-
公开(公告)号:GB2519966A
公开(公告)日:2015-05-13
申请号:GB201319353
申请日:2013-11-01
Applicant: IBM
Inventor: CAMENISCH JAN LEONHARD , KARJOTH GUENTER , NEVEN GREGORY , PREISS FRANZ-STEFAN
Abstract: A method for controlling access to a resource 308 owned by a resource owner 310 is provided. The owner may be a user of a resource computer system 204, which for example, stored the resource on behalf of the owner. The access control may be based on social network data of a social network system 202 with the social network acting as an authorisation server for the resource system for controlling access to the resource at the resource system from requesting users 312. The access control may be based on an owner token 314 relating to the owner, a requester token relating to a requester requesting access to the resource, and an access control policy. The owner token and the requester token may be received by the social networking system to determine 304 by the social networking system whether access to the resource is to be granted based on the content of the owner token, including owner identity and access control policy, and the requester token, including the requestors identity. A social network identity of the owner and a social network identity of the requester may only be determinable by the social network system preserving anonymity/privacy in the system, for example, the link/relationship between the owners 310s and requestors 312s profiles in the social network is not divulged externally from the social network. A group signature key arrangement may also be used.
Search Results
1
records
(took 0.017 seconds)
