Claims-aware role-based access control

Invention Grant

US08776255B2 Claims-aware role-based access control 有权

Title translation: 基于声明的角色访问控制

Please log in to see more content

Patent Title: Claims-aware role-based access control
Patent Title (中): 基于声明的角色访问控制
Application No.: US12895672

Application Date: 2010-09-30
Publication No.: US08776255B2

Publication Date: 2014-07-08
Inventor: Rakesh P. Bilaney , Samuel R. Devasahayam
Applicant: Rakesh P. Bilaney , Samuel R. Devasahayam
Applicant Address: US WA Redmond
Assignee: Microsoft Corporation
Current Assignee: Microsoft Corporation
Current Assignee Address: US WA Redmond
Agent Tony Azure; Raghu Chinagudabha; Micky Minhas
Main IPC: G06F21/00
IPC: G06F21/00 ; G06F21/33 ; G06F21/62 ; G06F21/10 ; H04L29/06 ; G11B20/00

Abstract:

The formulation of a security token that specifies role information corresponding to one or more roles of a requesting entity that is to request an action to be performed on a resource. The formulation begins by accessing one or more claims, each having an expression regarding the requesting entity. The expression for at least one of the claims is evaluated to thereby assign the requesting entity to one or more identities. The identities are then used determine role information to include in a role-based security token that may be submitted to the computing system that manages the resources.

Abstract(Chinese):

一个安全令牌的制定，其指定对应于请求实体的一个或多个角色的角色信息，该请求实体要求对资源执行动作。该公式开始于访问一个或多个权利要求，每个权利要求具有关于请求实体的表达。评估至少一个权利要求的表达式，从而将请求实体分配给一个或多个身份。然后使用身份确定角色信息以包含在可以提交给管理资源的计算系统的基于角色的安全令牌中。

Public/Granted literature

US20120084869A1 CLAIMS-AWARE ROLE-BASED ACCESS CONTROL Public/Granted day:2012-04-05

Information query

Espacenet

IPC分类:

G	物理
G06	计算；推算或计数
G06F	电数字数据处理（基于特定计算模型的计算机系统入G06N）
G06F21/00	防止未授权行为的保护计算机、其部件、程序或数据的安全装置