主权项 |
1. A method of controlling access via a client computer to data provided by a network-based application, the method comprising the steps of:
receiving, at the client computer from an identification server, data-restriction information based on a user's identity; on the client computer, following retrieval of the data-restriction information, monitoring a message queue of an operating system executing on the client computer recognizing a message sent by the user and intended for the network-based application; searching the message for a keyword, data field, or screen present in the data-restriction information; and based on a result of the search of the message, permitting or blocking direct transmission of the message from the operating system to the network-based application or, if the network-based application communicates with an application resident on the client computer, blocking transmission of the message from the operating system to the application resident on the client computer. |