Electrical computers and digital processing systems: support – Multiple computer communication using cryptography – Protection at a particular protocol layer
Reexamination Certificate
2000-02-16
2001-03-06
Sheikh, Ayaz R. (Department: 2781)
Electrical computers and digital processing systems: support
Multiple computer communication using cryptography
Protection at a particular protocol layer
Reexamination Certificate
active
06199166
ABSTRACT:
BACKGROUND OF THE INVENTION
1. Technical Field of the Invention
This invention pertains to communication between computer systems, and more particularly to the control of anonymous file transfer protocol server using exit programs.
2. Background Art
File Transfer Protocol (FTP) is the standard application for transfer of files between computers attached to Transmission Control Protocol/Internet Protocol (TCP/IP) networks, including the Internet. FTP is a “client/server” application, such that a user runs a program on one computer system, the “client”, which communicates with a program running on another computer system, the “server”. The interface between the FTP client and server programs is officially defined by two Request For Comment (RFC) memoranda approved by the Internet Architecture Board of the Internet Society:
Postel, J. B., and Reynolds, J. K. “File Transfer Protocol (FTP)”, RFC959, October, 1985.
Braden, R. (editor). “Requirements for Internet Hosts—Application and Support”, RFC1123, October, 1989.
Normal operation of FTP requires the user to enter a user identifier and password for authentication on the server system. However, some system owners have the need to make some data files available as “public” data. To facilitate the transfer of such files, an informal protocol known as “anonymous FTP” has been developed which allows a user to obtain data from an FTP server without requiring normal user identifier and password authentication. There is no formal specification of anonymous FTP, but the following informational RFC describes its use:
Deutsch, P., Emtage, A., and Marine, A. “How to Use Anonymous FTP”, RFC1635, May, 1994.
Anonymous FTP presents several problems to any owner of a server system which allows it:
1. How is access to the “public” data controlled?
2. How is data which are not considered to be “public” protected?
3. How can the system owner obtain statistics about access to public data?
It is an object of this invention to provide a system and method for overcoming these problems in the prior art by enabling selective denial or approval of anonymous logon requests based on any combination of a user authentication string and/or client network address; and selective denial or approval of anonymous action requests based on any combination of type of request, user, and/or client network address, and or the specific data requested.
SUMMARY OF THE INVENTION
In accordance with the system and method of this invention, FTP and anonymous FTP communications are enabled and controlled by operating a server logon exit program to deny or authorize a logon request based on any combination of a user authentication string and/or client network address; and operating a request validation exit program to deny or authorize an action request based on any combination of type of request, user, client network address, and/or the specific data requested.
Other features and advantages of this invention will become apparent from the following detailed description of the presently preferred embodiment of the invention, taken in conjunction with the accompanying drawings.
REFERENCES:
patent: 5241594 (1993-08-01), Kung
patent: 5548724 (1996-08-01), Akizawa et al.
patent: 5604803 (1997-02-01), Aziz
patent: 5689708 (1997-11-01), Regnier et al.
patent: 5793966 (1998-08-01), Amstein et al.
patent: 6092198 (2000-07-01), Lanzy et al.
Postel, J. B., and Reynolds, J. K. “File Transfer Protocol (FTP)”, Network Working Group, RFC959, Oct., 1985, pp. 1-69.
Braden, R. (editor). “Requirements for Internet Hosts—Application and Support”, Internet Engineering Task Force, Network Working Group, RFC1123, Oct., 1989, pp. 1-98.
Deutsch, P., Emtage, A., and Marine, A. “How to Use Anonymous FTP”, Network Working Group, RFC1635, May, 1994, pp. 1-13.
Lanzy Garrett Roman
Pflug Francis Alan
Stange Gary Herbert
Beckstrand Shelley M
International Business Machines - Corporation
Phan Raymond N
Sheikh Ayaz R.
LandOfFree
System and method for enabling and controlling anonymous... does not yet have a rating. At this time, there are no reviews or comments for this patent.
If you have personal experience with System and method for enabling and controlling anonymous..., we encourage you to share that experience with our LandOfFree.com community. Your opinion is very important and System and method for enabling and controlling anonymous... will most certainly appreciate the feedback.
Profile ID: LFUS-PAI-O-2502045