`
`us 6,779,118
`
`Reexamination No. 95/002,035
`
`2. Requester's assertion that He and Fortinsky are directed to using ticket-based
`security architecture to control users' access to application servers on the
`network (e.g., network resources).
`
`Requester and the Examiner accurately describe He and Fortinsky as a "ticket
`
`based security architecture." However as described above, the ticket based security
`
`architecture requires that the "ticket" contain information regarding the user identity,
`
`user authority, user privileges and the identity of a network server to be accessed.
`
`This ticket information is communicated over the network before any access control
`
`occurs. The access processing must therefore occur at the network element after the
`
`ticket information is transmitted over the network to the network server. By contrast,
`
`the '118 patent uses a rule set that includes "elements or conditions" programmed into a
`
`redirection sever to control access to the network itself. He and Fortinsky and
`
`Admitted Prior Art do not teach controlling access to the network, but rather, access to
`
`information on an identified network server where access is allowed or denied based on
`
`processing of the ticket data at the network server after access to the network itself has
`
`been allowed without restriction. The cited references, alone or in any possible
`
`combination, therefore do not suggest, disclose or provide any motivation for controlling
`
`access to the network itself, and indeed, teach just the opposite -- the absence of any
`
`filter or control of access to the network itself.
`
`3. Requester's assertion that Fortinsky uses a "gateway server" to allow a ticket to
`access external network elements.
`
`Requester argued, and the Examiner adopted, the position that Fortinsky uses a
`
`"gateway server" and therefore, it would have been obvious to use a gateway server in
`
`He. However, Requester misperceives the purpose and function of the "gateway
`
`server" of Fortinsky. Specifically, the "gateway server" is a server that modifies the
`
`ticket information to be readable by a network server, that is, a server external to the
`
`private network so that the external server can process the ticket information and either
`
`allow or deny access to the information on that external server. The "gateway server"
`
`does not allow or deny access to any network including the external network, as
`
`required by the '118 patent. As with He, the ticket data of Fortinsky is transmitted on
`
`the network without pre-processing or restriction, which is contrary to the requirements
`
`27
`
`Panasonic-1014
`Page 901 of 1980
`
`
`
`R 1341006F .A02
`
`us 6,779,118
`
`Reexamination No. 95/002,035
`
`of the '118 patent where access control, essential to enable the '118 patent system to
`
`perform its intended function, is to the network itself. Furthermore, the only processing
`
`taught by He and Fortinsky is done at the destination server, whether on the private
`
`network or an external network, using data from the ticket transmitted to the destination
`
`sever. As such, Fortinsky actually teaches away from the '118 patent system.
`
`4. Requester's assertion that one of ordinary skill in the art would have considered
`placing a redirection server between the user and the network because there
`would be a "a reasonable expectation of success in controlling a user's access to
`the public network by locating the redirect server ... between the user's dial-up
`network server and the public network."
`
`He, Fortinsky and the Admitted Prior Art each teach processing ticket information
`
`at a destination server after the ticket information has been transmitted without
`
`restriction over the network. Processing at the destination server is essential to be
`
`able to perform the security function and protect the security of the information on that
`
`destination server.
`
`If the ticket information processing was done at the user side
`
`merely to give access to the network, as claimed by '118 patent, the user would either
`
`be indiscriminately blocked or given access to any destination server on the network,
`
`and the security purpose of the references could not be achieved.
`
`The specific claim language that supports the above analysis is now discussed.
`
`D. Processing Before Network Access is Allowed.
`
`The processing of data before access to the network (public or private) is
`
`permitted is a requirement of each of the claims of the '118 patent. Self-evident is the
`
`fact that control over access to a network (e.g., so that access services can be billed to
`
`a customer), necessarily requires that the control processing must be performed before
`
`access is granted.
`
`If access were granted first, any subsequent control would
`
`obviously be useless in achieving the purpose of the '118 patent. The '118 patent
`
`network access control is not based on processing data at the destination server, nor is
`
`it to protect information stored on a destination server, as required by He and Fortinsky.
`
`Zenchelsky does teach a firewall that is arguably at the user side of a network.
`
`However, Zenchelsky still teaches controlling access to identified network elements
`
`based on the content of those network elements, albeit at the user side of the network.
`
`28
`
`Panasonic-1014
`Page 902 of 1980
`
`
`
`R 1341006F .A02
`
`us 6,779,118
`
`Reexamination No. 95/002,035
`
`The '118 patent is not concerned with the content of network elements, only with
`
`controlling access to the network itself to enable a provider to be able to charge a fee
`
`for granting that access.
`
`E. User's Credentials Do Not Meet the Definition of "Rule Set" From The
`'118 Patent.
`
`Requester argues that the user "credentials" of He; the privilege attribute
`
`certificate (PAC) of Fortinsky; and the individualized rules of Zenchelsky are the same
`
`as the "rule sets" taught by the '118 patent. However, both Requester and the
`
`Examiner have again failed to articulate any basis for this conclusion. Furthermore, as
`
`set forth in, e.g., Sections IV - X above, there are no grounds for this rejection because
`
`there is no teaching in any of the prior art, alone or in combination, of the "rule set"
`
`defined and claimed in the '118 patent as incorporating "elements or conditions"
`
`programmed into a redirection server for processing data packets from a user during a
`
`user session, or a "rule set" that enables the redirection server to modify the rule set
`
`during a user session.
`
`A finding of obviousness requires that the rejection articulate the reasons why the
`
`references teach, disclose or would motivate one skilled in the art to incorporate a rule
`
`set that incorporates "elements or conditions," where the rule set is programmed into a
`
`redirection sever and the redirection server thereafter processes data packets from a
`
`user during a user session according to the rule set, and to enable the redirection server
`
`to modify the rule set during a user session. Having failed to articulate any basis for
`
`this obviousness rejection based on the meaning of rule set defined and taught only in
`
`the '118 patent, this obviousness rejection must be withdrawn.
`
`F. Redirection
`
`Reference is made to, e.g., Sections IV(B), V(D), Vll(D) and IX(B). For the
`
`same reasons set forth in those Sections, none of the prior art teach redirection by a
`
`redirection server into which a rule set is programmed where the programmed rule set
`
`itself includes a "redirect" action to be performed on data packets passing through the
`
`redirection server from a user computer at the user side of the network. Accordingly,
`
`29
`
`Panasonic-1014
`Page 903 of 1980
`
`
`
`R 1341006F .A02
`
`us 6,779,118
`
`Reexamination No. 95/002,035
`
`Patent Owner respectfully requests withdrawal of the rejections of the claims based on
`
`He, Zenchelsky and Forinsky and the Admitted Prior Art.
`
`G. Modification of "Rule Set"
`
`Reference is made to, e.g., Sections IV(C), V(E), Vll(C) and IX(C). For the
`
`same reasons set forth in those Sections, none of the prior art teach modification of the
`
`rule set by the redirection server during a user session, or that the modification is
`
`effected by the programming of the rule set in response to an "element or condition"
`
`which are part of the rule set. Accordingly, Patent Owner courteously requests
`
`withdrawal of the rejections of the claims based on He, Zenchelsky and Forinsky and
`
`the Admitted Prior Art.
`
`XII. Conclusion.
`
`For all of the above reasons, the Examiner is respectfully requested to withdraw
`
`the rejections of all claims and issue a Reexamination Certificate allowing all claims, or
`
`withdraw the grant of this Reexamination and issue a denial of the Request.
`
`The Examiner is invited to direct any questions regarding this matter to the
`
`undersigned at the below-listed contact numbers and addresses.
`
`Respectfully submitted,
`Koichiro lkudome et al.
`
`/Abe Hershkovitz/
`Abraham Hershkovitz
`Reg. No. 45,294
`
`Date: January 17, 2013
`
`HERSHKOVITZ & ASSOCIATES, LLC
`2845 Duke Street
`Alexandria, VA 22314
`TEL: (703) 370-4800
`FAX: (703) 370-4809
`E-MAIL: patent@hershkovitz.net
`
`R1341006F.A02; AH/pjj
`
`30
`
`Panasonic-1014
`Page 904 of 1980
`
`
`
`R 1341006F .A02
`
`us 6,779,118
`
`Reexamination No. 95/002,035
`
`CERTIFICATE OF SERVICE
`
`It is hereby certified that the attached RESPONSE TO OFFICE ACTION UNDER 37
`CFR §1.945, COPY OF RESPONSE AND AMENDMENT UNDER 37 CFR §1.111 AFTER
`BOARD DECISION IN PROCEEDING NO. 90/009,301 and this Certificate of Service are
`being served on January 17, 2013 by first class mail on the third party requester at
`the third party requestor's address:
`
`IP Section
`HAYNES & BOONE
`2323 Victory Avenue, Suite 700
`Dallas, TX 75219
`
`/Abe Hershkovitz/
`Abraham Hershkovitz
`
`31
`
`Panasonic-1014
`Page 905 of 1980
`
`
`
`R1341006.Al 7
`
`IN THE UNITED STATES PATENT AND TRADEMARK OFFICE
`
`Inventor: Koichiro Ikudome, et al.
`
`Art Unit: 3992
`
`Reexamination Proceeding: 90/009,301
`(based on U.S. Patent No. 6,779,118)
`
`Confirmation No.: 6609
`
`Reexamination Filed: December 17, 2008
`
`Examiner: Sam Rimell
`
`For: USER SPECIFIC AUTOMATIC DATA REDIRECTION SYSTEM
`
`RESPONSE UNDER 37 CFR 1.111
`AND PROPOSED AMENDMENT UNDER 37 CFR 1.530
`
`Attn: Mail Stop "Ex Parte Reexamination"
`August 20, 2010
`Central Reexamination Unit
`Commissioner for Patents
`United States Patent & Trademark Office
`P.O. Box 1450
`Alexandria, Virginia 23313-1450
`
`Dear Commissioner:
`
`This Response is in reply to the Board of Appeals Decision ("Decision") mailed on
`
`August 23, 2011, and the Personal Interview held on October 3, 2011 and subsequent follow-up
`
`telephone interview in the above-identified ex-parte reexamination proceeding. The due date
`
`for filing a Response is October 24, 2011 (because October 23, 2011 falls on a Sunday).
`
`Accordingly, this Response is timely filed. A Statement of Substance of Interview is being
`
`submitted concurrently.
`
`Please amend the present claims as proposed below and consider the detailed traversal
`
`below, wherein:
`
`The Status of claims is listed on page 2 of this paper.
`
`Amendments to the Claims begin on page 3 of this paper.
`
`Remarks/Arguments begin on page 18 of this paper.
`Evidence of Service of this Response on the 3rd party requester is found after the last page
`
`of this paper.
`
`Panasonic-1014
`Page 906 of 1980
`
`
`
`R1341006.Al 7
`
`us 6,779,118
`
`Reexamination No. 90/009,301
`
`STATUS OF CLAIMS
`
`Claims 1-4 7 are subject to reexamination. According to the Decision:
`
`•
`•
`•
`
`the Examiner's rejection of claims 32, 37, 42, and 47 is affirmed;
`
`claims 1, 8, 15, and 25 are rejected under a new grounds of rejection; and
`
`the rejection of all other claims (2-7, 9-14, 16-24, 26-31, 33-36, 38-41, 43-46) is
`
`reversed.
`
`In response to the Decision, the following amendments are made, resulting in pending
`
`claims 2-7, 9-14, 16-24, 26-31, 33-36, 38-41, 43-46, and 48-94.
`
`2
`
`Panasonic-1014
`Page 907 of 1980
`
`
`
`R1341006.Al 7
`
`us 6,779,118
`
`Reexamination No. 90/009,301
`
`AMENDMENTS TO THE CLAIMS
`
`Per 37 CFR 1.530(i) and MPEP 2250, these amendments are made relative to the patent
`
`as of the date of filing the request for examination. This Amendment does not introduce new
`
`matter. Accordingly, entry of this Amendment is appropriate and is urged.
`
`Rejected claims 1, 8, 15, 25, 32, 37, 42, and 47 are canceled. Claims 16-23 and 38-41
`
`are placed in independent form.
`
`Additionally, a new set of claims is provided (48-94) which corresponds to the claim set
`
`that was appealed, and which further clarifies the location of the redirection server.
`
`Specifically, new independent claims 48, 60, 72, and 87 correspond to independent claims 1, 8,
`
`15, and 25 respectively, with additional terms to clarify the "between" location of the
`
`redirection server. These clarifications were discussed with the Examiners at the Personal
`
`Interview held on October 3, 2011, and follow-up telephone interviews with the Examiner and
`
`the Examiner stated that such clarifications would overcome the applied art and make these
`
`claims patentable.
`
`Similarly, new dependent claims 49-59, 61-71, 73-86, and 88-94 depend from allowable
`
`independent claims 48, 60, 72, and 87, respectively, and generally correspond respectively, to
`
`dependent claims 2-7, 28-32, 9-14, 33-37, 16-24, 38-42, 26-27 and 43-47, depending from
`
`independent claims 1, 8, 15, and 25.
`
`Claims 2-7, 9-14, 16-24, 26-31, 33-36, 38-41 and 43-46, as to which the Board
`
`overturned all prior rejections, as well as new claims 48-94 are pending.
`
`3
`
`Panasonic-1014
`Page 908 of 1980
`
`
`
`R1341006.Al 7
`
`us 6,779,118
`
`Reexamination No. 90/009,301
`
`1.
`
`(Canceled)
`
`2-7.
`
`(Original)
`
`8.
`
`(Canceled)
`
`9-14.
`
`(Original)
`
`15.
`
`(Canceled)
`
`16.
`
`(Amended)
`
`[The system of claim 15,] A system comprising:
`
`a redirection server programmed with a user's rule set correlated to a temporarily
`
`assigned network address; wherein the rule set contains at least one of a plurality of functions
`
`used to control data passing between the user and a public network;
`
`wherein the redirection server is configured to allow automated modification of at least a
`
`portion of the rule set correlated to the temporarily assigned network address;
`
`wherein the redirection server is configured to allow automated modification of at least a
`
`portion of the rule set as a function of some combination of time, data transmitted to or from the
`
`user, or location the user accesses; and
`
`wherein the redirection server is configured to allow modification of at least a portion of
`
`the rule set as a function of time.
`
`17.
`
`(Amended)
`
`[The system of claim 15,] A system comprising:
`
`a redirection server programmed with a user's rule set correlated to a temporarily
`
`assigned network address; wherein the rule set contains at least one of a plurality of functions
`
`used to control data passing between the user and a public network;
`
`wherein the redirection server is configured to allow automated modification of at least a
`
`portion of the rule set correlated to the temporarily assigned network address;
`
`wherein the redirection server is configured to allow automated modification of at least a
`
`portion of the rule set as a function of some combination of time, data transmitted to or from the
`
`4
`
`Panasonic-1014
`Page 909 of 1980
`
`
`
`R1341006.Al 7
`
`us 6,779,118
`
`Reexamination No. 90/009,301
`
`user, or location the user accesses; and
`
`wherein the redirection server is configured to allow modification of at least a portion of
`
`the rule set as a function of the data transmitted to or from the user.
`
`18.
`
`(Thrice Amended)
`
`[The system of claim 15,] A system comprising:
`
`a redirection server programmed with a user's rule set correlated to a temporarily
`
`assigned network address; wherein the rule set contains at least one of a plurality of functions
`
`used to control data passing between the user and a public network;
`
`wherein the redirection server is configured to allow automated modification of at least a
`
`portion of the rule set correlated to the temporarily assigned network address;
`
`wherein the redirection server is configured to allow automated modification of at least a
`
`portion of the rule set as a function of some combination of time, data transmitted to or from the
`
`user, or location the user accesses; and
`
`wherein the redirection server is configured to allow modification of at least a portion of
`
`the rule set as a function of the location or locations the user accesses.
`
`[ access.]
`
`19.
`
`(Amended)
`
`[The system of claim 15,] A system comprising:
`
`a redirection server programmed with a user's rule set correlated to a temporarily
`
`assigned network address; wherein the rule set contains at least one of a plurality of functions
`
`used to control data passing between the user and a public network;
`
`wherein the redirection server is configured to allow automated modification of at least a
`
`portion of the rule set correlated to the temporarily assigned network address;
`
`wherein the redirection server is configured to allow automated modification of at least a
`
`portion of the rule set as a function of some combination of time, data transmitted to or from the
`
`user, or location the user accesses; and
`
`wherein the redirection server is configured to allow the removal or reinstatement of at
`
`least a portion of the rule set as a function of time.
`
`20.
`
`(Amended)
`
`[The system of claim 15,] A system comprising:
`
`a redirection server programmed with a user's rule set correlated to a temporarily
`
`assigned network address; wherein the rule set contains at least one of a plurality of functions
`
`5
`
`Panasonic-1014
`Page 910 of 1980
`
`
`
`R1341006.Al 7
`
`us 6,779,118
`
`Reexamination No. 90/009,301
`
`used to control data passing between the user and a public network;
`
`wherein the redirection server is configured to allow automated modification of at least a
`
`portion of the rule set correlated to the temporarily assigned network address;
`
`wherein the redirection server is configured to allow automated modification of at least a
`
`portion of the rule set as a function of some combination of time, data transmitted to or from the
`
`user, or location the user accesses; and
`
`wherein the redirection server is configured to allow the removal or reinstatement of at
`
`least a portion of the rule set as a function of the data transmitted to or from the user.
`
`21.
`
`(Thrice Amended)
`
`[The system of claim 15,] A system comprising:
`
`a redirection server programmed with a user's rule set correlated to a temporarily
`
`assigned network address; wherein the rule set contains at least one of a plurality of functions
`
`used to control data passing between the user and a public network;
`
`wherein the redirection server is configured to allow automated modification of at least a
`
`portion of the rule set correlated to the temporarily assigned network address;
`
`wherein the redirection server is configured to allow automated modification of at least a
`
`portion of the rule set as a function of some combination of time, data transmitted to or from the
`
`user, or location the user accesses; and
`
`wherein the redirection server is configured to allow the removal or reinstatement of at
`
`least a portion of the rule set as a function of the location or locations the user accesses.
`
`[access.]
`
`22.
`
`(Amended)
`
`[The system of claim 15,] A system comprising:
`
`a redirection server programmed with a user's rule set correlated to a temporarily
`
`assigned network address; wherein the rule set contains at least one of a plurality of functions
`
`used to control data passing between the user and a public network;
`
`wherein the redirection server is configured to allow automated modification of at least a
`
`portion of the rule set correlated to the temporarily assigned network address;
`
`wherein the redirection server is configured to allow automated modification of at least a
`
`portion of the rule set as a function of some combination of time, data transmitted to or from the
`
`user, or location the user accesses; and
`
`6
`
`Panasonic-1014
`Page 911 of 1980
`
`
`
`R1341006.A17
`
`us 6,779,118
`
`Reexamination No. 90/009,301
`
`wherein the redirection server is configured to allow the removal or reinstatement of at
`
`least a portion of the rule set as a function of some combination of time, data transmitted to or
`
`from the user, or location or locations the user accesses.
`
`[ access.]
`
`23.
`
`(Amended)
`
`[The system of claim 15,] A system comprising:
`
`a redirection server programmed with a user's rule set correlated to a temporarily
`
`assigned network address; wherein the rule set contains at least one of a plurality of functions
`
`used to control data passing between the user and a public network;
`
`wherein the redirection server is configured to allow automated modification of at least a
`
`portion of the rule set correlated to the temporarily assigned network address;
`
`wherein the redirection server is configured to allow automated modification of at least a
`
`portion of the rule set as a function of some combination of time, data transmitted to or from the
`
`user, or location the user accesses; and
`
`wherein the redirection server has a user side that is connected to a computer using the
`
`temporarily assigned network address and a network side connected to a computer network and
`
`wherein the computer using the temporarily assigned network address is connected to the
`
`computer network through the redirection server.
`
`24.
`
`(Original)
`
`25.
`
`(Canceled)
`
`26.
`
`(Twice Amended) The method of claim 25, further including the step of modifying at
`
`least a portion of the user's rule set as a function of one or more of: time, data transmitted to or
`
`from the user, and location or locations the user accesses.
`
`[access.]
`
`27.
`
`(Twice Amended) The method of claim 25, further including the step of removing or
`
`reinstating at least a portion of the user's rule set as a function of one or more of: time, the data
`
`transmitted to or from the user and [the] ~ location or locations the user accesses.
`
`[access.]
`
`28.
`
`(New) The system of claim 1, wherein the individualized rule set includes at least one
`
`7
`
`Panasonic-1014
`Page 912 of 1980
`
`
`
`R1341006.Al 7
`
`us 6,779,118
`
`Reexamination No. 90/009,301
`
`rule as a function of a type of IP (Internet Protocol) service.
`
`29.
`
`(New) The system of claim 1, wherein the individualized rule set includes an initial
`
`temporary rule set and a standard rule set, and wherein the redirection server is configured to
`
`utilize the temporary rule set for an initial period of time and to thereafter utilize the standard
`
`rule set.
`
`30.
`
`(New) The system of claim 1, wherein the individualized rule set includes at least one
`
`rule allowing access based on a request type and a destination address.
`
`31.
`
`(New) The system of claim 1, wherein the individualized rule set includes at least one
`
`rule redirecting the data to a new destination address based on a request type and an attempted
`
`destination address.
`
`32.
`
`(Canceled)
`
`33.
`
`(New) The method of claim 8, wherein the individualized rule set includes at least one
`
`rule as a function of a type of IP (Internet Protocol) service.
`
`34.
`
`(New) The method of claim 8, wherein the individualized rule set includes an initial
`
`temporary rule set and a standard rule set, and wherein the redirection server is configured to
`
`utilize the temporary rule set for an initial period of time and to thereafter utilize the standard
`
`rule set.
`
`35.
`
`(New) The method of claim 8, wherein the individualized rule set includes at least one
`
`rule allowing access based on a request type and a destination address.
`
`36.
`
`(New) The method of claim 8, wherein the individualized rule set includes at least one
`
`rule redirecting the data to a new destination address based on a request type and an attempted
`
`destination address.
`
`8
`
`Panasonic-1014
`Page 913 of 1980
`
`
`
`R1341006.Al 7
`
`37.
`
`(Canceled)
`
`us 6,779,118
`
`Reexamination No. 90/009,301
`
`38.
`
`(New) A system comprising:
`
`a redirection server programmed with a user's rule set correlated to a temporarily
`
`assigned network address; wherein the rule set contains at least one of a plurality of functions
`
`used to control data passing between the user and a public network;
`
`wherein the redirection server is configured to allow automated modification of at least a
`
`portion of the rule set correlated to the temporarily assigned network address;
`
`wherein the redirection server is configured to allow automated modification of at least a
`
`portion of the rule set as a function of some combination of time, data transmitted to or from the
`
`user, or location the user accesses; and
`
`wherein the modified rule set includes at least one rule as a function of a type of IP
`
`(Internet Protocol) service.
`
`39.
`
`(New) A system comprising:
`
`a redirection server programmed with a user's rule set correlated to a temporarily
`
`assigned network address; wherein the rule set contains at least one of a plurality of functions
`
`used to control data passing between the user and a public network;
`
`wherein the redirection server is configured to allow automated modification of at least a
`
`portion of the rule set correlated to the temporarily assigned network address;
`
`wherein the redirection server is configured to allow automated modification of at least a
`
`portion of the rule set as a function of some combination of time, data transmitted to or from the
`
`user, or location the user accesses; and
`
`wherein the modified rule set includes an initial temporary rule set and a standard rule
`
`set, and wherein the redirection server is configured to utilize the temporary rule set for an initial
`
`period of time and to thereafter utilize the standard rule set.
`
`40. (New) A system comprising:
`
`a redirection server programmed with a user's rule set correlated to a temporarily
`
`assigned network address; wherein the rule set contains at least one of a plurality of functions
`
`used to control data passing between the user and a public network;
`
`9
`
`Panasonic-1014
`Page 914 of 1980
`
`
`
`R1341006.Al 7
`
`us 6,779,118
`
`Reexamination No. 90/009,301
`
`wherein the redirection server is configured to allow automated modification of at least a
`
`portion of the rule set correlated to the temporarily assigned network address;
`
`wherein the redirection server is configured to allow automated modification of at least a
`
`portion of the rule set as a function of some combination of time, data transmitted to or from the
`
`user, or location the user accesses; and
`
`wherein the modified rule set includes at least one rule allowing access based on a
`
`request type and a destination address.
`
`41. (New) A system comprising:
`
`a redirection server programmed with a user's rule set correlated to a temporarily
`
`assigned network address; wherein the rule set contains at least one of a plurality of functions
`
`used to control data passing between the user and a public network;
`
`wherein the redirection server is configured to allow automated modification of at least a
`
`portion of the rule set correlated to the temporarily assigned network address;
`
`wherein the redirection server is configured to allow automated modification of at least a
`
`portion of the rule set as a function of some combination of time, data transmitted to or from the
`
`user, or location the user accesses; and
`
`wherein the modified rule set includes at least one rule redirecting the data to a new
`
`destination address based on a request type and an attempted destination address.
`
`42.
`
`(Canceled)
`
`43.
`
`(New) The method of claim 25, wherein the modified rule set includes at least one rule as
`
`a function of a type of IP (Internet Protocol) service.
`
`44.
`
`(New) The method of claim 25, wherein the modified rule set includes an initial
`
`temporary rule set and a standard rule set, and wherein the redirection server is configured to
`
`utilize the temporary rule set for an initial period of time and to thereafter utilize the standard
`
`rule set.
`
`45.
`
`(New) The method of claim 25, wherein the modified rule set includes at least one rule
`
`10
`
`Panasonic-1014
`Page 915 of 1980
`
`
`
`R1341006.A17
`
`us 6,779,118
`
`Reexamination No. 90/009,301
`
`allowing access based on a request type and a destination address.
`
`46.
`
`(New) The method of claim 25, wherein the modified rule set includes at least one rule
`
`redirecting the data to a new destination address based on a request type and an attempted
`
`destination address.
`
`47.
`
`(Canceled)
`
`48.
`
`(New) A system comprising:
`
`a database with entries correlating each of a plurality of user IDs with an individualized
`
`rule set;
`
`a dial-up network server that receives user IDs from users' computers;
`
`a redirection server connected between the dial-up network server and a public network,
`
`an authentication accounting server connected to the database, the dial-up network server
`
`and the redirection server;
`
`wherein the dial-up network server communicates a first user ID for one of the users'
`
`computers and a temporarily assigned network address for the first user ID to the authentication
`
`accounting server;
`
`wherein the authentication accounting server accesses the database and communicates the
`
`individualized rule set that correlates with the first user ID and the temporarily assigned network
`
`address to the redirection server; and
`
`wherein data directed toward the public network from the one of the users' computers are
`
`processed by the redirection server according to the individualized rule set.
`
`49.
`
`(New) The system of claim 48, wherein the redirection server further provides control
`
`over a plurality of data to and from the users' computers as a function of the individualized rule
`
`set.
`
`50.
`
`(New) The system of claim 48, wherein the redirection server further blocks the data to
`
`and from the users' computers as a function of the individualized rule set.
`
`11
`
`Panasonic-1014
`Page 916 of 1980
`
`
`
`R1341006.Al 7
`
`us 6,779,118
`
`Reexamination No. 90/009,301
`
`51.
`
`(New) The system of claim 48, wherein the redirection server further allows the data to
`
`and from the users' computers as a function of the individualized rule set.
`
`52.
`
`(New) The system of claim 48, wherein the redirection server further redirects the data to
`
`and from the users' computers as a function of the individualized rule set.
`
`53.
`
`(New) The system of claim 48, wherein the redirection server further redirects the data
`
`from the users' computers to multiple destinations as a function of the individualized rule set.
`
`54.
`
`(New) The system of claim 48, wherein the database entries for a plurality of the plurality
`
`of users' IDs are correlated with a common individualized rule set.
`
`55.
`
`(New) The system of claim 48, wherein the individualized rule set includes at least one
`
`rule as a function of a type of IP (Internet Protocol) service.
`
`56.
`
`(New) The system of claim 48, wherein the individualized rule set includes an initial
`
`temporary rule set and a standard rule set, and wherein the redirection server is configured to
`
`utilize the temporary rule set for an initial period of time and to thereafter utilize the standard
`
`rule set.
`
`57.
`
`(New) The system of claim 48, wherein the individualized rule set includes at least one
`
`rule allowing access based on a request type and a destination address.
`
`58.
`
`(New) The system of claim 48, wherein the individualized rule set includes at least one
`
`rule redirecting the data to a new destination address based on a request type and an attempted
`
`destination address.
`
`59.
`
`(New) The system of claim 48, wherein the redirection server is configured to redirect
`
`data from the users' computers by replacing a first destination address in an IP (Internet
`
`protocol) packet header by a second destination address as a function of the individualized rule
`
`12
`
`Panasonic-1014
`Page 917 of 1980
`
`
`
`R1341006.Al 7
`
`us 6,779,118
`
`Reexamination No. 90/009,301
`
`60.
`
`(New)
`
`In a system comprising a database with entries correlating each of a plurality of
`
`user IDs with an individualized rule set; a dial--up network server that receives user IDs from
`
`users' computers; a redirection server connected between the dial-up network server and a public
`
`network, and an authentication accounting server connected to the database, the dial-up network
`
`server and the redirection server, a method comprising the steps of:
`
`communicating a first user ID for one of the users' computers and a temporarily assigned
`
`network address for the first