US20080201344A1 - Internet server access control and monitoring systems - Google Patents

Internet server access control and monitoring systems Download PDF

Info

Publication number
US20080201344A1
US20080201344A1 US12/109,443 US10944308A US2008201344A1 US 20080201344 A1 US20080201344 A1 US 20080201344A1 US 10944308 A US10944308 A US 10944308A US 2008201344 A1 US2008201344 A1 US 2008201344A1
Authority
US
United States
Prior art keywords
access
computer system
content
protected content
user
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Abandoned
Application number
US12/109,443
Inventor
Thomas Mark Levergood
Lawrence C. Stewart
Stephen Jeffrey Morris
Andrew C. Payne
George Winfield Treese
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Soverain Ip LLC
Original Assignee
Thomas Mark Levergood
Stewart Lawrence C
Stephen Jeffrey Morris
Payne Andrew C
George Winfield Treese
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Priority claimed from US09/005,479 external-priority patent/US7272639B1/en
Application filed by Thomas Mark Levergood, Stewart Lawrence C, Stephen Jeffrey Morris, Payne Andrew C, George Winfield Treese filed Critical Thomas Mark Levergood
Priority to US12/109,443 priority Critical patent/US20080201344A1/en
Publication of US20080201344A1 publication Critical patent/US20080201344A1/en
Assigned to S FUNDING LLC reassignment S FUNDING LLC SECURITY INTEREST (SEE DOCUMENT FOR DETAILS). Assignors: SOVERAIN SOFTWARE LLC
Assigned to SOVERAIN SOFTWARE LLC reassignment SOVERAIN SOFTWARE LLC RELEASE BY SECURED PARTY (SEE DOCUMENT FOR DETAILS). Assignors: S FUNDING LLC
Assigned to SOVERAIN IP, LLC reassignment SOVERAIN IP, LLC ASSIGNMENT OF ASSIGNORS INTEREST (SEE DOCUMENT FOR DETAILS). Assignors: SOVERAIN SOFTWARE LLC
Assigned to SOVERAIN SOFTWARE LLC reassignment SOVERAIN SOFTWARE LLC SECURITY INTEREST (SEE DOCUMENT FOR DETAILS). Assignors: SOVERAIN IP, LLC
Abandoned legal-status Critical Current

Links

Images

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/08Network architectures or network communication protocols for network security for authentication of entities
    • H04L63/0807Network architectures or network communication protocols for network security for authentication of entities using tickets, e.g. Kerberos
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/08Payment architectures
    • G06Q20/10Payment architectures specially adapted for electronic funds transfer [EFT] systems; specially adapted for home banking systems
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/08Payment architectures
    • G06Q20/10Payment architectures specially adapted for electronic funds transfer [EFT] systems; specially adapted for home banking systems
    • G06Q20/102Bill distribution or payments
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/38Payment protocols; Details thereof
    • G06Q20/40Authorisation, e.g. identification of payer or payee, verification of customer or shop credentials; Review and approval of payers, e.g. check credit lines or negative lists
    • G06Q20/401Transaction verification
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q30/00Commerce
    • G06Q30/02Marketing; Price estimation or determination; Fundraising
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q30/00Commerce
    • G06Q30/02Marketing; Price estimation or determination; Fundraising
    • G06Q30/0207Discounts or incentives, e.g. coupons or rebates
    • G06Q30/0209Incentive being awarded or redeemed in connection with the playing of a video game
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q30/00Commerce
    • G06Q30/06Buying, selling or leasing transactions
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q30/00Commerce
    • G06Q30/06Buying, selling or leasing transactions
    • G06Q30/0601Electronic shopping [e-shopping]
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/08Network architectures or network communication protocols for network security for authentication of entities
    • H04L63/083Network architectures or network communication protocols for network security for authentication of entities using passwords

Definitions

  • the Internet which started in the late 1960s, is a vast computer network consisting of many smaller networks that span the entire globe.
  • the Internet has grown exponentially, and millions of users ranging from individuals to corporations now use permanent and dial-up connections to use the Internet on a daily basis worldwide.
  • the computers or networks of computers connected within the Internet known as “hosts”, allow public access to databases featuring information in nearly every field of expertise and are supported by entities ranging from universities and government to many commercial organizations.
  • a server is a system running on an Internet host for making available files or documents contained within that host. Such files are typically stored on magnetic storage devices, such as tape drives or fixed disks, local to the host.
  • An Internet server may distribute information to any computer that requests the files on a host.
  • the computer making such a request is known as the “client”, which may be an Internet-connected workstation, bulletin board system or home personal computer (PC).
  • TCP/IP Transmission Control Protocol/Internet Protocol
  • IP Internet Protocol
  • the World-Wide Web is a method of accessing information on the Internet which allows a user to navigate the Internet resources intuitively, without IP addresses or other technical knowledge.
  • the Web dispenses with command-line utilities which typically require a user to transmit sets of commands to communicate with an Internet server. Instead, the Web is made up of hundreds of thousands of interconnected “pages”, or documents, which can be displayed on a computer monitor.
  • the Web pages are provided by hosts running special servers. Software which runs these Web servers is relatively simple and is available on a wide range of computer platforms including PC's. Equally available is a form of client software, known as a Web “browser”, which is used to display Web pages as well as traditional non-Web files on the client system.
  • a Web “browser” Equally available is a form of client software, known as a Web “browser”, which is used to display Web pages as well as traditional non-Web files on the client system.
  • Today, the Internet hosts which provide Web servers are increasing at a rate of more than 300 per month,
  • HTTP Hypertext Transfer Protocol
  • HTML Hypertext Markup Language
  • HTML pages are made up of standard text as well as formatting codes which indicate how the page should be displayed.
  • the Web client, a browser reads these codes in order to display the page.
  • the hypertext conventions and related functions of the world wide web are described in the appendices of U.S. patent application Ser. No. 08/328,133, filed on Oct. 24, 1994, by Payne et al. which is incorporated herein by reference.
  • Each Web page may contain pictures and sounds in addition to text. Hidden behind certain text, pictures or sounds are connections, known as “hypertext links” (“links”), to other pages within the same server or even on other computers within the Internet. For example, links may be visually displayed as words or phrases that may be underlined or displayed in a second color. Each link is directed to a web page by using a special name called a URL (Uniform Resource Locator)—URLs enable a Web browser to go directly to any file held on any Web server. A user may also specify a known URL by writing it directly into the command line on a Web page to jump to another Web page.
  • URL Uniform Resource Locator
  • the URL naming system consists of three parts: the transfer format, the host name of the machine that holds the file, and the path to the file.
  • An example of a URL may be: http://www.college.Univ.edu/Adir/Bdir/Cdir/page.html, where “http” represents the transfer protocol; a colon and two forward slashes (://) are used to separate the transfer format from the host name; “www.college.univ.edu” is the host name in which “www” denotes that the file being requested is a Web page; “/Adir/Ddir/Cdir” is a set of directory names in a tree structure, or a path, on the host machine; and “page.html” is the file name with an indication that the file is written in HTML.
  • the Internet maintains an open structure in which exchanges of information are made cost-free without restriction.
  • the free access format inherent to the Internet presents difficulties for those information providers requiring control over their Internet servers.
  • a research organization that may want to make certain technical information available on its Internet server to a large group of colleagues around the globe, but the information must be kept confidential. Without means for identifying each client, the organization would not be able to provide information on the network on a confidential or preferential basis.
  • a company may want to provide highly specific service tips over its Internet server only to customers having service contracts or accounts.
  • Access control by an Internet server is difficult for at least two reasons.
  • LAN local area networks
  • system administrators implement various data-flow control mechanisms, such as the Internet “firewalls”, within their networks.
  • An Internet firewall allows a user to reach the Internet anonymously while preventing intruders of the outside world from accessing the user's LAN.
  • the present invention relates to methods of processing service requests from a client to a server through a network.
  • the present invention is applicable to processing client requests in an HTTP (Hypertext Transfer Protocol) environment, such as the World-Wide Web (Web).
  • HTTP Hypertext Transfer Protocol
  • One aspect of the invention involves forwarding a service request from the client to the server and appending a session identification (SID) to the request and to subsequent service requests from the client to the server within a session of requests.
  • the present method involves returning the SID from the server to the client upon an initial service request made by the client.
  • a valid SID may include an authorization identifier to allow a user to access controlled files.
  • a client request is made with a Uniform Resource Locator (URL) from a Web browser.
  • a Uniform Resource Locator URL
  • the Internet server subjects the client to an authorization routine prior to issuing the SID, the SID being protected from forgery.
  • a content server initiates the authorization routine by redirecting the client's request to an authentication server which may be at a different host.
  • the authentication server Upon receiving a redirected request, the authentication server returns a response to interrogate the client and then issues an SID to a qualified client. For a new client, the authentication server may open a new account and issue an SID thereafter.
  • a valid SID typically comprises a user identifier, an accessible domain, a key identifier, an expiration time such as date, the IP address of the user computer, and an unforgeable digital signature such as a cryptographic hash of all of the other items in the SID encrypted with a secret key.
  • the authentication server then forwards a new request consisting of the original URL appended by the SID to the client in a REDIRECT.
  • the modified request formed by a new URL is automatically forwarded by the client browser to the content server.
  • the content server When the content server receives a URL request accompanied by an SID, it logs the URL with the SID and the user IF address in a transaction log and proceeds to validate the SID. When the SID is so validated, the content server sends the requested document for display by the client's Web browser.
  • a valid SID allows the client to access all controlled files within a protection domain without requiring further authorization.
  • a protection domain is defined by the service provider and is a collection of controlled files of common protection within one or more servers.
  • a client accesses a controlled Web page with a valid SID
  • the user viewing the page may want to traverse a link to view another Web page.
  • the user may traverse a link to another page in the same path. This is called a “relative link”.
  • a relative link may be made either within the same domain or to a different domain.
  • the browser on the client computer executes a relative link by rewriting the current URL to replace the old controlled page name with a new one.
  • the new URL retains all portions of the old, including the SID, except for the new page name. If the relative link points to a page in the same protection domain, the SID remains valid, and the request is honored.
  • the SID is no longer valid, and the client is automatically redirected to forward the rewritten URL to the authentication server to update the SID.
  • the updated or new SID provides access to the new domain if the user is qualified.
  • the user may also elect to traverse a link to a document in a different path. This is called an “absolute link”.
  • an absolute link In generating a new absolute link, the SID is overwritten by the browser.
  • the content server in each serving of a controlled Web page within the domain, filters the page to include the current SID in each absolute URL on the page.
  • the browser is facilitated with an authenticated URL which is directed with its SID to a page in a different path.
  • the content server may forego the filtering procedure as above-described and redirect an absolute URL to the authentication server for an update.
  • An absolute link may also be directed to a controlled file in a different domain. Again, such a request is redirected to the authentication server for processing of a new SID. An absolute link directed to an uncontrolled file is accorded an immediate access.
  • a server access control may be maintained by programming the client browser to store an SID or a similar tag for use in each URL call to that particular server.
  • This embodiment requires a special browser which can handle such communications and was generally not suitable for early browser formats common to the Web. However, it may now be implemented in cookie compatible browsers.
  • Another aspect of the invention is to monitor the frequency and duration of access to various pages both controlled and uncontrolled.
  • a transaction log within a content server keeps a history of each client access to a page including the link sequence through which the page was accessed. Additionally, the content server may count the client requests exclusive of repeated requests from a common client. Such records provide important marketing feedback including user demand, access pattern, and relationships between customer demographics and accessed pages and access patterns.
  • FIG. 1 is a diagram illustrating the Internet operation.
  • FIG. 2A is a flowchart describing the preferred method of Internet server access control and monitoring.
  • FIG. 2B is a related flowchart describing the details of the authentication process.
  • FIG. 3 illustrates an example of a client-server exchange session involving the access control and monitoring method of the present invention.
  • FIG. 4 is an example of a World Wide Web page.
  • FIG. 5 is an example of an authorization form page.
  • FIG. 6 is a diagram describing the details of the translation of telephone numbers to URL5.
  • FIG. 1 is a graphical illustration of the Internet.
  • the Internet 10 is a network of millions of interconnected computers 12 including systems owned by Internet providers 16 and information systems (BBS) 20 such as Compuserve or America Online. Individual or corporate users may establish connections to the Internet in several ways.
  • a user on a home PC 14 may purchase an account through the Internet provider 16 .
  • the PC user can dial up the Internet provider to connect to a high speed modem 24 which, in turn, provides a full service connection to the Internet.
  • a user 18 may also make a somewhat limited connection to the Internet through a BBS 20 that provides an Internet gateway connection to its customers.
  • FIG. 2A is a flowchart detailing the preferred process of the present invention and FIG. 4 illustrates a sample Web page displayed at a client by a browser.
  • the page includes text 404 which includes underlined link text 412 .
  • the title bar 408 and URL bar 402 display the title and URL of the current web page, respectively.
  • the title of the page is “Content Home Page” and the corresponding URL is “http://content.com/homepage”.
  • a cursor 414 is positioned over link text 412 b , the page which would be retrieved by clicking a mouse is typically identified in a status bar 406 which shows the URL for that link.
  • the status bar 406 shows that the URL for the pointed link 412 b is directed to a page called “advertisement” in a commercial content server called “content”.
  • the user By clicking on the link text, the user causes the browser to generate a URL GET request at 100 in FIG. 2A .
  • the browser forwards the request to a content server 120 , which processes the request by first determining whether the requested page is a controlled document 102 . If the request is directed to an uncontrolled page, as in “advertisement” page in this example, the content server records the URL and the IF address, to the extent it is available, in the transaction log 114 .
  • the content server then sends the requested page to the browser 116 for display on the user computer 117 .
  • the content server determines whether the URL contains an SID 102 .
  • a URL may be directed to a controlled page name “report”, such as “http://content.com/report”, that requires an SID. If no SID is present, as in this example, the content server sends a “REDIRECT” response 122 to the browser 100 to redirect the user's initial request to an authentication server 200 to obtain a valid SID.
  • the details of the authentication process are described in FIG. 2B and will be discussed later, but the result of the process is an SID provided from the authentication server to the client.
  • a modified URL appended with an SID may be: “http://content.com/ ⁇ SID]/report”.
  • the preferred SID is a sixteen character ASCII string that encodes 96 bits of SID data, 6 bits per character. It contains a 32-bit digital signature, a 16-bit expiration date with a granularity of one hour, a 2-bit key identifier used for key management, an 8-bit domain comprising a set of information files to which the current SID authorizes access, and a 22-bit user identifier. The remaining bits are reserved for expansion.
  • the digital signature is a cryptographic hash of the remaining items in the SID and the authorized IF address which are encrypted with a secret key which is shared by the authentication and content servers.
  • the content server determines whether the request is directed to a page within the current domain 106 . If the request having a SID is directed to a controlled page of a different domain, the SID is no longer valid and, again, the user is redirected to the authentication server 122 .
  • the content server proceeds to log the request URL, tagged with SID, and the user IP address in the transaction log 108 .
  • the content server validates the SID 110 .
  • Such validation includes the following list of checks: (1) the SID's digital signature is compared against the digital signature computed from the remaining items in the SID and the user IF address using the secret key shared by the authentication and content servers; (2) the domain field of the SID is checked to verify that it is within the domain authorized; and (3) the EXP field of the SID is checked to verify that it is later than the current time,
  • the content server searches the page to be forwarded for any absolute URL links contained therein 112 , that is, any links directed to controlled documents in different content servers.
  • the content server augments each absolute URL with the current SID to facilitate authenticated accesses across multiple content servers.
  • the requested page as processed is then transmitted to the client browser for display 117 .
  • the user viewing the requested Web page may elect to traverse any link on that page to trigger the entire sequence again 100.
  • FIG. 2B describes the details of the authentication process.
  • the content server may redirect the client to an authentication server.
  • the client browser automatically sends a GET request with the provided URL.
  • the authentication server Whenever the content server redirects the client to the authentication server 200 , the authentication server initiates the authorization process by validating that it is for an approved content server and determining the level of authentication required for the access requested 210 . Depending on this level, the server may challenge the user 212 for credentials. If the request is for a low level document, the authentication may issue an appropriate SID immediately 228 and forego the credential check procedures. If the document requires credentials, the authentication server sends a “CHALLENGE” response which causes the client browser to prompt the user for credentials 214 .
  • a preferred credential query typically consists of a request for user name and password. If the user is unable to provide a password, the access is denied.
  • the browser forms an authorization header 300 from the information provided, and resends a GET request to the authentication server using the last URL along with an authorization header.
  • the authentication server Upon receiving the GET request, the authentication server queries an account database 216 to determine whether the user is authorized 218 to access the requested document.
  • a preferred account database may contain a user profile which includes information for identifying purposes, such as client IF address and password, as well as user demographic information, such as user age, home address, hobby, or occupation, for later use by the content server. If the user is authorized, an SID is generated 228 as previously described. If the user is not cleared for authorization, the authentication server checks to see if the user qualifies for a new account 220 . If the user is not qualified to open a new account, a page denying access 222 is transmitted to the client browser 100 . If the user is qualified, the new user is sent a form page such as illustrated in FIG.
  • the form may, for example, require personal information and credit references from the user.
  • the browser is able to transmit the data entered by the user in the blanks 502 as a “POST” message to the authentication server.
  • a POST message causes form contents to be sent to the server in a data body other than as part of the URL. If the registration form filled out by the new user is valid 226 , an appropriate SID is generated 228 . If the registration is not valid, access is again denied 222 .
  • An SID for an authorized user is appended (“tagged”) 230 to the original URL directed to a controlled page on the content server.
  • the authentication server then transmits a REDIRECT response 232 based on the tagged URL to the client browser 100 .
  • the modified URL such as “http://content.com/[SID]/report” is automatically forwarded to the content server 120 .
  • FIG. 3 illustrates a typical client-server exchange involving the access control and monitoring method of the present invention.
  • the client 50 running a browser transmits a GET request through a network for an uncontrolled page (UCP).
  • UCP uncontrolled page
  • the user may request an advertisement page by transmitting a URL “http://content.com/advertisement”, where “content.com” is the server name and “advertisement” is the uncontrolled page name.
  • the content server 52 processes the GET request and transmits the requested page, “advertisement”.
  • the content server also logs the GET request in the transaction database 56 by recording the URL, the client IP address, and the current time.
  • the user on the client machine may elect to traverse a link in the advertisement page directed to a controlled page (CP).
  • the advertisement page may contain a link to a controlled page called “report”. Selecting this link causes the client browser 50 to forward a GET request through a URL which is associated with the report file “http://content.com/report”.
  • the content server 52 determines that the request is to a controlled page and that the URL does not contain an SID.
  • the content server transmits a REDIRECT response to the client, and, in Step 5 , the browser automatically sends the REDIRECT URL to the authentication server 54 .
  • the authentication server processes the REDIRECT and determines whether user credentials (CRED) are needed for authorization.
  • the authentication server transmits a “CHALLENGE” response to the client.
  • typical credentials consist of user name and password.
  • the authentication server processes the GET request by checking the Account Database 58 . If a valid account exists for the user, an SID is issued which authorizes access to the controlled page “report” and all the other pages within the domain.
  • the preferred SID comprises a compact ASCII string that encodes a user identifier, the current domain, a key identifier, an expiration time, the client IF address, and an unforgeable digital signature.
  • the authentication server redirects the client to the tagged URL, “http://content.com/[SID]/report”, to the client.
  • the tagged URL is automatically forwarded by the browser as a GET request to the content server.
  • the content server logs the GET request in the Transaction database 56 by recording the tagged URL, the client IF address, and the current time.
  • the content server upon validating the SID, transmits the requested controlled page “report” for display on the client browser.
  • the content server periodically evaluates the record contained in the transaction log 56 to determine the frequency and duration of accesses to the associated content server.
  • the server counts requests to particular pages exclusive of repeated requests from a common client in order to determine the merits of the information on different pages for ratings purposes. By excluding repeated calls, the system avoids distortions by users attempting to “stuff the ballot box.”
  • the time intervals between repeated requests by a common client are measured to exclude those requests falling within a defined period of time.
  • the server may, at any given time, track access history within a client-server session.
  • a history profile informs the service provider about link transversal frequencies and link paths followed by users.
  • This profile is produced by filtering transaction logs from one or more servers to select only transactions involving a particular user ID (UID).
  • UID user ID
  • Two subsequent entries, A and B, corresponding to requests from a given user in these logs represent a link traversal from document A to document B made by the user in question. This information may be used to identify the most popular links to a specific page and to suggest where to insert new links to provide more direct access.
  • the access history is evaluated to determine traversed links leading to a purchase of a product made within commercial pages.
  • This information may be used, for example, to charge for advertising based on the number of link traversals from an advertising page to a product page or based on the count of purchases resulting from a path including the advertisement.
  • the server can gauge the effectiveness of advertising by measuring the number of sales that resulted from a particular page, link, or path of links.
  • the system can be configured to charge the merchant for an advertising page based on the number of sales that resulted from that page.
  • a secondary server such as the authentication server 200 in FIG. 2B , may access a prearranged user profile from the account database 216 and include information based on such a profile in the user identifier field of the SID.
  • the content server may use such an SID to customize user requested pages to include personalized content based on the user identifier field of the SID.
  • the user may gain access to domain of servers containing journals or publications through a subscription.
  • the user may purchase the subscription in advance to gain access to on-line documents through the Internet.
  • the user gains access to a subscribed document over the Internet through the authorization procedure as described above where an authorization indicator is preferably embedded in a session identifier.
  • an authorization indicator is preferably embedded in a session identifier.
  • a user may be charged and billed each time he or she accesses a particular document through the Internet. In that case, authorization may not be required so long as the user is fully identified in order to be charged for the service.
  • the user identification is most appropriately embedded in the session identifier described above.
  • facilities are provided to allow users to utilize conventional telephone numbers or other identifiers to access merchant services. These merchant services can optionally be protected using SID5.
  • a Web browser client 601 provides a “dial” command to accept a telephone number from a user, as by clicking on a “dial” icon and inputting the telephone number through the keyboard.
  • the browser then constructs a URL of the form “http://directory.net/NUMBER”, where NUMBER is the telephone number or other identifier specified by the user,
  • the browser then performs a GET of the document specified by this URL, and contacts directory server 602 , sending the NUMBER requested in Message 1 .
  • client 601 uses a form page provided by directory server 601 that prompts for a telephone number or other identifier in place of a “dial” command, and Message 1 is a POST message to a URL specified by this form page.
  • the directory server uses database 604 to translate the NUMBER to a target URL that describes the merchant server and document that implements the service corresponding to NUMBER. This translation can ignore the punctuation of the number, therefore embedded parenthesis or dashes are not significant.
  • an identifier other than a number may be provided.
  • a user may enter a company name or product name without exact spelling.
  • a “soundex” or other phonetic mapping can be used to permit words that sound alike to map to the same target URL.
  • Multiple identifiers can also be used, such as a telephone number in conjunction with a product name or extension.
  • Directory server 602 sends a REDIRECT to client 601 , specifying the target URL for NUMBER as computed from database 604 .
  • the client browser 601 then automatically sends Message 3 to GET the contents of this URL.
  • Merchant server 603 returns this information in Message 4 .
  • the server 602 might have returned a Web page to the client to provide an appropriate link to the required document.
  • server 602 makes a translation to a final URL and sends a REDIRECT rather than a page to client 601 , the document of message 4 is obtained without any user action beyond the initial dial input.
  • the Target URL contained in Message 3 can be an ordinary URL to an uncontrolled page, or it can be a URL that describes a controlled page. If the Target URL describes a controlled page then authentication is performed as previously described.
  • the Target URL can also describe a URL that includes an SID that provides a preauthorized means of accessing a controlled page.
  • a single merchant server can provide multiple services that correspond to different external “telephone numbers” or other identifiers. For example, if users dial the “flight arrival” number they could be directed to the URL for the arrival page, while, if they dial the “reservations” number, they would be directed to the URL for the reservations page.
  • a “priority gold” number could be directed to a controlled page URL that would first authenticate the user as belonging to the gold users group, and then would provide access to the “priority gold” page.
  • An unpublished “ambassador” number could be directed to a tagged URL that permits access to the “priority gold” page without user authentication.

Abstract

This invention relates to methods for controlling and monitoring access to network servers. In particular, the process described in the invention includes client-server sessions over the Internet. In this environment, when the user attempts to access an access-controlled file, the server subjects the request to a secondary server which determines whether the client has an authorization or valid account. Upon such verification, the user is provided with a session identification which allows the user to access to the requested file as well as any other files within the present protection domain.

Description

    RELATED APPLICATION
  • This application is a Continuation of U.S. Ser. No. 11/300,245, which is a Continuation of (1) U.S. Ser. No. 09/005,479 filed Jan. 12, 1998 and now U.S. Pat. No. 7,272,639, and (2) U.S. Ser. No. 09/548,235 filed Apr. 12, 2000, and (3) U.S. Ser. No. 09/548,237 filed Apr. 12, 2000, each of which claims priority to U.S. Ser. No. 08/474,096 filed on Jun. 7, 1995, now U.S. Pat. No. 5,708,780. The entire disclosure of each of these prior applications are incorporated herein by reference.
  • BACKGROUND TO THE INVENTION
  • The Internet, which started in the late 1960s, is a vast computer network consisting of many smaller networks that span the entire globe. The Internet has grown exponentially, and millions of users ranging from individuals to corporations now use permanent and dial-up connections to use the Internet on a daily basis worldwide. The computers or networks of computers connected within the Internet, known as “hosts”, allow public access to databases featuring information in nearly every field of expertise and are supported by entities ranging from universities and government to many commercial organizations.
  • The information on the Internet is made available to the public through “servers”. A server is a system running on an Internet host for making available files or documents contained within that host. Such files are typically stored on magnetic storage devices, such as tape drives or fixed disks, local to the host. An Internet server may distribute information to any computer that requests the files on a host. The computer making such a request is known as the “client”, which may be an Internet-connected workstation, bulletin board system or home personal computer (PC).
  • TCP/IP (Transmission Control Protocol/Internet Protocol) is one networking protocol that permits full use of the Internet. All computers on a TCP/IP network need unique ID codes. Therefore, each computer or host on the Internet is identified by a unique number code, known as the IP (Internet Protocol) number or address, and corresponding network and computer names. In the past, an Internet user gained access to its resources only by identifying the host computer and a path through directories within the host's storage to locate a requested file. Although various navigating tools have helped users to search resources on the Internet without knowing specific host addresses, these tools still require a substantial technical knowledge of the Internet.
  • The World-Wide Web (Web) is a method of accessing information on the Internet which allows a user to navigate the Internet resources intuitively, without IP addresses or other technical knowledge. The Web dispenses with command-line utilities which typically require a user to transmit sets of commands to communicate with an Internet server. Instead, the Web is made up of hundreds of thousands of interconnected “pages”, or documents, which can be displayed on a computer monitor. The Web pages are provided by hosts running special servers. Software which runs these Web servers is relatively simple and is available on a wide range of computer platforms including PC's. Equally available is a form of client software, known as a Web “browser”, which is used to display Web pages as well as traditional non-Web files on the client system. Today, the Internet hosts which provide Web servers are increasing at a rate of more than 300 per month, en route to becoming the preferred method of Internet communication.
  • Created in 1991, the Web is based on the concept of “hypertext” and a transfer method known as “HTTP” (Hypertext Transfer Protocol). HTTP is designed to run primarily over TCP/IP and uses the standard Internet setup, where a server issues the data and a client displays or processes it. One format for information transfer is to create documents using Hypertext Markup Language (HTML). HTML pages are made up of standard text as well as formatting codes which indicate how the page should be displayed. The Web client, a browser, reads these codes in order to display the page. The hypertext conventions and related functions of the world wide web are described in the appendices of U.S. patent application Ser. No. 08/328,133, filed on Oct. 24, 1994, by Payne et al. which is incorporated herein by reference.
  • Each Web page may contain pictures and sounds in addition to text. Hidden behind certain text, pictures or sounds are connections, known as “hypertext links” (“links”), to other pages within the same server or even on other computers within the Internet. For example, links may be visually displayed as words or phrases that may be underlined or displayed in a second color. Each link is directed to a web page by using a special name called a URL (Uniform Resource Locator)—URLs enable a Web browser to go directly to any file held on any Web server. A user may also specify a known URL by writing it directly into the command line on a Web page to jump to another Web page.
  • The URL naming system consists of three parts: the transfer format, the host name of the machine that holds the file, and the path to the file. An example of a URL may be: http://www.college.Univ.edu/Adir/Bdir/Cdir/page.html, where “http” represents the transfer protocol; a colon and two forward slashes (://) are used to separate the transfer format from the host name; “www.college.univ.edu” is the host name in which “www” denotes that the file being requested is a Web page; “/Adir/Ddir/Cdir” is a set of directory names in a tree structure, or a path, on the host machine; and “page.html” is the file name with an indication that the file is written in HTML.
  • The Internet maintains an open structure in which exchanges of information are made cost-free without restriction. The free access format inherent to the Internet, however, presents difficulties for those information providers requiring control over their Internet servers. Consider for example, a research organization that may want to make certain technical information available on its Internet server to a large group of colleagues around the globe, but the information must be kept confidential. Without means for identifying each client, the organization would not be able to provide information on the network on a confidential or preferential basis. In another situation, a company may want to provide highly specific service tips over its Internet server only to customers having service contracts or accounts.
  • Access control by an Internet server is difficult for at least two reasons. First, when a client sends a request for a file on a remote Internet server, that message is routed or relayed by a web of computers connected through the Internet until it reaches its destination host. The client does not necessarily know how its message reaches the server. At the same time, the server makes responses without ever knowing exactly who the client is or what its IP address is. While the server may be programmed to trace its clients, the task of tracing is often difficult, if not impossible. Secondly, to prevent unwanted intrusion into private local area networks (LAN), system administrators implement various data-flow control mechanisms, such as the Internet “firewalls”, within their networks. An Internet firewall allows a user to reach the Internet anonymously while preventing intruders of the outside world from accessing the user's LAN.
  • SUMMARY OF THE INVENTION
  • The present invention relates to methods of processing service requests from a client to a server through a network. In particular the present invention is applicable to processing client requests in an HTTP (Hypertext Transfer Protocol) environment, such as the World-Wide Web (Web). One aspect of the invention involves forwarding a service request from the client to the server and appending a session identification (SID) to the request and to subsequent service requests from the client to the server within a session of requests. In a preferred embodiment, the present method involves returning the SID from the server to the client upon an initial service request made by the client. A valid SID may include an authorization identifier to allow a user to access controlled files.
  • In a preferred embodiment, a client request is made with a Uniform Resource Locator (URL) from a Web browser. Where a client request is directed to a controlled file without an SID, the Internet server subjects the client to an authorization routine prior to issuing the SID, the SID being protected from forgery. A content server initiates the authorization routine by redirecting the client's request to an authentication server which may be at a different host. Upon receiving a redirected request, the authentication server returns a response to interrogate the client and then issues an SID to a qualified client. For a new client, the authentication server may open a new account and issue an SID thereafter. A valid SID typically comprises a user identifier, an accessible domain, a key identifier, an expiration time such as date, the IP address of the user computer, and an unforgeable digital signature such as a cryptographic hash of all of the other items in the SID encrypted with a secret key. The authentication server then forwards a new request consisting of the original URL appended by the SID to the client in a REDIRECT. The modified request formed by a new URL is automatically forwarded by the client browser to the content server.
  • When the content server receives a URL request accompanied by an SID, it logs the URL with the SID and the user IF address in a transaction log and proceeds to validate the SID. When the SID is so validated, the content server sends the requested document for display by the client's Web browser.
  • In the preferred embodiment, a valid SID allows the client to access all controlled files within a protection domain without requiring further authorization. A protection domain is defined by the service provider and is a collection of controlled files of common protection within one or more servers.
  • When a client accesses a controlled Web page with a valid SID, the user viewing the page may want to traverse a link to view another Web page. There are several possibilities. The user may traverse a link to another page in the same path. This is called a “relative link”. A relative link may be made either within the same domain or to a different domain. The browser on the client computer executes a relative link by rewriting the current URL to replace the old controlled page name with a new one. The new URL retains all portions of the old, including the SID, except for the new page name. If the relative link points to a page in the same protection domain, the SID remains valid, and the request is honored. However, if the relative link points to a controlled page in a different protection domain, the SID is no longer valid, and the client is automatically redirected to forward the rewritten URL to the authentication server to update the SID. The updated or new SID provides access to the new domain if the user is qualified.
  • The user may also elect to traverse a link to a document in a different path. This is called an “absolute link”. In generating a new absolute link, the SID is overwritten by the browser. In the preferred embodiment, the content server, in each serving of a controlled Web page within the domain, filters the page to include the current SID in each absolute URL on the page. Hence, when the user elects to traverse an absolute link, the browser is facilitated with an authenticated URL which is directed with its SID to a page in a different path. In another embodiment, the content server may forego the filtering procedure as above-described and redirect an absolute URL to the authentication server for an update.
  • An absolute link may also be directed to a controlled file in a different domain. Again, such a request is redirected to the authentication server for processing of a new SID. An absolute link directed to an uncontrolled file is accorded an immediate access.
  • In another embodiment, a server access control may be maintained by programming the client browser to store an SID or a similar tag for use in each URL call to that particular server. This embodiment, however, requires a special browser which can handle such communications and was generally not suitable for early browser formats common to the Web. However, it may now be implemented in cookie compatible browsers.
  • Another aspect of the invention is to monitor the frequency and duration of access to various pages both controlled and uncontrolled. A transaction log within a content server keeps a history of each client access to a page including the link sequence through which the page was accessed. Additionally, the content server may count the client requests exclusive of repeated requests from a common client. Such records provide important marketing feedback including user demand, access pattern, and relationships between customer demographics and accessed pages and access patterns.
  • The above and other features of the invention including various novel details of construction and combinations of parts will now be more particularly described with reference to the accompanying drawings and pointed out in the claims. It will be understood that the particular devices and methods embodying the invention are shown by way of illustration only and not as limitations of the invention. The principles and features of this invention may be employed in varied and numerous embodiments without departing from the scope of the invention.
  • BRIEF DESCRIPTION OF THE DRAWINGS
  • FIG. 1 is a diagram illustrating the Internet operation.
  • FIG. 2A is a flowchart describing the preferred method of Internet server access control and monitoring.
  • FIG. 2B is a related flowchart describing the details of the authentication process.
  • FIG. 3 illustrates an example of a client-server exchange session involving the access control and monitoring method of the present invention.
  • FIG. 4 is an example of a World Wide Web page.
  • FIG. 5 is an example of an authorization form page.
  • FIG. 6 is a diagram describing the details of the translation of telephone numbers to URL5.
  • DETAILED DESCRIPTION OF THE INVENTION
  • Referring now to the drawings, FIG. 1 is a graphical illustration of the Internet. The Internet 10 is a network of millions of interconnected computers 12 including systems owned by Internet providers 16 and information systems (BBS) 20 such as Compuserve or America Online. Individual or corporate users may establish connections to the Internet in several ways. A user on a home PC 14 may purchase an account through the Internet provider 16. Using a modem 22, the PC user can dial up the Internet provider to connect to a high speed modem 24 which, in turn, provides a full service connection to the Internet. A user 18 may also make a somewhat limited connection to the Internet through a BBS 20 that provides an Internet gateway connection to its customers.
  • FIG. 2A is a flowchart detailing the preferred process of the present invention and FIG. 4 illustrates a sample Web page displayed at a client by a browser. The page includes text 404 which includes underlined link text 412. The title bar 408 and URL bar 402 display the title and URL of the current web page, respectively. As shown in FIG. 4, the title of the page is “Content Home Page” and the corresponding URL is “http://content.com/homepage”. When a cursor 414 is positioned over link text 412 b, the page which would be retrieved by clicking a mouse is typically identified in a status bar 406 which shows the URL for that link. In this example the status bar 406 shows that the URL for the pointed link 412 b is directed to a page called “advertisement” in a commercial content server called “content”. By clicking on the link text, the user causes the browser to generate a URL GET request at 100 in FIG. 2A. The browser forwards the request to a content server 120, which processes the request by first determining whether the requested page is a controlled document 102. If the request is directed to an uncontrolled page, as in “advertisement” page in this example, the content server records the URL and the IF address, to the extent it is available, in the transaction log 114. The content server then sends the requested page to the browser 116 for display on the user computer 117.
  • If the request is directed to a controlled page, the content server determines whether the URL contains an SID 102. For example, a URL may be directed to a controlled page name “report”, such as “http://content.com/report”, that requires an SID. If no SID is present, as in this example, the content server sends a “REDIRECT” response 122 to the browser 100 to redirect the user's initial request to an authentication server 200 to obtain a valid SID. The details of the authentication process are described in FIG. 2B and will be discussed later, but the result of the process is an SID provided from the authentication server to the client. In the above example, a modified URL appended with an SID may be: “http://content.com/{SID]/report”. The preferred SID is a sixteen character ASCII string that encodes 96 bits of SID data, 6 bits per character. It contains a 32-bit digital signature, a 16-bit expiration date with a granularity of one hour, a 2-bit key identifier used for key management, an 8-bit domain comprising a set of information files to which the current SID authorizes access, and a 22-bit user identifier. The remaining bits are reserved for expansion. The digital signature is a cryptographic hash of the remaining items in the SID and the authorized IF address which are encrypted with a secret key which is shared by the authentication and content servers.
  • If the initial GET URL contains a SID, the content server determines whether the request is directed to a page within the current domain 106. If the request having a SID is directed to a controlled page of a different domain, the SID is no longer valid and, again, the user is redirected to the authentication server 122.
  • If the request is for a controlled page within the current domain, the content server proceeds to log the request URL, tagged with SID, and the user IP address in the transaction log 108. The content server then validates the SID 110. Such validation includes the following list of checks: (1) the SID's digital signature is compared against the digital signature computed from the remaining items in the SID and the user IF address using the secret key shared by the authentication and content servers; (2) the domain field of the SID is checked to verify that it is within the domain authorized; and (3) the EXP field of the SID is checked to verify that it is later than the current time,
  • If the validation passes, the content server searches the page to be forwarded for any absolute URL links contained therein 112, that is, any links directed to controlled documents in different content servers. The content server augments each absolute URL with the current SID to facilitate authenticated accesses across multiple content servers. The requested page as processed is then transmitted to the client browser for display 117. The user viewing the requested Web page may elect to traverse any link on that page to trigger the entire sequence again 100.
  • FIG. 2B describes the details of the authentication process. The content server may redirect the client to an authentication server. The REDIRECT URL might be: “http://auth.com/authenticate?domain=[domain] &URL=http://content.com/report”. That URL requests authentication and specifies the domain and the initial URL. In response to the REDIRECT, the client browser automatically sends a GET request with the provided URL.
  • Whenever the content server redirects the client to the authentication server 200, the authentication server initiates the authorization process by validating that it is for an approved content server and determining the level of authentication required for the access requested 210. Depending on this level, the server may challenge the user 212 for credentials. If the request is for a low level document, the authentication may issue an appropriate SID immediately 228 and forego the credential check procedures. If the document requires credentials, the authentication server sends a “CHALLENGE” response which causes the client browser to prompt the user for credentials 214. A preferred credential query typically consists of a request for user name and password. If the user is unable to provide a password, the access is denied. The browser forms an authorization header 300 from the information provided, and resends a GET request to the authentication server using the last URL along with an authorization header. For example, a URL of such a GET request may be: “http://auth.com/authenticate?domain=[domain] &URL=http://content.com/report and the authorization header may be: “AUTHORIZE: [authorization]”.
  • Upon receiving the GET request, the authentication server queries an account database 216 to determine whether the user is authorized 218 to access the requested document. A preferred account database may contain a user profile which includes information for identifying purposes, such as client IF address and password, as well as user demographic information, such as user age, home address, hobby, or occupation, for later use by the content server. If the user is authorized, an SID is generated 228 as previously described. If the user is not cleared for authorization, the authentication server checks to see if the user qualifies for a new account 220. If the user is not qualified to open a new account, a page denying access 222 is transmitted to the client browser 100. If the user is qualified, the new user is sent a form page such as illustrated in FIG. 5 to initiate a real-time on-line registration 224. The form may, for example, require personal information and credit references from the user. The browser is able to transmit the data entered by the user in the blanks 502 as a “POST” message to the authentication server. A POST message causes form contents to be sent to the server in a data body other than as part of the URL. If the registration form filled out by the new user is valid 226, an appropriate SID is generated 228. If the registration is not valid, access is again denied 222.
  • An SID for an authorized user is appended (“tagged”) 230 to the original URL directed to a controlled page on the content server. The authentication server then transmits a REDIRECT response 232 based on the tagged URL to the client browser 100. The modified URL, such as “http://content.com/[SID]/report” is automatically forwarded to the content server 120.
  • FIG. 3, illustrates a typical client-server exchange involving the access control and monitoring method of the present invention. In Step 1, the client 50 running a browser transmits a GET request through a network for an uncontrolled page (UCP). For example, the user may request an advertisement page by transmitting a URL “http://content.com/advertisement”, where “content.com” is the server name and “advertisement” is the uncontrolled page name. In Step 2, the content server 52 processes the GET request and transmits the requested page, “advertisement”. The content server also logs the GET request in the transaction database 56 by recording the URL, the client IP address, and the current time.
  • In Step 3, the user on the client machine may elect to traverse a link in the advertisement page directed to a controlled page (CP). For example, the advertisement page may contain a link to a controlled page called “report”. Selecting this link causes the client browser 50 to forward a GET request through a URL which is associated with the report file “http://content.com/report”. The content server 52 determines that the request is to a controlled page and that the URL does not contain an SID. In Step 4, the content server transmits a REDIRECT response to the client, and, in Step 5, the browser automatically sends the REDIRECT URL to the authentication server 54. The REDIRECT URL sent to the authentication server may contain the following string: “http://auth.com/authenticate?domain=[domain]&URL=http://content.com/report”.
  • The authentication server processes the REDIRECT and determines whether user credentials (CRED) are needed for authorization. In Step 6, the authentication server transmits a “CHALLENGE” response to the client. As previously described, typical credentials consist of user name and password. An authorization header based on the credential information is then forwarded by the client browser to the authentication server. For example, a GET URL having such an authorization header is: “http://autho.com/authenticate?domain=[domain]&URL=http://content.com/report and the authorization header may be: “AUTHORIZE: [authorization]”.
  • The authentication server processes the GET request by checking the Account Database 58. If a valid account exists for the user, an SID is issued which authorizes access to the controlled page “report” and all the other pages within the domain.
  • As previously described, the preferred SID comprises a compact ASCII string that encodes a user identifier, the current domain, a key identifier, an expiration time, the client IF address, and an unforgeable digital signature. In Step 8, the authentication server redirects the client to the tagged URL, “http://content.com/[SID]/report”, to the client. In Step 9, the tagged URL is automatically forwarded by the browser as a GET request to the content server. The content server logs the GET request in the Transaction database 56 by recording the tagged URL, the client IF address, and the current time. In Step 10, the content server, upon validating the SID, transmits the requested controlled page “report” for display on the client browser.
  • According to one aspect of the present invention, the content server periodically evaluates the record contained in the transaction log 56 to determine the frequency and duration of accesses to the associated content server. The server counts requests to particular pages exclusive of repeated requests from a common client in order to determine the merits of the information on different pages for ratings purposes. By excluding repeated calls, the system avoids distortions by users attempting to “stuff the ballot box.”
  • In one embodiment, the time intervals between repeated requests by a common client are measured to exclude those requests falling within a defined period of time.
  • Additionally, the server may, at any given time, track access history within a client-server session. Such a history profile informs the service provider about link transversal frequencies and link paths followed by users. This profile is produced by filtering transaction logs from one or more servers to select only transactions involving a particular user ID (UID). Two subsequent entries, A and B, corresponding to requests from a given user in these logs represent a link traversal from document A to document B made by the user in question. This information may be used to identify the most popular links to a specific page and to suggest where to insert new links to provide more direct access. In another embodiment, the access history is evaluated to determine traversed links leading to a purchase of a product made within commercial pages. This information may be used, for example, to charge for advertising based on the number of link traversals from an advertising page to a product page or based on the count of purchases resulting from a path including the advertisement. In this embodiment, the server can gauge the effectiveness of advertising by measuring the number of sales that resulted from a particular page, link, or path of links. The system can be configured to charge the merchant for an advertising page based on the number of sales that resulted from that page.
  • According to another aspect of the present invention, a secondary server, such as the authentication server 200 in FIG. 2B, may access a prearranged user profile from the account database 216 and include information based on such a profile in the user identifier field of the SID. In a preferred embodiment, the content server may use such an SID to customize user requested pages to include personalized content based on the user identifier field of the SID.
  • In another aspect of the invention, the user may gain access to domain of servers containing journals or publications through a subscription. In such a situation, the user may purchase the subscription in advance to gain access to on-line documents through the Internet. The user gains access to a subscribed document over the Internet through the authorization procedure as described above where an authorization indicator is preferably embedded in a session identifier. In another embodiment, rather than relying on a prepaid subscription, a user may be charged and billed each time he or she accesses a particular document through the Internet. In that case, authorization may not be required so long as the user is fully identified in order to be charged for the service. The user identification is most appropriately embedded in the session identifier described above.
  • In another aspect of the invention, facilities are provided to allow users to utilize conventional telephone numbers or other identifiers to access merchant services. These merchant services can optionally be protected using SID5. In a preferred embodiment, as shown in FIG. 6, a Web browser client 601 provides a “dial” command to accept a telephone number from a user, as by clicking on a “dial” icon and inputting the telephone number through the keyboard. The browser then constructs a URL of the form “http://directory.net/NUMBER”, where NUMBER is the telephone number or other identifier specified by the user, The browser then performs a GET of the document specified by this URL, and contacts directory server 602, sending the NUMBER requested in Message 1.
  • In another embodiment, implemented with a conventional browser, client 601 uses a form page provided by directory server 601 that prompts for a telephone number or other identifier in place of a “dial” command, and Message 1 is a POST message to a URL specified by this form page.
  • Once NUMBER is received by directory server 601, the directory server uses database 604 to translate the NUMBER to a target URL that describes the merchant server and document that implements the service corresponding to NUMBER. This translation can ignore the punctuation of the number, therefore embedded parenthesis or dashes are not significant.
  • In another embodiment an identifier other than a number may be provided. For example, a user may enter a company name or product name without exact spelling. In such a case a “soundex” or other phonetic mapping can be used to permit words that sound alike to map to the same target URL. Multiple identifiers can also be used, such as a telephone number in conjunction with a product name or extension.
  • In Message 2, Directory server 602 sends a REDIRECT to client 601, specifying the target URL for NUMBER as computed from database 604. The client browser 601 then automatically sends Message 3 to GET the contents of this URL. Merchant server 603 returns this information in Message 4. The server 602 might have returned a Web page to the client to provide an appropriate link to the required document. However, because server 602 makes a translation to a final URL and sends a REDIRECT rather than a page to client 601, the document of message 4 is obtained without any user action beyond the initial dial input.
  • The Target URL contained in Message 3 can be an ordinary URL to an uncontrolled page, or it can be a URL that describes a controlled page. If the Target URL describes a controlled page then authentication is performed as previously described. The Target URL can also describe a URL that includes an SID that provides a preauthorized means of accessing a controlled page.
  • Among benefits of the “dial” command and its implementation is an improved way of accessing the Internet that is compatible with conventional telephone numbers and other identifiers. Merchants do not need to alter their print or television advertising to provide an Internet specific form of contact information, and users do not need to learn about URL5.
  • In the approach a single merchant server can provide multiple services that correspond to different external “telephone numbers” or other identifiers. For example, if users dial the “flight arrival” number they could be directed to the URL for the arrival page, while, if they dial the “reservations” number, they would be directed to the URL for the reservations page. A “priority gold” number could be directed to a controlled page URL that would first authenticate the user as belonging to the gold users group, and then would provide access to the “priority gold” page. An unpublished “ambassador” number could be directed to a tagged URL that permits access to the “priority gold” page without user authentication.
  • This invention has particular application to network sales systems such as presented in U.S. patent application Ser. No. 08/328,133, filed Oct. 24, 1994, by Payne et al. which is incorporated herein by reference.
  • EQUIVALENTS
  • Those skilled in the art will know, or be able to ascertain using no more than routine experimentation, many equivalents to the specific embodiments or the invention described herein. These and all other equivalents are intended to be encompassed by the following claims.

Claims (84)

1. A method of controlling access to protected content within a content server, comprising:
exchanging session data between a user computer system and a content server associated with a content server domain using a transfer format suitable for communication over the Internet to a user computer system that is configured to store the session data; and
receiving a request to access protected content from the user computer system at the content server, the request to access including at least a portion of the stored session data, the content server processing the request to access the protected content and using the portion of the stored session data to determine whether to allow the user computer system to access the protected content.
2. The method of claim 1, further comprising:
prompting the user computer system to provide credentials for accessing the protected content; and
comparing the user supplied credentials to information stored in a user account associated with the user computer system in order to authorize access to the protected content.
3. The method of claim 2, wherein the prompting and comparing steps precede the step of exchanging session data between the user computer system and the content server.
4. The method of claim 1, wherein the protected content is selected from the group consisting of an electronic document, a multimedia data file, an audio data file and a video data file.
5. The method of claim 1, wherein the session data includes a user identification associated with the user of the computer system and a domain identification associated with the content server domain, the method further comprising processing the user identification and the domain identification in order to authorize access to the protected content.
6. The method of claim 1, wherein the session data includes a user identification associated with the user of the computer system, the method further comprising processing the user identification in order to authorize access to the protected content.
7. The method of claim 1, wherein the session data includes a domain identification associated with the content server domain, the method further comprising processing the domain identification in order to authorize access to the protected content.
8. The method of claim 1, further comprising:
determining if credentials are required to access the protected content; and
if credentials are required to access the protected content, then prompting the user computer system to provide credentials for accessing the protected content.
9. The method of claim 8, wherein the determination of whether credentials are required to access the protected content is based upon an access level associated with the protected content.
10. The method of claim 1, further comprising:
determining an access level of the protected content; and
accessing a user account associated with the user computer system in order to determine whether to authorize access to the protected content.
11. The method of claim 1, wherein at least a portion of the stored session data includes encrypted data.
12. The method of claim 1, wherein at least a portion of the stored session data is digitally signed.
13. The method of claim 1, further comprising:
receiving one or more requests from the user computer system to access protected content at the content server;
in response to each request to access protected content, storing a content identifier in an access record associated with a user of the user computer system.
14. The method of claim 13, further comprising:
retrieving content identification data from the access record; and
displaying the content identification data at the user computer system.
15. The method of claim 1, wherein the transfer format suitable for communication over the Internet is the hypertext transfer protocol.
16. The method of claim 1, further comprising:
maintaining a transaction log at the content server, the transaction log including session data associated with the access of protected content stored within the content server domain.
17. The method of claim 1, wherein the session data includes information from a user account profile stored in an account database, the method further comprising:
the content server using the information from the user account profile to customize communications to the user computer system.
18. The method of claim 17, wherein the customized communications include advertisements.
19. The method of claim 1, further comprising:
for each completed access to protected content by the user computer system from the content server, storing an access record in a transaction database.
20. The method of claim 19, further comprising:
transmitting an electronic access statement to the user computer system, the electronic access statement including links to the access records stored in the transaction database.
21. The method of claim 20, further comprising:
selecting one of the links on the electronic access statement at the user computer system; and
in response thereto, obtaining the access record from the transaction server.
22. The method of claim 21, further comprising:
transmitting the protected content to the user computer system.
23. The method of claim 20, wherein the electronic access statement includes links to access records that have occurred in a current month.
24. The method of claim 23, wherein the electronic access statement includes at least one link to access records that have occurred in a prior month.
25. The method of claim 20, wherein the electronic access statement is a web page.
26. The method of claim 20, wherein the electronic access statement is transmitted to the user computer system by e-mail.
27. The method of claim 1, further comprising:
transmitting an electronic access statement to the user computer system, the electronic access statement including information regarding protected content that has been accessed by the user computer system.
28. The method of claim 27, wherein the information included in the electronic access statement includes an identification of the protected content.
29. The method of claim 27, wherein the information included in the electronic access statement includes the date on which the protected content was accessed by the user computer system.
30. The method of claim 28, wherein the identification of the protected content on the electronic access statement includes information usable to access the protected content.
31. The method of claim 30, wherein the information usable to access the protected content is a Uniform Resource Locator (URL) link to the protected content.
32. The method of claim 31, further comprising:
receiving an URL link at the content server corresponding to the protected content identified on the electronic access statement; and
transmitting additional data regarding the protected content to the user computer system.
33. The method of claim 32, wherein the additional data includes a description of the protected content.
34. The method of claim 32, further comprising:
transmitting the protected content associated with the URL link to the user computer system.
35. The method of claim 27, wherein the electronic access statement includes a customer service Uniform Resource Locator (URL) link.
36. The method of claim 35, further comprising:
receiving an URL link at the content server corresponding to the customer service URL link included in the electronic access statement; and
transmitting a customer service document to the user computer system.
37. The method of claim 2, further comprising:
storing user demographic information in the user account; and
determining whether to authorize access to the protected content based upon the user demographic information stored in the user account.
38. The method of claim 37, wherein the user demographic information includes an indication of the user's age.
39. The method of claim 1, further comprising:
determining whether to allow the user computer system to access the protected content according to a subscription with the content server.
40. The method of claim 39, wherein the subscription is a pre-paid subscription enabling the user computer system to access protected content within the content server.
41. The method of claim 1, further comprising:
charging the user computer system for accessing the protected content.
42. The method of claim 41, wherein the user computer system is charged each time protected content is accessed at the content server.
43. A system for providing controlled access to protected content, comprising:
a content server that exchanges session data with a user computer system using a transfer format suitable for communication over the Internet;
the content server transmitting the session data to the user computer system, which is configured to store the session data; and
the content server receiving a request to access protected content from the user computer system, the request to access including at least a portion of the stored session data, and processing the request to access the protected content using the portion of the stored session data to determine whether to allow the user computer system to access the protected content.
44. The system of claim 43, wherein the content server prompts the user computer system to provide credentials for accessing the protected content, and compares the user supplied credentials to information stored in a user account associated with the user computer system in order to authorize access to the protected content.
45. The system of claim 44, wherein the content server prompts the user computer system to provide credentials prior to transmitting the session data to the user computer system.
46. The system of claim 43, wherein the protected content is selected from the group consisting of an electronic document, a multimedia data file, an audio data file and a video data file.
47. The system of claim 43, wherein the session data includes a user identification associated with the user computer system and a domain identification associated with the content server domain, and wherein the content server is programmed to process the user identification and the domain identification in order to authorize access to the protected content.
48. The system of claim 43, wherein the session data includes a user identification associated with the user computer system, and wherein the content server is programmed to process the user identification in order to authorize access to the protected content.
49. The system of claim 43, wherein the session data includes a domain identification associated with the content server domain, and wherein the content server is programmed to process the domain identification in order to authorize access to the protected content.
50. The system of claim 43, wherein the content server determines if credentials are required to access the protected content, and if so, the content server prompts the user computer system to provide credentials for accessing the protected content.
51. The system of claim 43, wherein the content server determines if credentials are required based on an access level associated with the protected content.
52. The system of claim 43, wherein the content server determines an access level of the protected content and accesses a user account associated with the user computer system in order to determine whether to authorize access to the protected content.
53. The system of claim 43, wherein at least a portion of the stored session data includes encrypted data.
54. The system of claim 43, wherein at least a portion of the stored session data is digitally signed.
55. The system of claim 43, wherein the content server receives one or more requests to access protected content from the user computer system, and in response to each request to access protected content, stores a content identifier in an access record associated with a user of the user computer system.
56. The system of claim 55, wherein the content server retrieves content identification data from the access record and causes the content identification data to be displayed at the user computer system.
57. The system of claim 43, wherein the transfer format suitable for communication over the Internet is the hypertext transfer protocol.
58. The system of claim 43, wherein the content server maintains a transaction log including session data associated with the access of protected content stored within the content server domain.
59. The system of claim 43, wherein the session data includes information from a user account profile stored in an account database, the content server using the information from the user account profile to customize communications to the user computer system.
60. The system of claim 59, wherein the customized communications include advertisements.
61. The system of claim 43, wherein for each completed access to protected content by the user computer system from the content server, the content server stores an access record in a transaction database.
62. The system of claim 61, wherein the content server transmits an electronic access statement to the user computer system, the electronic access statement including links to the access records stored in the transaction database.
63. The system of claim 62, wherein the content server receives a selection of one of the links on the electronic access statement from the user computer system and, in response thereto, obtains the access record from the transaction server.
64. The system of claim 63, wherein the content server transmits the protected content to the user computer system.
65. The system of claim 64, wherein the electronic access statement includes links to access records that have occurred in a current month.
66. The system of claim 65, wherein the electronic access statement includes at least one link to access records that have occurred in a prior month.
67. The system of claim 64, wherein the electronic access statement is a web page.
68. The system of claim 64, wherein the electronic access statement is transmitted to the user computer system by e-mail.
69. The system of claim 43, wherein the content server transmits an electronic access statement to the user computer system, the electronic access statement including information regarding protected content that has been accessed by the user computer system.
70. The system of claim 69, wherein the information included in the electronic access statement includes an identification of the protected content.
71. The system of claim 69, wherein the information included in the electronic access statement includes the date on which the protected content was accessed by the user computer system.
72. The system of claim 70, wherein the identification of the protected content on the electronic access statement includes information usable to access the protected content.
73. The system of claim 72, wherein the information usable to access the protected content is a Uniform Resource Locator (URL) link to the protected content.
74. The system of claim 73, wherein the content server receives an URL link corresponding to the protected content identified on the electronic access statement and transmits additional data regarding the protected content to the user computer system.
75. The system of claim 74, wherein the additional data includes a description of the protected content.
76. The system of claim 74, wherein the content server transmits the protected content associated with the URL link to the user computer system.
77. The system of claim 64, wherein the electronic access statement includes a customer service Uniform Resource Locator (URL) link.
78. The system of claim 69, wherein the content server receives an URL link corresponding to the customer service URL link included in the electronic access statement and transmits a customer service document to the user computer system.
79. The system of claim 43, wherein the user account includes demographic information and the content server determines whether to authorize access to the protected content based upon the user demographic information stored in the user account.
80. The system of claim 79, wherein the user demographic information includes an indication of the user's age.
81. The system of claim 43, wherein the content server determines whether to allow the user computer system to access the protected content according to a subscription with the content server.
82. The system of claim 81, wherein the subscription is a pre-paid subscription enabling the user computer system to access protected content within the content server.
83. The system of claim 43, wherein the user computer system is charged for accessing the protected content.
84. The system of claim 83, wherein the use computer system is charged each time protected content is accessed at the content server.
US12/109,443 1998-01-12 2008-04-25 Internet server access control and monitoring systems Abandoned US20080201344A1 (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
US12/109,443 US20080201344A1 (en) 1998-01-12 2008-04-25 Internet server access control and monitoring systems

Applications Claiming Priority (5)

Application Number Priority Date Filing Date Title
US09/005,479 US7272639B1 (en) 1995-06-07 1998-01-12 Internet server access control and monitoring systems
US09/548,237 US8606900B1 (en) 1995-06-07 2000-04-12 Method and system for counting web access requests
US09/548,235 US8635327B1 (en) 1995-06-07 2000-04-12 Web advertising method
US11/300,245 US9900305B2 (en) 1998-01-12 2005-12-13 Internet server access control and monitoring systems
US12/109,443 US20080201344A1 (en) 1998-01-12 2008-04-25 Internet server access control and monitoring systems

Related Parent Applications (1)

Application Number Title Priority Date Filing Date
US11/300,245 Continuation US9900305B2 (en) 1998-01-12 2005-12-13 Internet server access control and monitoring systems

Publications (1)

Publication Number Publication Date
US20080201344A1 true US20080201344A1 (en) 2008-08-21

Family

ID=46323373

Family Applications (3)

Application Number Title Priority Date Filing Date
US11/300,245 Expired - Fee Related US9900305B2 (en) 1998-01-12 2005-12-13 Internet server access control and monitoring systems
US11/971,361 Expired - Fee Related US9917827B2 (en) 1998-01-12 2008-01-09 Internet server access control and monitoring systems
US12/109,443 Abandoned US20080201344A1 (en) 1998-01-12 2008-04-25 Internet server access control and monitoring systems

Family Applications Before (2)

Application Number Title Priority Date Filing Date
US11/300,245 Expired - Fee Related US9900305B2 (en) 1998-01-12 2005-12-13 Internet server access control and monitoring systems
US11/971,361 Expired - Fee Related US9917827B2 (en) 1998-01-12 2008-01-09 Internet server access control and monitoring systems

Country Status (1)

Country Link
US (3) US9900305B2 (en)

Cited By (53)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20020083178A1 (en) * 2000-08-11 2002-06-27 Brothers John David West Resource distribution in network environment
US20060095526A1 (en) * 1998-01-12 2006-05-04 Levergood Thomas M Internet server access control and monitoring systems
US20070185988A1 (en) * 2006-02-06 2007-08-09 Tribinium Corporation Apparatus and method for directing content to a user by an internet service provider
US20090172107A1 (en) * 2007-12-27 2009-07-02 David Franklin Manning Proxy content for submitting web service data in the user's security context
US7886217B1 (en) 2003-09-29 2011-02-08 Google Inc. Identification of web sites that contain session identifiers
US7886032B1 (en) * 2003-12-23 2011-02-08 Google Inc. Content retrieval from sites that use session identifiers
US20110145590A1 (en) * 1999-06-01 2011-06-16 AOL, Inc. Secure data exchange between data processing systems
US20110173683A1 (en) * 2009-07-07 2011-07-14 Netsweeper, Inc. System and method for providing customized response messages based on requested website
US7996460B1 (en) * 1999-10-22 2011-08-09 Aol Inc. Processing selected browser requests
US20120022975A1 (en) * 2007-02-26 2012-01-26 L Heureux Israel Digital asset distribution system
US8606900B1 (en) 1995-06-07 2013-12-10 Soverain Software Llc Method and system for counting web access requests
US20140236711A1 (en) * 2000-07-18 2014-08-21 Google Inc. Economic filtering system for delivery of permission based, targeted, incentivized advertising
US9104669B1 (en) * 2005-03-28 2015-08-11 Advertising.Com Llc Audio/video advertising network
US20150334543A1 (en) * 2014-05-13 2015-11-19 Verizon Patent And Licensing Inc. Deploying a toll-free data service campaign by modifying a uniform resource identifier
US9916306B2 (en) 2012-10-19 2018-03-13 Sdl Inc. Statistical linguistic analysis of source content
US9954794B2 (en) 2001-01-18 2018-04-24 Sdl Inc. Globalization management system and method therefor
US9984054B2 (en) 2011-08-24 2018-05-29 Sdl Inc. Web interface including the review and manipulation of a web document and utilizing permission based control
US10061749B2 (en) 2011-01-29 2018-08-28 Sdl Netherlands B.V. Systems and methods for contextual vocabularies and customer segmentation
US10140320B2 (en) 2011-02-28 2018-11-27 Sdl Inc. Systems, methods, and media for generating analytical data
US10198438B2 (en) 1999-09-17 2019-02-05 Sdl Inc. E-services translation utilizing machine translation and translation memory
US10248650B2 (en) 2004-03-05 2019-04-02 Sdl Inc. In-context exact (ICE) matching
US10261994B2 (en) 2012-05-25 2019-04-16 Sdl Inc. Method and system for automatic management of reputation of translators
US10319252B2 (en) 2005-11-09 2019-06-11 Sdl Inc. Language capability assessment and training apparatus and techniques
US10417646B2 (en) 2010-03-09 2019-09-17 Sdl Inc. Predicting the cost associated with translating textual content
US10452740B2 (en) 2012-09-14 2019-10-22 Sdl Netherlands B.V. External content libraries
US10572928B2 (en) 2012-05-11 2020-02-25 Fredhopper B.V. Method and system for recommending products based on a ranking cocktail
US10580015B2 (en) 2011-02-25 2020-03-03 Sdl Netherlands B.V. Systems, methods, and media for executing and optimizing online marketing initiatives
US10614167B2 (en) 2015-10-30 2020-04-07 Sdl Plc Translation review workflow systems and methods
US10635863B2 (en) 2017-10-30 2020-04-28 Sdl Inc. Fragment recall and adaptive automated translation
US10657540B2 (en) 2011-01-29 2020-05-19 Sdl Netherlands B.V. Systems, methods, and media for web content management
US10817676B2 (en) 2017-12-27 2020-10-27 Sdl Inc. Intelligent routing services and systems
US20210119967A1 (en) * 2018-10-11 2021-04-22 Spredfast, Inc. Multiplexed data exchange portal interface in scalable data networks
US11050704B2 (en) 2017-10-12 2021-06-29 Spredfast, Inc. Computerized tools to enhance speed and propagation of content in electronic messages among a system of networked computing devices
US11061900B2 (en) 2018-01-22 2021-07-13 Spredfast, Inc. Temporal optimization of data operations using distributed search and server management
US11102271B2 (en) 2018-01-22 2021-08-24 Spredfast, Inc. Temporal optimization of data operations using distributed search and server management
US11128589B1 (en) 2020-09-18 2021-09-21 Khoros, Llc Gesture-based community moderation
US11256867B2 (en) 2018-10-09 2022-02-22 Sdl Inc. Systems and methods of machine learning for digital assets and message creation
US11297151B2 (en) 2017-11-22 2022-04-05 Spredfast, Inc. Responsive action prediction based on electronic messages among a system of networked computing devices
US11308528B2 (en) 2012-09-14 2022-04-19 Sdl Netherlands B.V. Blueprinting of multimedia assets
US11386186B2 (en) 2012-09-14 2022-07-12 Sdl Netherlands B.V. External content library connector systems and methods
US11438282B2 (en) 2020-11-06 2022-09-06 Khoros, Llc Synchronicity of electronic messages via a transferred secure messaging channel among a system of various networked computing devices
US11438289B2 (en) 2020-09-18 2022-09-06 Khoros, Llc Gesture-based community moderation
US11470161B2 (en) * 2018-10-11 2022-10-11 Spredfast, Inc. Native activity tracking using credential and authentication management in scalable data networks
US11538064B2 (en) 2017-04-28 2022-12-27 Khoros, Llc System and method of providing a platform for managing data content campaign on social networks
US11546331B2 (en) 2018-10-11 2023-01-03 Spredfast, Inc. Credential and authentication management in scalable data networks
US11570128B2 (en) 2017-10-12 2023-01-31 Spredfast, Inc. Optimizing effectiveness of content in electronic messages among a system of networked computing device
US11627100B1 (en) 2021-10-27 2023-04-11 Khoros, Llc Automated response engine implementing a universal data space based on communication interactions via an omnichannel electronic data channel
US11627053B2 (en) 2019-05-15 2023-04-11 Khoros, Llc Continuous data sensing of functional states of networked computing devices to determine efficiency metrics for servicing electronic messages asynchronously
US11687573B2 (en) 2017-10-12 2023-06-27 Spredfast, Inc. Predicting performance of content and electronic messages among a system of networked computing devices
US11714629B2 (en) 2020-11-19 2023-08-01 Khoros, Llc Software dependency management
US11741551B2 (en) 2013-03-21 2023-08-29 Khoros, Llc Gamification for online social communities
US11924375B2 (en) 2021-10-27 2024-03-05 Khoros, Llc Automated response engine and flow configured to exchange responsive communication data via an omnichannel electronic communication channel independent of data source
US11936652B2 (en) 2021-01-29 2024-03-19 Spredfast, Inc. Proxied multi-factor authentication using credential and authentication management in scalable data networks

Families Citing this family (62)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US8706630B2 (en) * 1999-08-19 2014-04-22 E2Interactive, Inc. System and method for securely authorizing and distributing stored-value card data
JP3395896B2 (en) * 1999-11-25 2003-04-14 株式会社ジャストシステム Information providing system and method, client device and mediation device
US8606684B2 (en) * 2000-11-10 2013-12-10 Aol Inc. Digital content distribution and subscription system
US7392313B2 (en) * 2001-10-18 2008-06-24 International Business Machines Corporation Method and apparatus for partitioned environment for web application servers
US20030154221A1 (en) * 2002-02-13 2003-08-14 Sun Microsystems, Inc. System and method for accessing file system entities
US9558341B1 (en) 2004-10-07 2017-01-31 Sprint Communications Company L.P. Integrated user profile administration tool
US7890586B1 (en) * 2004-11-01 2011-02-15 At&T Mobility Ii Llc Mass multimedia messaging
US7609686B1 (en) 2004-11-01 2009-10-27 At&T Mobility Ii Llc Mass multimedia messaging
US8832047B2 (en) * 2005-07-27 2014-09-09 Adobe Systems Incorporated Distributed document version control
US8874477B2 (en) 2005-10-04 2014-10-28 Steven Mark Hoffberg Multifactorial optimization system and method
US20080082832A1 (en) * 2006-09-29 2008-04-03 Mcdougal Monty D Configurable Data Access Application For Highly Secure Systems
US20080195750A1 (en) * 2007-02-09 2008-08-14 Microsoft Corporation Secure cross platform auditing
US10019570B2 (en) * 2007-06-14 2018-07-10 Microsoft Technology Licensing, Llc Protection and communication abstractions for web browsers
US11190936B2 (en) 2007-09-27 2021-11-30 Clevx, Llc Wireless authentication system
US10778417B2 (en) 2007-09-27 2020-09-15 Clevx, Llc Self-encrypting module with embedded wireless user authentication
US10181055B2 (en) 2007-09-27 2019-01-15 Clevx, Llc Data security system with encryption
US10783232B2 (en) * 2007-09-27 2020-09-22 Clevx, Llc Management system for self-encrypting managed devices with embedded wireless user authentication
US8443106B2 (en) * 2007-12-21 2013-05-14 Gary Stephen Shuster Content restriction compliance using reverse DNS lookup
US20090183194A1 (en) * 2008-01-10 2009-07-16 Michael Raftelis Methods and apparatus to handle telecommunication service changes
US8837465B2 (en) * 2008-04-02 2014-09-16 Twilio, Inc. System and method for processing telephony sessions
EP3484135A1 (en) 2008-04-02 2019-05-15 Twilio Inc. System and method for processing telephony sessions
US9049234B2 (en) * 2009-02-03 2015-06-02 Gary Stephen Shuster HTTP trigger for out-of-protocol action
US8392982B2 (en) * 2009-03-20 2013-03-05 Citrix Systems, Inc. Systems and methods for selective authentication, authorization, and auditing in connection with traffic management
EP3382991A1 (en) * 2009-09-14 2018-10-03 InterDigital Patent Holdings, Inc. Method and apparatus for trusted authentication and logon
CN104767740A (en) * 2009-09-14 2015-07-08 交互数字专利控股公司 User platform credible authentication and access method
US9490984B2 (en) 2009-09-14 2016-11-08 Interdigital Patent Holdings, Inc. Method and apparatus for trusted authentication and logon
US9634993B2 (en) 2010-04-01 2017-04-25 Cloudflare, Inc. Internet-based proxy service to modify internet responses
US9049247B2 (en) 2010-04-01 2015-06-02 Cloudfare, Inc. Internet-based proxy service for responding to server offline errors
US11456882B2 (en) 2010-04-30 2022-09-27 T-Central, Inc. Using PKI for security and authentication of control devices and their data
US11743057B2 (en) 2010-04-30 2023-08-29 T-Central, Inc. Using PKI for security and authentication of control devices and their data
US10652031B2 (en) * 2010-04-30 2020-05-12 T-Central, Inc. Using PKI for security and authentication of control devices and their data
US10153908B2 (en) 2010-04-30 2018-12-11 T-Central, Inc. Secure communication of IOT devices for vehicles
US20120036048A1 (en) 2010-08-06 2012-02-09 Diy Media, Inc. System and method for distributing multimedia content
CN102480475B (en) * 2010-11-30 2014-10-01 金蝶软件(中国)有限公司 Web service safety access control method, apparatus and system thereof
US9264881B2 (en) 2011-01-04 2016-02-16 Qualcomm Incorporated Methods and apparatus for enhanced system access control for peer-to-peer wireless communication networks
US8285808B1 (en) 2011-05-20 2012-10-09 Cloudflare, Inc. Loading of web resources
US10148763B2 (en) 2011-10-10 2018-12-04 Hewlett-Packard Development Company, L.P. Establish client-host connection
US20130247149A1 (en) * 2012-03-15 2013-09-19 Theodore SANFT Internet protocol address authentication method
US9413587B2 (en) 2012-05-02 2016-08-09 Box, Inc. System and method for a third-party application to access content within a cloud-based platform
US9691051B2 (en) 2012-05-21 2017-06-27 Box, Inc. Security enhancement through application access control
US8914900B2 (en) 2012-05-23 2014-12-16 Box, Inc. Methods, architectures and security mechanisms for a third-party application to access content in a cloud-based platform
US9712510B2 (en) 2012-07-06 2017-07-18 Box, Inc. Systems and methods for securely submitting comments among users via external messaging applications in a cloud-based platform
US8613089B1 (en) 2012-08-07 2013-12-17 Cloudflare, Inc. Identifying a denial-of-service attack in a cloud-based proxy service
US9135462B2 (en) 2012-08-29 2015-09-15 Box, Inc. Upload and download streaming encryption to/from a cloud-based platform
US9195519B2 (en) 2012-09-06 2015-11-24 Box, Inc. Disabling the self-referential appearance of a mobile application in an intent via a background registration
US9959420B2 (en) 2012-10-02 2018-05-01 Box, Inc. System and method for enhanced security and management mechanisms for enterprise administrators in a cloud-based environment
US9838375B2 (en) 2013-02-28 2017-12-05 Microsoft Technology Licensing, Llc RESTlike API that supports a resilient and scalable distributed application
US9059987B1 (en) * 2013-04-04 2015-06-16 Sprint Communications Company L.P. Methods and systems of using single sign-on for identification for a web server not integrated with an enterprise network
US9262200B2 (en) 2014-06-25 2016-02-16 Independenceit, Inc. Methods and systems for provisioning a virtual resource in a mixed-use server
US11240571B2 (en) * 2015-07-27 2022-02-01 Abda Digital Private Limited Method and system for enabling interactive infomercials
CN106097014A (en) * 2016-06-17 2016-11-09 武汉斗鱼网络科技有限公司 A kind of system and method being exchanged virtual present by redemption code
CN106251180A (en) * 2016-08-12 2016-12-21 福建中金在线信息科技有限公司 A kind of method of high concurrency advertisement putting website
US10791119B1 (en) * 2017-03-14 2020-09-29 F5 Networks, Inc. Methods for temporal password injection and devices thereof
KR20190125465A (en) * 2017-03-28 2019-11-06 클라우드점퍼 코포레이션 Methods and systems for providing wake-on-demand access to session servers
CN108234642B (en) * 2017-12-29 2021-01-26 中国银联股份有限公司 User tracking method, server and user side
US11475446B2 (en) 2018-12-28 2022-10-18 Mastercard International Incorporated System, methods and computer program products for identity authentication for electronic payment transactions
US11494769B2 (en) * 2019-01-10 2022-11-08 Mastercard International Incorporated System, methods and computer program products for identity authentication for electronic payment transactions
WO2020214175A1 (en) * 2019-04-18 2020-10-22 Visa International Service Association Method, system, and computer program product for controlling access in a network of servers
US11531483B2 (en) * 2020-03-19 2022-12-20 Orca Data Technology (Xi'an) Co., Ltd Direct data placement
WO2021242226A1 (en) * 2020-05-27 2021-12-02 Hewlett-Packard Development Company, L.P. Address authentication
CN114331403A (en) * 2020-09-28 2022-04-12 支付宝实验室(新加坡)有限公司 Data processing, resource transfer and payment method, device, equipment and medium
US20220150234A1 (en) * 2020-11-12 2022-05-12 Arris Enterprises Llc Providing credentials from web hosted application to a network device on a local network

Citations (91)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US2196914A (en) * 1938-03-14 1940-04-09 Sylvan N Goldman Folding basket carriage for self-service stores
US4073368A (en) * 1975-01-20 1978-02-14 Mustapick Andrew James Automated merchandising system
US4264808A (en) * 1978-10-06 1981-04-28 Ncr Corporation Method and apparatus for electronic image processing of documents for accounting purposes
US4317957A (en) * 1980-03-10 1982-03-02 Marvin Sendrow System for authenticating users and devices in on-line transaction networks
US4449186A (en) * 1981-10-15 1984-05-15 Cubic Western Data Touch panel passenger self-ticketing system
US4566078A (en) * 1983-03-30 1986-01-21 International Business Machines Corp. Concurrent multi-lingual use in data processing systems
US4567359A (en) * 1984-05-24 1986-01-28 Lockwood Lawrence B Automatic information, goods and services dispensing system
US4578530A (en) * 1981-06-26 1986-03-25 Visa U.S.A., Inc. End-to-end encryption system and method of operation
US4654482A (en) * 1984-10-15 1987-03-31 Deangelis Lawrence J Home merchandise ordering telecommunications terminal
US4734858A (en) * 1983-12-05 1988-03-29 Portel Services Network, Inc. Data terminal and system for placing orders
US4795890A (en) * 1987-02-02 1989-01-03 Light Signatures, Inc. Device authentication system for on and off line use
US4799156A (en) * 1986-10-01 1989-01-17 Strategic Processing Corporation Interactive market management system
US4805134A (en) * 1986-01-09 1989-02-14 International Business Machines Corporation Electronic system for accessing graphical and textual information
US4812628A (en) * 1985-05-02 1989-03-14 Visa International Service Association Transaction system with off-line risk assessment
US4827508A (en) * 1986-10-14 1989-05-02 Personal Library Software, Inc. Database usage metering and protection system and method
US4891503A (en) * 1988-03-29 1990-01-02 Gascard, Inc. Distributed authorization system
US4922521A (en) * 1986-09-05 1990-05-01 U.S. Philips Corporation System for providing secure telecommunication access to a computer
US4926480A (en) * 1983-08-22 1990-05-15 David Chaum Card-computer moderated systems
US4931932A (en) * 1987-09-28 1990-06-05 Travelsoft, Inc. Computerized system with means to automatically clear and sell wait-listed customer reservations
US4935870A (en) * 1986-12-15 1990-06-19 Keycom Electronic Publishing Apparatus for downloading macro programs and executing a downloaded macro program responding to activation of a single key
US4982346A (en) * 1988-12-16 1991-01-01 Expertel Communications Incorporated Mall promotion network apparatus and method
US4984155A (en) * 1988-08-29 1991-01-08 Square D Company Order entry system having catalog assistance
US4987593A (en) * 1988-03-16 1991-01-22 David Chaum One-show blind signature systems
US4991210A (en) * 1989-05-04 1991-02-05 David Chaum Unpredictable blind signature systems
US4992940A (en) * 1989-03-13 1991-02-12 H-Renee, Incorporated System and method for automated selection of equipment for purchase through input of user desired specifications
US4996711A (en) * 1989-06-21 1991-02-26 Chaum David L Selected-exponent signature systems
US5025373A (en) * 1988-06-30 1991-06-18 Jml Communications, Inc. Portable personal-banking system
US5105184A (en) * 1989-11-09 1992-04-14 Noorali Pirani Methods for displaying and integrating commercial advertisements with computer software
US5113496A (en) * 1987-08-04 1992-05-12 Mccalley Karl W Bus interconnection structure with redundancy linking plurality of groups of processors, with servers for each group mounted on chassis
US5204947A (en) * 1990-10-31 1993-04-20 International Business Machines Corporation Application independent (open) hypermedia enablement services
US5205437A (en) * 1991-08-16 1993-04-27 Univend, Inc. Single article newspaper dispensing apparatus
US5220501A (en) * 1989-12-08 1993-06-15 Online Resources, Ltd. Method and system for remote delivery of retail banking services
US5276736A (en) * 1990-01-29 1994-01-04 David Chaum Optionally moderated transaction systems
US5285383A (en) * 1990-09-14 1994-02-08 Plains Cotton Cooperative Association Method for carrying out transactions of goods using electronic title
US5297249A (en) * 1990-10-31 1994-03-22 International Business Machines Corporation Hypermedia link marker abstract and search services
US5305195A (en) * 1992-03-25 1994-04-19 Gerald Singer Interactive advertising system for on-line terminals
US5309437A (en) * 1990-06-29 1994-05-03 Digital Equipment Corporation Bridge-like internet protocol router
US5311594A (en) * 1993-03-26 1994-05-10 At&T Bell Laboratories Fraud protection for card transactions
US5310997A (en) * 1992-09-10 1994-05-10 Tandy Corporation Automated order and delivery system
US5313637A (en) * 1988-11-29 1994-05-17 Rose David K Method and apparatus for validating authorization to access information in an information processing system
US5319543A (en) * 1992-06-19 1994-06-07 First Data Health Services Corporation Workflow server for medical records imaging and tracking system
US5319542A (en) * 1990-09-27 1994-06-07 International Business Machines Corporation System for ordering items using an electronic catalogue
US5321751A (en) * 1993-02-18 1994-06-14 Eastman Kodak Company Method and apparatus for credit card verification
US5325362A (en) * 1993-09-29 1994-06-28 Sun Microsystems, Inc. Scalable and efficient intra-domain tunneling mobile-IP scheme
US5383113A (en) * 1991-07-25 1995-01-17 Checkfree Corporation System and method for electronically providing customer services including payment of bills, financial analysis and loans
US5388257A (en) * 1991-07-24 1995-02-07 At&T Corp. Method and apparatus for operating a computer based file system
US5414833A (en) * 1993-10-27 1995-05-09 International Business Machines Corporation Network security system and method using a parallel finite state machine adaptive active monitor and responder
US5414841A (en) * 1992-10-19 1995-05-09 International Business Machines Corporation Computerized system for representing data items using token identifiers
US5483652A (en) * 1994-01-24 1996-01-09 Digital Equipment Corporation Mechanism for locating without search discrete application resources known by common name only in a distributed network computing environment
US5491820A (en) * 1994-11-10 1996-02-13 At&T Corporation Distributed, intermittently connected, object-oriented database and management system
US5499298A (en) * 1994-03-17 1996-03-12 National University Of Singapore Controlled dissemination of digital information
US5506961A (en) * 1992-09-11 1996-04-09 International Business Machines Corporation Connection authorizer for controlling access to system resources
US5521631A (en) * 1994-05-25 1996-05-28 Spectravision, Inc. Interactive digital video services system with store and forward capabilities
US5526483A (en) * 1992-10-05 1996-06-11 International Business Machines Corporation Fast network file system running over a hybrid connectionless transport
US5530852A (en) * 1994-12-20 1996-06-25 Sun Microsystems, Inc. Method for extracting profiles and topics from a first file written in a first markup language and generating files in different markup languages containing the profiles and topics for use in accessing data described by the profiles and topics
US5592378A (en) * 1994-08-19 1997-01-07 Andersen Consulting Llp Computerized order entry system and method
US5594910A (en) * 1988-07-15 1997-01-14 Ibm Corp. Interactive computer network and method of operation
US5596643A (en) * 1994-09-30 1997-01-21 Electronic Payment Services, Inc. Network settlement performed on consolidated information
US5598536A (en) * 1994-08-09 1997-01-28 Shiva Corporation Apparatus and method for providing remote users with the same unique IP address upon each network access
US5598535A (en) * 1994-08-01 1997-01-28 International Business Machines Corporation System for selectively and cumulatively grouping packets from different sessions upon the absence of exception condition and sending the packets after preselected time conditions
US5603025A (en) * 1994-07-29 1997-02-11 Borland International, Inc. Methods for hypertext reporting in a relational database management system
US5604802A (en) * 1993-10-29 1997-02-18 International Business Machines Corporation Transaction processing system
US5619648A (en) * 1994-11-30 1997-04-08 Lucent Technologies Inc. Message filtering techniques
US5621797A (en) * 1994-04-28 1997-04-15 Citibank, N.A. Electronic ticket presentation and transfer method
US5623547A (en) * 1990-04-12 1997-04-22 Jonhig Limited Value transfer system
US5623656A (en) * 1994-12-15 1997-04-22 Lucent Technologies Inc. Script-based data communication system and method utilizing state memory
US5638519A (en) * 1994-05-20 1997-06-10 Haluska; John E. Electronic method and system for controlling and tracking information related to business transactions
US5642515A (en) * 1992-04-17 1997-06-24 International Business Machines Corporation Network server for local and remote resources
US5708780A (en) * 1995-06-07 1998-01-13 Open Market, Inc. Internet server access control and monitoring systems
US5710884A (en) * 1995-03-29 1998-01-20 Intel Corporation System for automatically updating personal profile server with updates to additional user information gathered from monitoring user's electronic consuming habits generated on computer during use
US5712989A (en) * 1993-04-02 1998-01-27 Fisher Scientific Company Just-in-time requisition and inventory management system
US5715314A (en) * 1994-10-24 1998-02-03 Open Market, Inc. Network sales system
US5721780A (en) * 1995-05-31 1998-02-24 Lucent Technologies, Inc. User-transparent security method and apparatus for authenticating user terminal access to a network
US5724521A (en) * 1994-11-03 1998-03-03 Intel Corporation Method and apparatus for providing electronic advertisements to end users in a consumer best-fit pricing manner
US5724424A (en) * 1993-12-16 1998-03-03 Open Market, Inc. Digital active advertising
US5727164A (en) * 1991-12-13 1998-03-10 Max Software, Inc. Apparatus for and method of managing the availability of items
US5732219A (en) * 1995-03-17 1998-03-24 Vermeer Technologies, Inc. Computer system and computer-implemented process for remote editing of computer files
US5734719A (en) * 1993-10-15 1998-03-31 International Business Systems, Incorporated Digital information accessing, delivery and production system
US5761662A (en) * 1994-12-20 1998-06-02 Sun Microsystems, Inc. Personalized information retrieval using user-defined profile
US5768521A (en) * 1994-05-16 1998-06-16 Intel Corporation General purpose metering mechanism for distribution of electronic information
US5870552A (en) * 1995-03-28 1999-02-09 America Online, Inc. Method and apparatus for publishing hypermedia documents over wide area networks
US5895454A (en) * 1997-04-17 1999-04-20 Harrington; Juliette Integrated interface for vendor/product oriented internet websites
US5897622A (en) * 1996-10-16 1999-04-27 Microsoft Corporation Electronic shopping and merchandising system
US6023683A (en) * 1994-08-10 2000-02-08 Fisher Scientific Company Electronic sourcing system and method
US6041316A (en) * 1994-07-25 2000-03-21 Lucent Technologies Inc. Method and system for ensuring royalty payments for data delivered over a network
US6182052B1 (en) * 1994-06-06 2001-01-30 Huntington Bancshares Incorporated Communications network interface for user friendly interactive access to online services
US6230202B1 (en) * 1995-05-01 2001-05-08 Donald A Lewine Method for performing transactions on the world-wide web computer network
US6507872B1 (en) * 1992-09-25 2003-01-14 David Michael Geshwind Class of methods for improving perceived efficiency of end-user interactive access of a large database such as the world-wide web via a communication network such as “The Internet”
US6684333B1 (en) * 1995-05-24 2004-01-27 Walker Digital, Llc Parallel data network billing and collection system
US6708157B2 (en) * 1994-11-23 2004-03-16 Contentguard Holdings Inc. System for controlling the distribution and use of digital works using digital tickets
US20060095526A1 (en) * 1998-01-12 2006-05-04 Levergood Thomas M Internet server access control and monitoring systems

Family Cites Families (101)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US623020A (en) * 1899-04-11 Cotton-press
US4484304A (en) 1979-02-02 1984-11-20 International Business Machines Corporation Transaction execution system having keyboard and message customization, improved key function versatility and message segmentation
US4305059A (en) 1980-01-03 1981-12-08 Benton William M Modular funds transfer system
US4529870A (en) 1980-03-10 1985-07-16 David Chaum Cryptographic identification, financial transaction, and credential device
GB2102606B (en) 1981-06-19 1985-01-30 Nat Res Dev Apparatus and methods for making payments electronically
US4528643A (en) 1983-01-10 1985-07-09 Fpdc, Inc. System for reproducing information in material objects at a point of sale location
US4547851A (en) * 1983-03-14 1985-10-15 Kurland Lawrence G Integrated interactive restaurant communication method for food and entertainment processing
US4759064A (en) 1985-10-07 1988-07-19 Chaum David L Blind unanticipated signature systems
US4947430A (en) 1987-11-23 1990-08-07 David Chaum Undeniable signature systems
US4759063A (en) 1983-08-22 1988-07-19 Chaum David L Blind signature systems
GB2146814A (en) 1983-09-17 1985-04-24 Ibm Electronic fund transfer systems
US5309355A (en) * 1984-05-24 1994-05-03 Lockwood Lawrence B Automated sales system
IL75702A0 (en) 1984-07-27 1985-11-29 Technion Res & Dev Foundation Apparatus for effecting and recording monetary transactions
US4685055A (en) * 1985-07-01 1987-08-04 Thomas Richard B Method and system for controlling use of protected software
US4775935A (en) 1986-09-22 1988-10-04 Westinghouse Electric Corp. Video merchandising system with variable and adoptive product sequence presentation order
US4941089A (en) 1986-12-12 1990-07-10 Datapoint Corporation Input/output network for computer system
US5165020A (en) * 1987-03-27 1992-11-17 Digital Equipment Corporation Terminal device session management protocol
US4791566A (en) * 1987-03-27 1988-12-13 Digital Equipment Corporation Terminal device session management protocol
JP2589491B2 (en) 1987-06-22 1997-03-12 化成オプトニクス株式会社 Fluorescent lamp
US4887208A (en) * 1987-12-18 1989-12-12 Schneider Bruce H Sales and inventory control system
US4959686A (en) * 1988-02-24 1990-09-25 Dexter Systems, Inc. Automated shopping order entry system
US5157783A (en) * 1988-02-26 1992-10-20 Wang Laboratories, Inc. Data base system which maintains project query list, desktop list and status of multiple ongoing research projects
JPH01255993A (en) 1988-04-05 1989-10-12 Sharp Corp Cash register
US4947028A (en) 1988-07-19 1990-08-07 Arbor International, Inc. Automated order and payment system
US5247575A (en) 1988-08-16 1993-09-21 Sprague Peter J Information distribution system
US4972318A (en) 1988-09-09 1990-11-20 Iron City Sash & Door Company Order entry and inventory control method
US4949380A (en) 1988-10-20 1990-08-14 David Chaum Returned-value blind signature systems
US5077607A (en) 1988-12-23 1991-12-31 Scientific-Atlanta, Inc. Cable television transaction terminal
US5047614A (en) * 1989-01-23 1991-09-10 Bianco James S Method and apparatus for computer-aided shopping
US4977595A (en) 1989-04-03 1990-12-11 Nippon Telegraph And Telephone Corporation Method and apparatus for implementing electronic cash
US5560008A (en) 1989-05-15 1996-09-24 International Business Machines Corporation Remote authentication and authorization in a distributed data processing system
US5235509A (en) * 1989-06-28 1993-08-10 Management Information Support, Inc. Customer self-ordering system using information displayed on a screen
US5557798A (en) 1989-07-27 1996-09-17 Tibco, Inc. Apparatus and method for providing decoupling of data exchange details for providing high performance communication between software processes
US5035515A (en) 1990-02-15 1991-07-30 Crossman Stephen A Packaging having detachable coupon compartment
JPH03278230A (en) 1990-03-28 1991-12-09 Fuji Xerox Co Ltd Method for inspecting restriction of program execution
GB9008362D0 (en) 1990-04-12 1990-06-13 Hackremco No 574 Limited Banking computer system
JPH0410191A (en) 1990-04-27 1992-01-14 Makoto Kato On-line automatic software vending machine
AU656542B2 (en) 1990-10-01 1995-02-09 Thomas A. Bush Transactional processing system
US5351186A (en) 1991-01-16 1994-09-27 Bullock Communications, Inc. System and method for obtaining information concerning a product or a service
JPH04310188A (en) * 1991-03-01 1992-11-02 Internatl Business Mach Corp <Ibm> Library service method for document/image library
JP3270102B2 (en) 1991-03-11 2002-04-02 ヒューレット・パッカード・カンパニー Licensing method and system
US5265239A (en) * 1991-04-08 1993-11-23 Ardolino Anthony A Method for remotely accessing service programs of a local processing system supporting multiple protocol stacks and multiple device drivers
US5577209A (en) 1991-07-11 1996-11-19 Itt Corporation Apparatus and method for providing multi-level security for communication among computers and terminals on a network
US5453601A (en) 1991-11-15 1995-09-26 Citibank, N.A. Electronic-monetary system
JPH05158963A (en) 1991-12-02 1993-06-25 Omron Corp Card transaction processing system
US6006199A (en) 1991-12-31 1999-12-21 International Business Machines Corporation Method and system for automated payment within a computer integrated manufacturing system
US5336870A (en) 1992-05-26 1994-08-09 Hughes Thomas S System for remote purchase payment transactions and remote bill payments
US5235642A (en) * 1992-07-21 1993-08-10 Digital Equipment Corporation Access control subsystem and method for distributed computer system using locally cached authentication credentials
DE69233708T2 (en) 1992-07-31 2008-05-21 Micron Technology, Inc. Device and method for creating network security
EP0692119A1 (en) * 1992-10-22 1996-01-17 American Express Travel Related Services Company, Inc. Automated billing consolidation system and method
US5329619A (en) * 1992-10-30 1994-07-12 Software Ag Cooperative processing interface and communication broker for heterogeneous computing environments
US5341429A (en) 1992-12-04 1994-08-23 Testdrive Corporation Transformation of ephemeral material
US5544320A (en) 1993-01-08 1996-08-06 Konrad; Allan M. Remote information service access system based on a client-server-service model
US5806077A (en) 1993-01-15 1998-09-08 International Business Machines Corporation Hypertext display system
US5351293A (en) 1993-02-01 1994-09-27 Wave Systems Corp. System method and apparatus for authenticating an encrypted signal
JPH06291776A (en) 1993-02-05 1994-10-18 Toyo Commun Equip Co Ltd Access controller for atm communication
US5842185A (en) * 1993-02-18 1998-11-24 Intuit Inc. Method and system for electronically tracking financial transactions
JP3278230B2 (en) 1993-03-10 2002-04-30 キヤノン株式会社 camera
US5583996A (en) 1993-03-16 1996-12-10 Bell Communications Research, Inc. Method and system for shortcut routing over public data networks
EP0624965A3 (en) 1993-03-23 1996-01-31 Us West Advanced Tech Inc Method and system for searching an on-line directory at a telephone station.
US5535229A (en) 1993-05-10 1996-07-09 Global Interconnect, Corp. Digital data transfer system for use especially with advertisement insertion systems
RU2183854C2 (en) 1993-05-20 2002-06-20 Мур Бизнес Формз, Инк. System of applications and application accompanying system
US5353283A (en) 1993-05-28 1994-10-04 Bell Communications Research, Inc. General internet method for routing packets in a communications network
US5428606A (en) * 1993-06-30 1995-06-27 Moskowitz; Scott A. Digital information commodities exchange
NL9301633A (en) 1993-09-21 1995-04-18 Nederland Ptt Method for identifying users of telematics servers.
US6135646A (en) * 1993-10-22 2000-10-24 Corporation For National Research Initiatives System for uniquely and persistently identifying, managing, and tracking digital objects
US5920847A (en) 1993-11-01 1999-07-06 Visa International Service Association Electronic bill pay system
US5455953A (en) * 1993-11-03 1995-10-03 Wang Laboratories, Inc. Authorization system for obtaining in single step both identification and access rights of client to server directly from encrypted authorization ticket
US5771354A (en) * 1993-11-04 1998-06-23 Crawford; Christopher M. Internet online backup system provides remote storage for customers using IDs and passwords which were interactively established when signing up for backup services
WO1995015533A1 (en) 1993-11-30 1995-06-08 Burke Raymond R Computer system for allowing a consumer to purchase packaged goods at home
US5434918A (en) * 1993-12-14 1995-07-18 Hughes Aircraft Company Method for providing mutual authentication of a user and a server on a network
US5557516A (en) 1994-02-04 1996-09-17 Mastercard International System and method for conducting cashless transactions
US5664111A (en) 1994-02-16 1997-09-02 Honicorp, Inc. Computerized, multimedia, network, real time, interactive marketing and transactional system
US5694549A (en) * 1994-03-03 1997-12-02 Telescan, Inc. Multi-provider on-line communications system
US5440479A (en) * 1994-03-22 1995-08-08 Hutton; Glenn W. Apparatus and method for purchasing floral arrangements
US5544322A (en) 1994-05-09 1996-08-06 International Business Machines Corporation System and method for policy-based inter-realm authentication within a distributed processing system
US5675507A (en) 1995-04-28 1997-10-07 Bobo, Ii; Charles R. Message storage and delivery system
US5694546A (en) * 1994-05-31 1997-12-02 Reisman; Richard R. System for automatic unattended electronic information transport between a server and a client by a vendor provided transport software with a manifest list
US5511122A (en) * 1994-06-03 1996-04-23 The United States Of America As Represented By The Secretary Of The Navy Intermediate network authentication
US5687367A (en) * 1994-06-21 1997-11-11 International Business Machines Corp. Facility for the storage and management of connection (connection server)
US5999711A (en) * 1994-07-18 1999-12-07 Microsoft Corporation Method and system for providing certificates holding authentication and authorization information for users/machines
US5535276A (en) * 1994-11-09 1996-07-09 Bell Atlantic Network Services, Inc. Yaksha, an improved system and method for securing communications using split private key asymmetric cryptography
US5826241A (en) 1994-09-16 1998-10-20 First Virtual Holdings Incorporated Computerized system for making payments and authenticating transactions over the internet
US5581753A (en) * 1994-09-28 1996-12-03 Xerox Corporation Method for providing session consistency guarantees
US5696965A (en) * 1994-11-03 1997-12-09 Intel Corporation Electronic information appraisal agent
DE69511425T2 (en) 1994-11-08 2000-03-09 Vermeer Tech Inc PRODUCTION AID FOR ONLINE SERVICES WITH CHARGING CHARGES
US5550984A (en) 1994-12-07 1996-08-27 Matsushita Electric Corporation Of America Security system for preventing unauthorized communications between networks by translating communications received in ip protocol to non-ip protocol to remove address and routing services information
US5664110A (en) 1994-12-08 1997-09-02 Highpoint Systems, Inc. Remote ordering system
US5689638A (en) * 1994-12-13 1997-11-18 Microsoft Corporation Method for providing access to independent network resources by establishing connection using an application programming interface function call without prompting the user for authentication data
US5848413A (en) 1995-01-13 1998-12-08 Ricoh Company, Ltd. Method and apparatus for accessing and publishing electronic documents
EP1431864B2 (en) 1995-02-13 2012-08-22 Intertrust Technologies Corporation Systems and methods for secure transaction management and electronic rights protection
US5790793A (en) 1995-04-04 1998-08-04 Higley; Thomas Method and system to create, transmit, receive and process information, including an address to further information
US5590197A (en) 1995-04-04 1996-12-31 V-One Corporation Electronic payment system and method
US5768142A (en) 1995-05-31 1998-06-16 American Greetings Corporation Method and apparatus for storing and selectively retrieving product data based on embedded expert suitability ratings
US7272639B1 (en) * 1995-06-07 2007-09-18 Soverain Software Llc Internet server access control and monitoring systems
US5812776A (en) 1995-06-07 1998-09-22 Open Market, Inc. Method of providing internet pages by mapping telephone number provided by client to URL and returning the same in a redirect command by server
EP0830774B1 (en) 1995-06-07 2004-10-06 divine technology ventures Internet server access control and monitoring systems
US5913040A (en) * 1995-08-22 1999-06-15 Backweb Ltd. Method and apparatus for transmitting and displaying information between a remote network and a local computer
US5774670A (en) 1995-10-06 1998-06-30 Netscape Communications Corporation Persistent client state in a hypertext transfer protocol based client-server system
WO2009030322A1 (en) 2007-08-30 2009-03-12 Merck Patent Gmbh Liquid crystal display
JP5274275B2 (en) 2009-01-22 2013-08-28 株式会社アルバック Heat treatment device

Patent Citations (101)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US2196914A (en) * 1938-03-14 1940-04-09 Sylvan N Goldman Folding basket carriage for self-service stores
US4073368A (en) * 1975-01-20 1978-02-14 Mustapick Andrew James Automated merchandising system
US4264808A (en) * 1978-10-06 1981-04-28 Ncr Corporation Method and apparatus for electronic image processing of documents for accounting purposes
US4317957A (en) * 1980-03-10 1982-03-02 Marvin Sendrow System for authenticating users and devices in on-line transaction networks
US4578530A (en) * 1981-06-26 1986-03-25 Visa U.S.A., Inc. End-to-end encryption system and method of operation
US4449186A (en) * 1981-10-15 1984-05-15 Cubic Western Data Touch panel passenger self-ticketing system
US4566078A (en) * 1983-03-30 1986-01-21 International Business Machines Corp. Concurrent multi-lingual use in data processing systems
US4926480A (en) * 1983-08-22 1990-05-15 David Chaum Card-computer moderated systems
US4734858A (en) * 1983-12-05 1988-03-29 Portel Services Network, Inc. Data terminal and system for placing orders
US4734858B1 (en) * 1983-12-05 1997-02-11 Portel Services Network Inc Data terminal and system for placing orders
US4567359A (en) * 1984-05-24 1986-01-28 Lockwood Lawrence B Automatic information, goods and services dispensing system
US4654482A (en) * 1984-10-15 1987-03-31 Deangelis Lawrence J Home merchandise ordering telecommunications terminal
US4812628A (en) * 1985-05-02 1989-03-14 Visa International Service Association Transaction system with off-line risk assessment
US4805134A (en) * 1986-01-09 1989-02-14 International Business Machines Corporation Electronic system for accessing graphical and textual information
US4922521A (en) * 1986-09-05 1990-05-01 U.S. Philips Corporation System for providing secure telecommunication access to a computer
US4799156A (en) * 1986-10-01 1989-01-17 Strategic Processing Corporation Interactive market management system
US4827508A (en) * 1986-10-14 1989-05-02 Personal Library Software, Inc. Database usage metering and protection system and method
US4935870A (en) * 1986-12-15 1990-06-19 Keycom Electronic Publishing Apparatus for downloading macro programs and executing a downloaded macro program responding to activation of a single key
US4795890A (en) * 1987-02-02 1989-01-03 Light Signatures, Inc. Device authentication system for on and off line use
US5113496A (en) * 1987-08-04 1992-05-12 Mccalley Karl W Bus interconnection structure with redundancy linking plurality of groups of processors, with servers for each group mounted on chassis
US4931932A (en) * 1987-09-28 1990-06-05 Travelsoft, Inc. Computerized system with means to automatically clear and sell wait-listed customer reservations
US4987593A (en) * 1988-03-16 1991-01-22 David Chaum One-show blind signature systems
US4891503A (en) * 1988-03-29 1990-01-02 Gascard, Inc. Distributed authorization system
US5025373A (en) * 1988-06-30 1991-06-18 Jml Communications, Inc. Portable personal-banking system
US5594910A (en) * 1988-07-15 1997-01-14 Ibm Corp. Interactive computer network and method of operation
US4984155A (en) * 1988-08-29 1991-01-08 Square D Company Order entry system having catalog assistance
US5313637A (en) * 1988-11-29 1994-05-17 Rose David K Method and apparatus for validating authorization to access information in an information processing system
US4982346A (en) * 1988-12-16 1991-01-01 Expertel Communications Incorporated Mall promotion network apparatus and method
US4992940A (en) * 1989-03-13 1991-02-12 H-Renee, Incorporated System and method for automated selection of equipment for purchase through input of user desired specifications
US4991210A (en) * 1989-05-04 1991-02-05 David Chaum Unpredictable blind signature systems
US4996711A (en) * 1989-06-21 1991-02-26 Chaum David L Selected-exponent signature systems
US5105184B1 (en) * 1989-11-09 1997-06-17 Noorali Pirani Methods for displaying and integrating commercial advertisements with computer software
US5105184A (en) * 1989-11-09 1992-04-14 Noorali Pirani Methods for displaying and integrating commercial advertisements with computer software
US5220501A (en) * 1989-12-08 1993-06-15 Online Resources, Ltd. Method and system for remote delivery of retail banking services
US5276736A (en) * 1990-01-29 1994-01-04 David Chaum Optionally moderated transaction systems
US5623547A (en) * 1990-04-12 1997-04-22 Jonhig Limited Value transfer system
US5309437A (en) * 1990-06-29 1994-05-03 Digital Equipment Corporation Bridge-like internet protocol router
US5285383A (en) * 1990-09-14 1994-02-08 Plains Cotton Cooperative Association Method for carrying out transactions of goods using electronic title
US5319542A (en) * 1990-09-27 1994-06-07 International Business Machines Corporation System for ordering items using an electronic catalogue
US5204947A (en) * 1990-10-31 1993-04-20 International Business Machines Corporation Application independent (open) hypermedia enablement services
US5297249A (en) * 1990-10-31 1994-03-22 International Business Machines Corporation Hypermedia link marker abstract and search services
US5388257A (en) * 1991-07-24 1995-02-07 At&T Corp. Method and apparatus for operating a computer based file system
US5383113A (en) * 1991-07-25 1995-01-17 Checkfree Corporation System and method for electronically providing customer services including payment of bills, financial analysis and loans
US5205437A (en) * 1991-08-16 1993-04-27 Univend, Inc. Single article newspaper dispensing apparatus
US5727164A (en) * 1991-12-13 1998-03-10 Max Software, Inc. Apparatus for and method of managing the availability of items
US5305195A (en) * 1992-03-25 1994-04-19 Gerald Singer Interactive advertising system for on-line terminals
US5642515A (en) * 1992-04-17 1997-06-24 International Business Machines Corporation Network server for local and remote resources
US5319543A (en) * 1992-06-19 1994-06-07 First Data Health Services Corporation Workflow server for medical records imaging and tracking system
US5310997A (en) * 1992-09-10 1994-05-10 Tandy Corporation Automated order and delivery system
US5506961A (en) * 1992-09-11 1996-04-09 International Business Machines Corporation Connection authorizer for controlling access to system resources
US6507872B1 (en) * 1992-09-25 2003-01-14 David Michael Geshwind Class of methods for improving perceived efficiency of end-user interactive access of a large database such as the world-wide web via a communication network such as “The Internet”
US5526483A (en) * 1992-10-05 1996-06-11 International Business Machines Corporation Fast network file system running over a hybrid connectionless transport
US5414841A (en) * 1992-10-19 1995-05-09 International Business Machines Corporation Computerized system for representing data items using token identifiers
US5321751A (en) * 1993-02-18 1994-06-14 Eastman Kodak Company Method and apparatus for credit card verification
US5311594A (en) * 1993-03-26 1994-05-10 At&T Bell Laboratories Fraud protection for card transactions
US5712989A (en) * 1993-04-02 1998-01-27 Fisher Scientific Company Just-in-time requisition and inventory management system
US5325362A (en) * 1993-09-29 1994-06-28 Sun Microsystems, Inc. Scalable and efficient intra-domain tunneling mobile-IP scheme
US5734719A (en) * 1993-10-15 1998-03-31 International Business Systems, Incorporated Digital information accessing, delivery and production system
US5414833A (en) * 1993-10-27 1995-05-09 International Business Machines Corporation Network security system and method using a parallel finite state machine adaptive active monitor and responder
US5604802A (en) * 1993-10-29 1997-02-18 International Business Machines Corporation Transaction processing system
US6049785A (en) * 1993-12-16 2000-04-11 Open Market, Inc. Open network payment system for providing for authentication of payment orders based on a confirmation electronic mail message
US5724424A (en) * 1993-12-16 1998-03-03 Open Market, Inc. Digital active advertising
US6195649B1 (en) * 1993-12-16 2001-02-27 Open Market, Inc. Digital active advertising
US6199051B1 (en) * 1993-12-16 2001-03-06 Open Market, Inc. Digital active advertising
US6205437B1 (en) * 1993-12-16 2001-03-20 Open Market, Inc. Open network payment system for providing for real-time authorization of payment and purchase transactions
US5483652A (en) * 1994-01-24 1996-01-09 Digital Equipment Corporation Mechanism for locating without search discrete application resources known by common name only in a distributed network computing environment
US5499298A (en) * 1994-03-17 1996-03-12 National University Of Singapore Controlled dissemination of digital information
US5621797A (en) * 1994-04-28 1997-04-15 Citibank, N.A. Electronic ticket presentation and transfer method
US5642419A (en) * 1994-04-28 1997-06-24 Citibank N.A. Method for acquiring and revalidating an electronic credential
US6175921B1 (en) * 1994-04-28 2001-01-16 Citibank, N.A. Tamper-proof devices for unique identification
US5768521A (en) * 1994-05-16 1998-06-16 Intel Corporation General purpose metering mechanism for distribution of electronic information
US5638519A (en) * 1994-05-20 1997-06-10 Haluska; John E. Electronic method and system for controlling and tracking information related to business transactions
US5521631A (en) * 1994-05-25 1996-05-28 Spectravision, Inc. Interactive digital video services system with store and forward capabilities
US6182052B1 (en) * 1994-06-06 2001-01-30 Huntington Bancshares Incorporated Communications network interface for user friendly interactive access to online services
US6041316A (en) * 1994-07-25 2000-03-21 Lucent Technologies Inc. Method and system for ensuring royalty payments for data delivered over a network
US5603025A (en) * 1994-07-29 1997-02-11 Borland International, Inc. Methods for hypertext reporting in a relational database management system
US5598535A (en) * 1994-08-01 1997-01-28 International Business Machines Corporation System for selectively and cumulatively grouping packets from different sessions upon the absence of exception condition and sending the packets after preselected time conditions
US5598536A (en) * 1994-08-09 1997-01-28 Shiva Corporation Apparatus and method for providing remote users with the same unique IP address upon each network access
US6023683A (en) * 1994-08-10 2000-02-08 Fisher Scientific Company Electronic sourcing system and method
US5592378A (en) * 1994-08-19 1997-01-07 Andersen Consulting Llp Computerized order entry system and method
US5596642A (en) * 1994-09-30 1997-01-21 Electronic Payment Services, Inc. Network settlement performed on consolidated information
US5596643A (en) * 1994-09-30 1997-01-21 Electronic Payment Services, Inc. Network settlement performed on consolidated information
US5715314A (en) * 1994-10-24 1998-02-03 Open Market, Inc. Network sales system
US5724521A (en) * 1994-11-03 1998-03-03 Intel Corporation Method and apparatus for providing electronic advertisements to end users in a consumer best-fit pricing manner
US5491820A (en) * 1994-11-10 1996-02-13 At&T Corporation Distributed, intermittently connected, object-oriented database and management system
US6708157B2 (en) * 1994-11-23 2004-03-16 Contentguard Holdings Inc. System for controlling the distribution and use of digital works using digital tickets
US5619648A (en) * 1994-11-30 1997-04-08 Lucent Technologies Inc. Message filtering techniques
US5623656A (en) * 1994-12-15 1997-04-22 Lucent Technologies Inc. Script-based data communication system and method utilizing state memory
US5761662A (en) * 1994-12-20 1998-06-02 Sun Microsystems, Inc. Personalized information retrieval using user-defined profile
US5530852A (en) * 1994-12-20 1996-06-25 Sun Microsystems, Inc. Method for extracting profiles and topics from a first file written in a first markup language and generating files in different markup languages containing the profiles and topics for use in accessing data described by the profiles and topics
US5732219A (en) * 1995-03-17 1998-03-24 Vermeer Technologies, Inc. Computer system and computer-implemented process for remote editing of computer files
US5870552A (en) * 1995-03-28 1999-02-09 America Online, Inc. Method and apparatus for publishing hypermedia documents over wide area networks
US5710884A (en) * 1995-03-29 1998-01-20 Intel Corporation System for automatically updating personal profile server with updates to additional user information gathered from monitoring user's electronic consuming habits generated on computer during use
US6230202B1 (en) * 1995-05-01 2001-05-08 Donald A Lewine Method for performing transactions on the world-wide web computer network
US6684333B1 (en) * 1995-05-24 2004-01-27 Walker Digital, Llc Parallel data network billing and collection system
US5721780A (en) * 1995-05-31 1998-02-24 Lucent Technologies, Inc. User-transparent security method and apparatus for authenticating user terminal access to a network
US5708780A (en) * 1995-06-07 1998-01-13 Open Market, Inc. Internet server access control and monitoring systems
US5897622A (en) * 1996-10-16 1999-04-27 Microsoft Corporation Electronic shopping and merchandising system
US5895454A (en) * 1997-04-17 1999-04-20 Harrington; Juliette Integrated interface for vendor/product oriented internet websites
US20060095526A1 (en) * 1998-01-12 2006-05-04 Levergood Thomas M Internet server access control and monitoring systems
US20080109374A1 (en) * 1998-01-12 2008-05-08 Levergood Thomas M Internet server access control and monitoring systems

Non-Patent Citations (1)

* Cited by examiner, † Cited by third party
Title
Rick Dedrick, Interactive Electronic Advertising, Proceedings og the 1st International Workshop on Community Networking Intergrated Multimedia Services to the Home, Jul 1994, pages 55-66. *

Cited By (95)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US8635327B1 (en) 1995-06-07 2014-01-21 Soverain Software Llc Web advertising method
US8606900B1 (en) 1995-06-07 2013-12-10 Soverain Software Llc Method and system for counting web access requests
US9900305B2 (en) 1998-01-12 2018-02-20 Soverain Ip, Llc Internet server access control and monitoring systems
US20060095526A1 (en) * 1998-01-12 2006-05-04 Levergood Thomas M Internet server access control and monitoring systems
US9917827B2 (en) 1998-01-12 2018-03-13 Soverain Ip, Llc Internet server access control and monitoring systems
US8751790B2 (en) 1999-06-01 2014-06-10 Facebook, Inc. Secure data exchange based on request destination
US20110145590A1 (en) * 1999-06-01 2011-06-16 AOL, Inc. Secure data exchange between data processing systems
US9363237B2 (en) 1999-06-01 2016-06-07 Facebook, Inc. Secure data exchange between data processing systems
US9043892B2 (en) 1999-06-01 2015-05-26 Facebook, Inc. Secure data exchange
US8713690B2 (en) 1999-06-01 2014-04-29 Facebook, Inc. Secure data exchange between data processing systems
US8713694B2 (en) 1999-06-01 2014-04-29 Facebook, Inc. Secure data exchange for processing requests
US8713695B2 (en) 1999-06-01 2014-04-29 Facebook, Inc. Processing data using information embedded in a data request
US10216731B2 (en) 1999-09-17 2019-02-26 Sdl Inc. E-services translation utilizing machine translation and translation memory
US10198438B2 (en) 1999-09-17 2019-02-05 Sdl Inc. E-services translation utilizing machine translation and translation memory
US9294540B2 (en) 1999-10-22 2016-03-22 Facebook, Inc. Processing selected browser requests
US8688778B2 (en) 1999-10-22 2014-04-01 Facebook, Inc. Processing browser requests based on trap lists
US8688777B2 (en) 1999-10-22 2014-04-01 Facebook, Inc. Processing selected browser requests
US8694581B2 (en) 1999-10-22 2014-04-08 Facebook, Inc. Modifying browser requests to track browsing activities
US8539023B2 (en) 1999-10-22 2013-09-17 Facebook, Inc. Processing selected browser requests
US7996460B1 (en) * 1999-10-22 2011-08-09 Aol Inc. Processing selected browser requests
US10055761B2 (en) * 2000-07-18 2018-08-21 Google Llc Economic filtering system for delivery of permission based, targeted, incentivized advertising
US10269040B2 (en) 2000-07-18 2019-04-23 Google Llc Economic filtering system for delivery of permission based, targeted, incentivized advertising
US20140236711A1 (en) * 2000-07-18 2014-08-21 Google Inc. Economic filtering system for delivery of permission based, targeted, incentivized advertising
US20180374121A1 (en) * 2000-07-18 2018-12-27 Google Llc Economic filtering system for delivery of permission based, targeted, incentivized advertising
US20020083178A1 (en) * 2000-08-11 2002-06-27 Brothers John David West Resource distribution in network environment
US9954794B2 (en) 2001-01-18 2018-04-24 Sdl Inc. Globalization management system and method therefor
US7886217B1 (en) 2003-09-29 2011-02-08 Google Inc. Identification of web sites that contain session identifiers
US7886032B1 (en) * 2003-12-23 2011-02-08 Google Inc. Content retrieval from sites that use session identifiers
US8307076B1 (en) 2003-12-23 2012-11-06 Google Inc. Content retrieval from sites that use session identifiers
US10248650B2 (en) 2004-03-05 2019-04-02 Sdl Inc. In-context exact (ICE) matching
US9104669B1 (en) * 2005-03-28 2015-08-11 Advertising.Com Llc Audio/video advertising network
US9641909B2 (en) 2005-03-28 2017-05-02 Advertising.Com Llc Audio/video advertising network
US10319252B2 (en) 2005-11-09 2019-06-11 Sdl Inc. Language capability assessment and training apparatus and techniques
US20070185988A1 (en) * 2006-02-06 2007-08-09 Tribinium Corporation Apparatus and method for directing content to a user by an internet service provider
US20120022975A1 (en) * 2007-02-26 2012-01-26 L Heureux Israel Digital asset distribution system
US8019884B2 (en) * 2007-12-27 2011-09-13 International Business Machines Corporation Proxy content for submitting web service data in the user's security context
US20090172107A1 (en) * 2007-12-27 2009-07-02 David Franklin Manning Proxy content for submitting web service data in the user's security context
US20110173683A1 (en) * 2009-07-07 2011-07-14 Netsweeper, Inc. System and method for providing customized response messages based on requested website
US8578453B2 (en) * 2009-07-07 2013-11-05 Netsweeper Inc. System and method for providing customized response messages based on requested website
US10417646B2 (en) 2010-03-09 2019-09-17 Sdl Inc. Predicting the cost associated with translating textual content
US10984429B2 (en) 2010-03-09 2021-04-20 Sdl Inc. Systems and methods for translating textual content
US10521492B2 (en) 2011-01-29 2019-12-31 Sdl Netherlands B.V. Systems and methods that utilize contextual vocabularies and customer segmentation to deliver web content
US11301874B2 (en) 2011-01-29 2022-04-12 Sdl Netherlands B.V. Systems and methods for managing web content and facilitating data exchange
US11044949B2 (en) 2011-01-29 2021-06-29 Sdl Netherlands B.V. Systems and methods for dynamic delivery of web content
US10990644B2 (en) 2011-01-29 2021-04-27 Sdl Netherlands B.V. Systems and methods for contextual vocabularies and customer segmentation
US10657540B2 (en) 2011-01-29 2020-05-19 Sdl Netherlands B.V. Systems, methods, and media for web content management
US10061749B2 (en) 2011-01-29 2018-08-28 Sdl Netherlands B.V. Systems and methods for contextual vocabularies and customer segmentation
US11694215B2 (en) 2011-01-29 2023-07-04 Sdl Netherlands B.V. Systems and methods for managing web content
US10580015B2 (en) 2011-02-25 2020-03-03 Sdl Netherlands B.V. Systems, methods, and media for executing and optimizing online marketing initiatives
US11366792B2 (en) 2011-02-28 2022-06-21 Sdl Inc. Systems, methods, and media for generating analytical data
US10140320B2 (en) 2011-02-28 2018-11-27 Sdl Inc. Systems, methods, and media for generating analytical data
US9984054B2 (en) 2011-08-24 2018-05-29 Sdl Inc. Web interface including the review and manipulation of a web document and utilizing permission based control
US11263390B2 (en) 2011-08-24 2022-03-01 Sdl Inc. Systems and methods for informational document review, display and validation
US10572928B2 (en) 2012-05-11 2020-02-25 Fredhopper B.V. Method and system for recommending products based on a ranking cocktail
US10402498B2 (en) 2012-05-25 2019-09-03 Sdl Inc. Method and system for automatic management of reputation of translators
US10261994B2 (en) 2012-05-25 2019-04-16 Sdl Inc. Method and system for automatic management of reputation of translators
US10452740B2 (en) 2012-09-14 2019-10-22 Sdl Netherlands B.V. External content libraries
US11386186B2 (en) 2012-09-14 2022-07-12 Sdl Netherlands B.V. External content library connector systems and methods
US11308528B2 (en) 2012-09-14 2022-04-19 Sdl Netherlands B.V. Blueprinting of multimedia assets
US9916306B2 (en) 2012-10-19 2018-03-13 Sdl Inc. Statistical linguistic analysis of source content
US11741551B2 (en) 2013-03-21 2023-08-29 Khoros, Llc Gamification for online social communities
US20150334543A1 (en) * 2014-05-13 2015-11-19 Verizon Patent And Licensing Inc. Deploying a toll-free data service campaign by modifying a uniform resource identifier
US9521030B2 (en) * 2014-05-13 2016-12-13 Verizon Patent And Licensing Inc. Deploying a toll-free data service campaign by modifying a uniform resource identifier
US10614167B2 (en) 2015-10-30 2020-04-07 Sdl Plc Translation review workflow systems and methods
US11080493B2 (en) 2015-10-30 2021-08-03 Sdl Limited Translation review workflow systems and methods
US11538064B2 (en) 2017-04-28 2022-12-27 Khoros, Llc System and method of providing a platform for managing data content campaign on social networks
US11539655B2 (en) 2017-10-12 2022-12-27 Spredfast, Inc. Computerized tools to enhance speed and propagation of content in electronic messages among a system of networked computing devices
US11687573B2 (en) 2017-10-12 2023-06-27 Spredfast, Inc. Predicting performance of content and electronic messages among a system of networked computing devices
US11570128B2 (en) 2017-10-12 2023-01-31 Spredfast, Inc. Optimizing effectiveness of content in electronic messages among a system of networked computing device
US11050704B2 (en) 2017-10-12 2021-06-29 Spredfast, Inc. Computerized tools to enhance speed and propagation of content in electronic messages among a system of networked computing devices
US10635863B2 (en) 2017-10-30 2020-04-28 Sdl Inc. Fragment recall and adaptive automated translation
US11321540B2 (en) 2017-10-30 2022-05-03 Sdl Inc. Systems and methods of adaptive automated translation utilizing fine-grained alignment
US11765248B2 (en) 2017-11-22 2023-09-19 Spredfast, Inc. Responsive action prediction based on electronic messages among a system of networked computing devices
US11297151B2 (en) 2017-11-22 2022-04-05 Spredfast, Inc. Responsive action prediction based on electronic messages among a system of networked computing devices
US11475227B2 (en) 2017-12-27 2022-10-18 Sdl Inc. Intelligent routing services and systems
US10817676B2 (en) 2017-12-27 2020-10-27 Sdl Inc. Intelligent routing services and systems
US11496545B2 (en) 2018-01-22 2022-11-08 Spredfast, Inc. Temporal optimization of data operations using distributed search and server management
US11061900B2 (en) 2018-01-22 2021-07-13 Spredfast, Inc. Temporal optimization of data operations using distributed search and server management
US11102271B2 (en) 2018-01-22 2021-08-24 Spredfast, Inc. Temporal optimization of data operations using distributed search and server management
US11657053B2 (en) 2018-01-22 2023-05-23 Spredfast, Inc. Temporal optimization of data operations using distributed search and server management
US11256867B2 (en) 2018-10-09 2022-02-22 Sdl Inc. Systems and methods of machine learning for digital assets and message creation
US11470161B2 (en) * 2018-10-11 2022-10-11 Spredfast, Inc. Native activity tracking using credential and authentication management in scalable data networks
US20210119967A1 (en) * 2018-10-11 2021-04-22 Spredfast, Inc. Multiplexed data exchange portal interface in scalable data networks
US11546331B2 (en) 2018-10-11 2023-01-03 Spredfast, Inc. Credential and authentication management in scalable data networks
US11601398B2 (en) * 2018-10-11 2023-03-07 Spredfast, Inc. Multiplexed data exchange portal interface in scalable data networks
US11805180B2 (en) 2018-10-11 2023-10-31 Spredfast, Inc. Native activity tracking using credential and authentication management in scalable data networks
US11627053B2 (en) 2019-05-15 2023-04-11 Khoros, Llc Continuous data sensing of functional states of networked computing devices to determine efficiency metrics for servicing electronic messages asynchronously
US11438289B2 (en) 2020-09-18 2022-09-06 Khoros, Llc Gesture-based community moderation
US11729125B2 (en) 2020-09-18 2023-08-15 Khoros, Llc Gesture-based community moderation
US11128589B1 (en) 2020-09-18 2021-09-21 Khoros, Llc Gesture-based community moderation
US11438282B2 (en) 2020-11-06 2022-09-06 Khoros, Llc Synchronicity of electronic messages via a transferred secure messaging channel among a system of various networked computing devices
US11714629B2 (en) 2020-11-19 2023-08-01 Khoros, Llc Software dependency management
US11936652B2 (en) 2021-01-29 2024-03-19 Spredfast, Inc. Proxied multi-factor authentication using credential and authentication management in scalable data networks
US11627100B1 (en) 2021-10-27 2023-04-11 Khoros, Llc Automated response engine implementing a universal data space based on communication interactions via an omnichannel electronic data channel
US11924375B2 (en) 2021-10-27 2024-03-05 Khoros, Llc Automated response engine and flow configured to exchange responsive communication data via an omnichannel electronic communication channel independent of data source

Also Published As

Publication number Publication date
US9900305B2 (en) 2018-02-20
US20060095526A1 (en) 2006-05-04
US20080109374A1 (en) 2008-05-08
US9917827B2 (en) 2018-03-13

Similar Documents

Publication Publication Date Title
US9917827B2 (en) Internet server access control and monitoring systems
US8606900B1 (en) Method and system for counting web access requests
US5708780A (en) Internet server access control and monitoring systems
EP0830774B1 (en) Internet server access control and monitoring systems
US5812776A (en) Method of providing internet pages by mapping telephone number provided by client to URL and returning the same in a redirect command by server
US9860251B2 (en) Dynamic encryption of a universal resource locator
RU2273107C2 (en) Method, system and computer device for providing communication services between resources in communication networks and internet to perform transactions
US20070277235A1 (en) System and method for providing user authentication and identity management
US20140372176A1 (en) Method and apparatus for anonymous data profiling
US20020184507A1 (en) Centralized single sign-on method and system for a client-server environment
US20040168066A1 (en) Web site management system and method
US9514459B1 (en) Identity broker tools and techniques for use with forward proxy computers
JP2004514996A (en) Secure session management and authentication for websites
US20060026692A1 (en) Network resource access authentication apparatus and method
EP1290568A1 (en) Method and system for providing an online industry hub
Payne et al. c12) United States Patent

Legal Events

Date Code Title Description
AS Assignment

Owner name: S FUNDING LLC, NEW YORK

Free format text: SECURITY INTEREST;ASSIGNOR:SOVERAIN SOFTWARE LLC;REEL/FRAME:037486/0386

Effective date: 20160108

AS Assignment

Owner name: SOVERAIN SOFTWARE LLC, ILLINOIS

Free format text: SECURITY INTEREST;ASSIGNOR:SOVERAIN IP, LLC;REEL/FRAME:040257/0350

Effective date: 20161010

Owner name: SOVERAIN IP, LLC, TEXAS

Free format text: ASSIGNMENT OF ASSIGNORS INTEREST;ASSIGNOR:SOVERAIN SOFTWARE LLC;REEL/FRAME:040257/0280

Effective date: 20161010

Owner name: SOVERAIN SOFTWARE LLC, ILLINOIS

Free format text: RELEASE BY SECURED PARTY;ASSIGNOR:S FUNDING LLC;REEL/FRAME:040257/0181

Effective date: 20161003

STCB Information on status: application discontinuation

Free format text: ABANDONED -- AFTER EXAMINER'S ANSWER OR BOARD OF APPEALS DECISION