Appeal No. 2000-1360
Application No. 08/632,251
the security in order to helps [sic] server system to verify
that the user is valid user [sic] and helps user [sic] to
verify that the service received from the server is valid
service” [answer-page 6].
We reverse as the examiner has failed to establish a
prima facie case of obviousness with regard to the instant
claimed subject matter.
Each of the independent claims requires that the client
and the server each has “independently specified access
rights.”
Thus, taking claim 1 as an example, a client is determined to
be authenticated or unauthenticated when the client requests
service from a server. When a server requests service on
behalf of a client, it is determined whether that client is
allowed access to the resource and it is determined whether
that client is an authenticated or unauthenticated client.
Based on the results, access is granted to the resource if the
client is authenticated AND is allowed access to that
resource. If the client is unauthenticated, a determination
is made of whether the server is allowed access to the
resource independently of the client. Access is granted to
5–
Page: Previous 1 2 3 4 5 6 7 8 9 Next
Last modified: November 3, 2007