Patent Number: 6,311,269

Title: Trusted services broker for web page fine-grained security labeling

Abstract: Arbitrarily fine-grained limitation of access to information stored in a resource of a data processor network is provided in a manner compatible with existing network browsers by mapping user identity and credentials with randomly assigned security cookie information which thus serves as a surrogate credential accompanying each user request during a session. Labels are imbedded within HTML files/text which may embody any desired security policy, including mandatory access control (MAC) arrangements which are not available through native browser functions. Data is retrieved in response to a user request which includes a security cookie from a location in the resource which is not directly accessible through use of a URL; the location being stored in a configuration file which is hidden from users. The retrieved data is then filtered in accordance with labels provided for each page and/or embedded in the text and used to build a response which may include hypertext links or other user interfaces for transmission to the user. Provision is made for viewing or changing of labels, credentials and passwords.

Inventors: Luckenbaugh; Gary L. (Gaithersburg, MD), Stoakes; Forrest E. (Gaithersburg, MD)

Assignee: Lockheed Martin Corporation

International Classification: G06F 17/30 (20060101); G06F 1/00 (20060101); G06F 21/00 (20060101); G06F 013/14 ()

Expiration Date: 10/30/2018