Systems and methods for providing levels of access and action control via an SSL VPN appliance
    1.
    发明授权
    Systems and methods for providing levels of access and action control via an SSL VPN appliance 有权
    通过SSL VPN设备提供访问级别和动作控制的系统和方法

    公开(公告)号:US08151323B2

    公开(公告)日:2012-04-03

    申请号:US11566975

    申请日:2006-12-05

    IPC分类号: H04L29/06

    摘要: The present invention relates to systems and methods to identify a level of access for a resource being accessed via a secure socket layer virtual private network (SSL VPN) connection to a network, and to control the action on the resource based on the identified level of access. The appliance described herein provides intelligent secure access and action control to resources based on a sense and respond mechanism. When a user requests access to a resource via the SSL VPN connection of the appliance, the appliance obtains information about the client to determine the user access scenario—the location, device, connection and identify of the user or client. Based on the collected information, the appliance responds to the detected user scenario by identifying a level of access to the resource for the user/client, such as rights to view, print, edit or save a document, Based on the identified level of access, the appliance controls the actions performs on the resource by various techniques described herein so that the user can only perform the allowed action n accordance with the level of access. As such, the present invention allows organization to control and provide the appropriate level of access to valuable, confidential or business critical information accessed remotely or via a pubic network while protecting such information by controlling the types of actions performed or allowed to be performed remotely on the information.

    摘要翻译: 本发明涉及用于识别经由到网络的安全套接字层虚拟专用网(SSL VPN)连接被访问的资源的访问级别的系统和方法,并且基于所识别的级别来控制对资源的动作 访问。 本文所述的设备基于感测和响应机制来提供对资源的智能安全访问和动作控制。 当用户通过设备的SSL VPN连接请求访问资源时,设备将获取有关客户端的信息,以确定用户访问场景 - 用户或客户端的位置,设备,连接和标识。 基于收集的信息,设备通过识别用户/客户端对资源的访问级别(例如查看,打印,编辑或保存文档的权限)来响应所检测的用户场景。基于所识别的访问级别 ,设备通过本文描述的各种技术控制对资源执行的操作,使得用户只能根据访问级别执行允许的动作。 因此,本发明允许组织控制并提供对远程访问或通过公共网络访问的有价值的,机密的或业务关键信息的适当级别的访问,同时通过控制远程执行或允许执行的动作的类型来保护这些信息, 信息。

    Systems and Methods for Providing Levels of Access and Action Control Via an SSL VPN Appliance
    2.
    发明申请
    Systems and Methods for Providing Levels of Access and Action Control Via an SSL VPN Appliance 有权
    通过SSL VPN设备提供访问级别和行动控制的系统和方法

    公开(公告)号:US20070245409A1

    公开(公告)日:2007-10-18

    申请号:US11566975

    申请日:2006-12-05

    IPC分类号: H04L9/32

    摘要: The present invention relates to systems and methods to identify a level of access for a resource being accessed via a secure socket layer virtual private network (SSL VPN) connection to a network, and to control the action on the resource based on the identified level of access. The appliance described herein provides intelligent secure access and action control to resources based on a sense and respond mechanism. When a user requests access to a resource via the SSL VPN connection of the appliance, the appliance obtains information about the client to determine the user access scenario—the location, device, connection and identify of the user or client. Based on the collected information, the appliance responds to the detected user scenario by identifying a level of access to the resource for the user/client, such as rights to view, print, edit or save a document, Based on the identified level of access, the appliance controls the actions performs on the resource by various techniques described herein so that the user can only perform the allowed action n accordance with the level of access. As such, the present invention allows organization to control and provide the appropriate level of access to valuable, confidential or business critical information accessed remotely or via a pubic network while protecting such information by controlling the types of actions performed or allowed to be performed remotely on the information.

    摘要翻译: 本发明涉及用于识别经由到网络的安全套接字层虚拟专用网(SSL VPN)连接被访问的资源的访问级别的系统和方法,并且基于所识别的级别来控制对资源的动作 访问。 本文所述的设备基于感测和响应机制来提供对资源的智能安全访问和动作控制。 当用户通过设备的SSL VPN连接请求访问资源时,设备将获取有关客户端的信息,以确定用户访问场景 - 用户或客户端的位置,设备,连接和标识。 基于收集的信息,设备通过识别用户/客户端对资源的访问级别(例如查看,打印,编辑或保存文档的权限)来响应所检测的用户场景。基于所识别的访问级别 ,设备通过本文描述的各种技术控制对资源执行的操作,使得用户只能根据访问级别执行允许的动作。 因此,本发明允许组织控制并提供对远程访问或通过公共网络访问的有价值的,机密的或业务关键信息的适当级别的访问,同时通过控制远程执行或允许执行的动作的类型来保护这些信息, 信息。