摘要 |
A method, in which, whenever a user or program running on a data processing system 106 requests a data item from the network, that data item is compared to a list of data items that the user of the machine is authorized or is not authorized to retrieve. Such a list of files for which the user is or is not authorized, an access control list, is distributed from one data processing system to another in the preferred embodiment by means of a secure mobile storage device, such as a smart card 124. In addition to verifying through the access control list stored on the secure mobile storage device that the user of the system requesting a file is authorized to access that file, the system can verify that the user of the secure mobile storage device is the authorized user of the secure mobile storage device by requiring the user to submit identification data such as a password or hand print scan. Further, the user can store web browser configuration and usage history data on the secure mobile storage device. Such data could include the configuration of browser preferences for the user, bookmarks, or a complete history of all sites visited. The system may be used for parental or employer control of the web. |