Invention Grant
- Patent Title: Policy generation and conversion system, policy distribution system, and method and program therefor
- Patent Title (中): 政策制定与转换制度,政策分配制度,方法和方案
-
Application No.: US13255149Application Date: 2010-03-17
-
Publication No.: US08595256B2Publication Date: 2013-11-26
- Inventor: Takayuki Ishikawa
- Applicant: Takayuki Ishikawa
- Applicant Address: JP Tokyo
- Assignee: NEC Corporation
- Current Assignee: NEC Corporation
- Current Assignee Address: JP Tokyo
- Priority: JP2009-066016 20090318
- International Application: PCT/JP2010/054525 WO 20100317
- International Announcement: WO2010/107056 WO 20100923
- Main IPC: G06F7/00
- IPC: G06F7/00 ; G06F17/30
Abstract:
To eliminate restrictions on the order of writing in an access control list. A permission rule and a prohibition rule are stored in advance. A rule is read out from an access control list accepted, and a determination is made as to whether the readout rule is contained in the permission and prohibition rules stored in advance. When the readout rule is not contained and when the readout rule is a permission rule, the readout rule is stored in the temporary storage unit. When the readout rule is not contained and when the readout rule is a prohibition rule, a determination is made as to whether the prohibition rule conflicts with the permission rule stored in the temporary storage unit. When the prohibition rule does not conflict, the prohibition rule is stored in the temporary storage unit. When the prohibition rule conflicts, the prohibition rule is converted to a prohibition rule by removing access target resources written in the permission rule from access target resources written in the prohibition rule on the basis of resource information, and the prohibition rule is stored.
Public/Granted literature
- US20120030243A1 POLICY GENERATION AND CONVERSION SYSTEM, POLICY DISTRIBUTION SYSTEM, AND METHOD AND PROGRAM THEREFOR Public/Granted day:2012-02-02
Information query
