Invention Grant
- Patent Title: Local evaluation of runtime authorization rules derived from externally-derived policy
-
Application No.: US17485452Application Date: 2021-09-26
-
Publication No.: US11722527B2Publication Date: 2023-08-08
- Inventor: Richard James McCarty , Pradeep Kadiyala
- Applicant: International Business Machines Corporation
- Applicant Address: US NY Armonk
- Assignee: International Business Machines Corporation
- Current Assignee: International Business Machines Corporation
- Current Assignee Address: US NY Armonk
- Agent Jeffrey S. LaBaw; David H. Judson
- Main IPC: H04L9/40
- IPC: H04L9/40
Abstract:
An application-centric authorization model utilizes locally-evaluated rules derived from non-local policies and provided to the application via an authorization object, preferably in the subject's session context. Preferably, the approach does not involve a runtime determination regarding the policy or policies; rather, one or more existing policies are merely used to derive authorization rules associated with a subject, and which are then evaluated and enforced at runtime in a computationally-efficient manner within the local runtime context of the application or service.
Public/Granted literature
- US20220014564A1 Local evaluation of runtime authorization rules derived from externally-derived policy Public/Granted day:2022-01-13
Information query
