Patent 6317838

Prior art

Earlier patents, publications, and products that may anticipate or render the claims unpatentable.

Active provider: Google · gemini-2.5-flash

Prior art

Earlier patents, publications, and products that may anticipate or render the claims unpatentable.

✓ Generated

tool_code
print(google_search.search(queries=["US6317838 cited prior art", "US6317838 references", "US6317838 claims vs prior art"]))
thought
The user wants me to identify the most relevant prior art for US patent 6317838 from its cited references. For each reference, I need to provide:

  1. Full citation
  2. Publication/filing date
  3. Brief description
  4. Which claim(s) it potentially anticipates under 35 U.S.C. § 102.

I need to access the "Citations (10)" section of the provided patent text. These are the prior art cited by the examiner. I will then analyze each cited patent and assess its relevance to the claims of US6317838.

Let's break down the information needed for each citation:

  • Full Citation: This will come directly from the provided patent text under the "Citations (10)" section.
  • Publication/Filing Date: This will also come from the provided patent text. I will use the "Publication Date" for each.
  • Brief Description: I will need to infer this from the title of the cited patent and potentially from the abstract of the cited patent (if available in the provided text or if I can find it via quick search if needed). The current patent description also often describes the cited art, which I can use.
  • Which claim(s) it potentially anticipates under 35 U.S.C. § 102: This requires a comparison between the cited prior art and the claims of US6317838. I will look for common elements and functionalities.

Let's go through each of the 10 citations provided in the patent text.

Citations (10) from the patent text:

  1. US5491752A - System for increasing the difficulty of password guessing attacks in a distributed authentication scheme employing authentication tokens
  2. US5657388A - Method and apparatus for utilizing a token for resource access
  3. US5721908A - Computer network for WWW server data access over internet
  4. US5768503A - Middleware program with enhanced security
  5. US5818936A - System and method for automically authenticating a user in a distributed network system
  6. US5918019A - Virtual dial-up protocol for network communication
  7. US5935251A - Method and apparatus expedited log-on to an application program
  8. US5944824A - System and method for single sign-on to a plurality of network elements
  9. US6038597A - Method and apparatus for providing and accessing data at an internet site
  10. US6052785A - Multiple remote data access security mechanism for multitiered internet computer networks

I will process these one by one, focusing on how they relate to the independent claims (Claim 1 and Claim 8) and dependent claims of US6317838, particularly the centralized security, firewall, SSO, and OTP aspects.The following prior art references are cited in US patent 6317838. The analysis focuses on their potential to anticipate claims under 35 U.S.C. § 102, considering their publication dates relative to US6317838's priority date of 1998-04-29.

Most Relevant Prior Art for US Patent 6317838

1. US5491752A - System for increasing the difficulty of password guessing attacks in a distributed authentication scheme employing authentication tokens

  • Full Citation: US5491752A, Digital Equipment Corporation, Patent Law Group.
  • Publication/Filing Date: Publication date: 1996-02-13. Priority date: 1993-03-18.
  • Brief Description: This patent describes a system for enhancing security against password guessing in distributed authentication using authentication tokens. It involves generating time-varying authentication information, like one-time passwords, to secure access in a networked environment.
  • Potential Anticipation (35 U.S.C. § 102): This reference potentially anticipates elements of claims related to one-time passwords (OTPs). Specifically, it highlights a method for generating non-replayable passwords, a feature described in Claim 7 of US6317838. While it focuses on the generation and use of tokens for authentication, it does not explicitly disclose the centralized security means within a firewall for SSO across multiple private resources. Therefore, it might anticipate the OTP mechanism but not the broader architectural or method claims regarding centralized filtering and SSO for diverse resources behind a firewall.

2. US5657388A - Method and apparatus for utilizing a token for resource access

  • Full Citation: US5657388A, Security Dynamics Technologies, Inc.
  • Publication/Filing Date: Publication date: 1997-08-12. Priority date: 1993-05-25.
  • Brief Description: This patent describes a security system, similar to "SecureID®," which uses a token to generate one-time passwords for accessing resources. It involves a host computer receiving a password from a user, validating it against a pre-stored value, and then permitting access.
  • Potential Anticipation (35 U.S.C. § 102): This reference is directly acknowledged in US6317838 as prior art for "OTP technologies." It anticipates the core concept of generating and using one-time passwords for user authentication, as detailed in Claim 7 and implied by the "first device for generating one-time passwords" in Claim 14. However, it does not detail the specific architecture of a centralized security means within a firewall managing SSO to multiple private resources with a security profile, which are key aspects of US6317838's independent claims (Claims 1 and 8).

3. US5721908A - Computer network for WWW server data access over internet

  • Full Citation: US5721908A, International Business Machines Corporation.
  • Publication/Filing Date: Publication date: 1998-02-24. Priority date: 1995-06-07.
  • Brief Description: This patent describes a system for providing secure access to a WWW server over the Internet, involving a firewall and proxy servers to protect internal resources. It focuses on facilitating client access to a WWW server while maintaining security.
  • Potential Anticipation (35 U.S.C. § 102): This reference is relevant to the general concept of a firewall protecting resources and potentially using proxies, as mentioned in Claim 8 and further elaborated in Claim 13 of US6317838. However, it does not appear to explicitly disclose the "centralized security means able to authenticate said remote user ... and to filter remote access requests ... according to rules derived from said security data, to fetch a security profile ... and to provide said first private resource with security data" for SSO across multiple resources, which is central to US6317838's novelty.

4. US5768503A - Middleware program with enhanced security

  • Full Citation: US5768503A, International Business Machines Corporation.
  • Publication/Filing Date: Publication date: 1998-06-16. Priority date: 1995-09-25.
  • Brief Description: This patent describes a middleware program that provides enhanced security for accessing resources in a distributed computing environment. It focuses on managing access control and authentication within a layered software architecture.
  • Potential Anticipation (35 U.S.C. § 102): This reference broadly addresses enhanced security for resource access. Elements of "security storing means" and "security profiles" from Claim 1 and Claim 8 might find parallels here. However, its focus on "middleware" does not directly correspond to the specific architecture of a firewall with a "centralized security means" performing both initial authentication and subsequent SSO to multiple private resources, as claimed in US6317838.

5. US5818936A - System and method for automatically authenticating a user in a distributed network system

  • Full Citation: US5818936A, Novell, Inc.
  • Publication/Filing Date: Publication date: 1998-10-06. Priority date: 1996-03-15.
  • Brief Description: This patent describes a system for automatically authenticating users in a distributed network, aiming to reduce the need for repeated manual authentication. It is relevant to the concept of Single Sign-On (SSO).
  • Potential Anticipation (35 U.S.C. § 102): This reference directly addresses "automically authenticating a user" and is therefore highly relevant to the Single Sign-On (SSO) feature emphasized in US6317838, particularly in Claims 2 and 6, which describe maintaining an opened session with entered security data for access to subsequent resources. The concept of "security profiles" (Claims 1 and 8) might also be present in its authentication mechanism. However, the specific implementation of this SSO within a "firewall" with "centralized security means" and its interaction with "one-time passwords" (Claim 7) might differentiate US6317838.

6. US5918019A - Virtual dial-up protocol for network communication

  • Full Citation: US5918019A, Cisco Technology, Inc.
  • Publication/Filing Date: Publication date: 1999-06-29. Priority date: 1996-07-29.
  • Brief Description: This patent describes a virtual dial-up protocol for network communication, facilitating remote access to networks. It likely involves authentication and connection management for remote users.
  • Potential Anticipation (35 U.S.C. § 102): This reference addresses remote access and network communication. While relevant to the broad context of "remote access to private resources," it appears to focus on the virtual dial-up protocol itself rather than the specific centralized firewall security architecture and SSO/OTP mechanisms of US6317838 (Claims 1, 8, and 14).

7. US5935251A - Method and apparatus expedited log-on to an application program

  • Full Citation: US5935251A, Hewlett Packard Company.
  • Publication/Filing Date: Publication date: 1999-08-10. Priority date: 1997-12-22.
  • Brief Description: This patent describes a method and apparatus for expedited logon to an application program, aiming to streamline the authentication process for users.
  • Potential Anticipation (35 U.S.C. § 102): This reference is relevant to reducing the effort for users to log on, which is a key benefit of the SSO feature in US6317838 (Claims 2 and 6). The mechanisms for "expedited log-on" could potentially overlap with aspects of maintaining a session and allowing access to subsequent resources without re-entering credentials. However, the specific architectural details within a firewall and the use of one-time passwords as described in US6317838 may not be fully anticipated.

8. US5944824A - System and method for single sign-on to a plurality of network elements

  • Full Citation: US5944824A, Mci Communications Corporation.
  • Publication/Filing Date: Publication date: 1999-08-31. Priority date: 1997-04-30.
  • Brief Description: This patent explicitly describes a "system and method for single sign-on to a plurality of network elements," which directly addresses the SSO problem.
  • Potential Anticipation (35 U.S.C. § 102): This is a highly relevant prior art reference, as it explicitly claims a "single sign-on to a plurality of network elements." This directly anticipates the core SSO feature of US6317838, particularly as detailed in Claim 2 (requesting access to a second private resource using the same security data) and Claim 6 (authentication performed using the same user's security data during the whole duration of said opened session). The question of anticipation would then hinge on the specific implementation details of the SSO, such as the "centralized security means" within a "firewall" (Claim 1 and 8), and the integration of "one-time passwords" (Claim 7 and 14), which might differentiate US6317838.

9. US6038597A - Method and apparatus for providing and accessing data at an internet site

  • Full Citation: US6038597A, Dell U.S.A., L.P.
  • Publication/Filing Date: Publication date: 2000-03-14. Priority date: 1998-01-20.
  • Brief Description: This patent describes methods and apparatus for providing and accessing data at an Internet site. It likely covers aspects of user interaction with web resources and data retrieval.
  • Potential Anticipation (35 U.S.C. § 102): This reference broadly covers accessing data on the Internet. While US6317838 is concerned with secure access for Internet users (Claim 3), this reference likely focuses on the general mechanics of Internet data access rather than the specific security architecture involving a centralized firewall for SSO and OTP as detailed in US6317838's independent claims.

10. US6052785A - Multiple remote data access security mechanism for multitiered internet computer networks

  • Full Citation: US6052785A, International Business Machines Corporation.
  • Publication/Filing Date: Publication date: 2000-04-18. Priority date: 1997-11-21.
  • Brief Description: This patent describes a security mechanism for multiple remote data access in multi-tiered Internet computer networks. It focuses on securing access across different layers of a network architecture.
  • Potential Anticipation (35 U.S.C. § 102): This reference is very relevant to "multiple remote data access security," which aligns with the objectives of US6317838. It potentially anticipates elements related to the "security storing means," "security profiles," and the general idea of securing access to private resources (Claims 1 and 8). The "multi-tiered Internet computer networks" also aligns with the "Internet remote users" context of US6317838. The extent of anticipation would depend on whether its "security mechanism" fully integrates the centralized firewall filtering, SSO for multiple resources within a single session, and OTP authentication in the specific manner claimed by US6317838.

Generated 5/29/2026, 6:01:56 PM