Moazzami, Nasser (Department: 2136)
Information security
Prevention of unauthorized use of data including prevention...
Access control
C713S176000
Reexamination Certificate
active
07318238
ABSTRACT:
A system and method that allows a page (e.g., Internet content) author to associate a set of security settings on any desired element (e.g., tag) of the page. When the page is interpreted, each element is handled based on its associated security settings, allowing a page author to request that any element be considered differently with respect to security than other elements, and/or differently relative to the page that contains it. A negotiator determines the actual settings for elements to ensure that security cannot be compromised by tagging an element such that it has the ability to do more than desired. The negotiator also determines the settings for elements that do not have specifically associated security data, e.g., elements without specified security settings may inherit security settings from higher elements, or the top-level container. The settings may correspond to those of a security zone.
REFERENCES:
patent: 4984272 (1991-01-01), McIlroy et al.
patent: 5428529 (1995-06-01), Hartrick et al.
patent: 5729710 (1998-03-01), Magee et al.
patent: 5771383 (1998-06-01), Magee et al.
patent: 5812394 (1998-09-01), Lewis et al.
patent: 5931900 (1999-08-01), Notani et al.
patent: 5941947 (1999-08-01), Brown et al.
patent: 5974549 (1999-10-01), Golan
patent: 5983348 (1999-11-01), Ji
patent: 5995945 (1999-11-01), Notani et al.
patent: 6006228 (1999-12-01), McCollum et al.
patent: 6029245 (2000-02-01), Scanlan
patent: 6041309 (2000-03-01), Laor
patent: 6158007 (2000-12-01), Moreh et al.
patent: 6266681 (2001-07-01), Guthrie
patent: 6272641 (2001-08-01), Ji
patent: 6311269 (2001-10-01), Luckenbaugh et al.
patent: 6321334 (2001-11-01), Jerger et al.
patent: 6345361 (2002-02-01), Jerger et al.
patent: 6366912 (2002-04-01), Wallent et al.
patent: 6457130 (2002-09-01), Hitz et al.
patent: 6460079 (2002-10-01), Blumenau
patent: 6473800 (2002-10-01), Jerger et al.
patent: 6516308 (2003-02-01), Cohen
patent: 6519647 (2003-02-01), Howard et al.
patent: 6526513 (2003-02-01), Shrader et al.
patent: 6546546 (2003-04-01), Van Doorn
patent: 6553393 (2003-04-01), Eilbott et al.
patent: 6594664 (2003-07-01), Estrada et al.
patent: 6598046 (2003-07-01), Goldberg et al.
patent: 6601233 (2003-07-01), Underwood
patent: 6629081 (2003-09-01), Cornelius et al.
patent: 6636889 (2003-10-01), Estrada et al.
patent: 6662341 (2003-12-01), Cooper et al.
patent: 6691153 (2004-02-01), Hanson et al.
patent: 6701376 (2004-03-01), Haverstock et al.
patent: 6724406 (2004-04-01), Kelley
patent: 6728762 (2004-04-01), Estrada et al.
patent: 6748425 (2004-06-01), Duffy et al.
patent: 6754702 (2004-06-01), Kennelly et al.
patent: 6772167 (2004-08-01), Snavely et al.
patent: 6772393 (2004-08-01), Estrada et al.
patent: 6785790 (2004-08-01), Christie et al.
patent: 6792113 (2004-09-01), Ansell et al.
patent: 6820261 (2004-11-01), Bloch
patent: 6823433 (2004-11-01), Barnes et al.
patent: 6850252 (2005-02-01), Hoffberg
patent: 6854039 (2005-02-01), Strongin et al.
patent: 6871321 (2005-03-01), Wakayama
patent: 6898618 (2005-05-01), Slaughter et al.
patent: 6931532 (2005-08-01), Davis et al.
patent: 6941459 (2005-09-01), Hind et al.
patent: 6959336 (2005-10-01), Moreh et al.
patent: 6961849 (2005-11-01), Davis et al.
patent: 6978367 (2005-12-01), Hind et al.
patent: 7010681 (2006-03-01), Fletcher et al.
patent: 2001/0013096 (2001-08-01), Luckenbaugh et al.
patent: 2001/0039622 (2001-11-01), Hitz et al.
patent: 2001/0043237 (2001-11-01), Schmieder
patent: 2001/0049671 (2001-12-01), Joerg
patent: 2001/0054049 (2001-12-01), Maeda et al.
patent: 2002/0010679 (2002-01-01), Felsher
patent: 2002/0019936 (2002-02-01), Hitz et al.
patent: 2002/0046290 (2002-04-01), Andersson et al.
patent: 2002/0087479 (2002-07-01), Malcolm
patent: 2002/0107889 (2002-08-01), Stone et al.
patent: 2002/0107890 (2002-08-01), Gao et al.
patent: 2003/0023445 (2003-01-01), Trifon
patent: 2003/0023880 (2003-01-01), Edwards et al.
patent: 2003/0025727 (2003-02-01), Rath et al.
patent: 2003/0051027 (2003-03-01), Aupperle et al.
patent: 2003/0061482 (2003-03-01), Emmerichs
patent: 2003/0061512 (2003-03-01), Flurry et al.
patent: 2004/0078577 (2004-04-01), Feng et al.
patent: 2004/0187031 (2004-09-01), Liddle
patent: 2004/0199603 (2004-10-01), Tafla et al.
patent: 2001325249 (2001-11-01), None
Anupam et al., Secure Web Scripting, Nov.-Dec. 1998, IEEE Internet.
Wayback Machine, Security Attribute, Apr. 17, 2001, Microsoft, http://web.archive.org/web/20010417082017/http://msdn.microsoft.com/workshop/author/dhtml/reference/properties/security.asp.
CERT.org, Understanding Malicious Content Mitigation for Web Developers, Feb. 2000, http://www.cert.org/tech—tips/malicious—code—mitigation.html.
Ned Snell, Sams Teach Yourself the Internet in 24 Hours, Third Edition, Jun. 1999, accessed at http://proquest.safaribooksonline.com/0672315890/ch08lev1sec3□□.
Oasis, Oasis Security Services Use Cases and Requirements, May 30, 2001.
Oasis, oasis SSTC SAML Protocols Schema Discussion, Jul. 23, 2001.
Selkirk, Using XML security mechanisms, Jul. 2001, BT Technology Journal.
Selkirk, XML and security, Jul. 2001, BT Technology Journal.
Oasis, Bindings and profiles for the Oasis Security Assertion Markup Language (SAML), Jan. 10, 2002.
Hallam-Baker, X-TASS: XML Trust Assertion Service Specification, Jan. 5, 2001, Verisign.
Vuong et al., Managing security policies in a distributed environment using eXtensible Markup Language (XML), 2001, IEEE.
Bertino et al., On Specifying Security Policies for web documents with an XML-based language, May 2001, ACM.
Edwards, Mark Joseph, “The Guide to Internet Explorer Security Zones” Jan. 2000.
Sliwa, Carol, “Microsoft Bolsters Internet Explorer Security” Network World Fusion, Jun. 9, 1997, www.nwfusion.com/archive/1997/97-06-09micr-a.html.
Dujari Rajeev
Elvanoglu Ferhan
Cervetti David Garcia
Microsoft Corporation
Moazzami Nasser
LandOfFree
Security settings for markup language elements does not yet have a rating. At this time, there are no reviews or comments for this patent.
If you have personal experience with Security settings for markup language elements, we encourage you to share that experience with our LandOfFree.com community. Your opinion is very important and Security settings for markup language elements will most certainly appreciate the feedback.
Profile ID: LFUS-PAI-O-2747886