公开(公告)号：US20030191971A1

公开(公告)日：2003-10-09

申请号：US10413971

申请日：2003-04-15

Applicant: WorldCom, Inc.

Inventor： John C. Klensin ,  Rohit Khare

IPC: H04L009/00

CPC classification number: H04L63/102 ,  G06F21/6218 ,  G06F2221/2113 ,  H04L63/083 ,  H04L63/0853 ,  H04L63/105

Abstract: A method of and system for controlling access to the Internet by members of an organization that includes at least one supervisor and at least one non-supervisor for which limited Internet access is desired. The system maintains for each member of the organization a session identifier. When the system establishes an Internet session between a member of the organization and the Internet, the system initially sets a user session identifier for said Internet session to a default session identifier, which is the session identifier for the lowers access level member of the organization. When the member requests a resource, the system determines if an access level rating for requested source is greater than the value of the access level field of the user session identifier. If so, the system blocks the resource and presents member with choices of logging on to the system as a specific member of the organization with a higher access level, or appealing the blocking to a supervisor.

Abstract translation: 一种用于由组织成员控制对因特网的访问的方法和系统，该组织包括至少一个主管和至少一个不需要有限的因特网访问的非主管。 系统为组织的每个成员维护会话标识符。 当系统在组织的成员和因特网之间建立因特网会话时，系统首先将用于所述因特网会话的用户会话标识符设置为默认会话标识符，该默认会话标识符是用于组织的低级访问级成员的会话标识符。 当成员请求资源时，系统确定所请求的源的访问级别等级是否大于用户会话标识符的访问级别字段的值。 如果是这样，系统将阻止资源，并向成员提供登录到系统的成员，作为具有较高访问级别的组织的特定成员，或者向上级管理员提出阻止。