Patent
Role-based authorization management framework
Praerit Garg,Cliff Van Dyke,Dave M. McPherson,Everett McKay +3 more
- 03 Jun 2009
103
TL;DR: Role-based authorization management as mentioned in this paper maintains an authorization policy store that represents user authorizations to perform operations associated with an application and verifies that the user is authorized to perform the requested function.
read more
Abstract: A role-based authorization management system maintains an authorization policy store that represents user authorizations to perform operations associated with an application. When a user attempts to perform a function associated with an application, the authorization management system verifies that the user is authorized to perform the requested function. The authorization management system also provides an interface for an application administrator to update role-based user authorization policies associated with one or more applications.
read more
Chat with Paper
AI Agents for this Paper
Find similar papers on Google Scholar, PubMed and Arxiv
Write a critical review of this paper
Analyze citations of this paper to find unaddressed research gaps
Citations
Patent
Translating role-based access control policy to resource authorization policy
Dave M. McPherson,Muthukrishnan Paramasivam,Paul J. Leach +2 more
- 22 May 2007
TL;DR: In this article, a generic RBAC system is defined from which mappings to other authorization enforcement mechanism make possible the translation of RBAC "roles" to resource authorization policies applied to resources managed by a resource manager.
179
Patent
Centralized role-based access control for storage servers
Joshua Flank,Steven R. Klinkner,Benjamin Swartzlander,Timothy J. Thompson,Alan G. Yoder +4 more
- 08 Apr 2005
TL;DR: In this paper, the authors propose a centralized role-based access control (RBAC) for storage servers, which can include operating multiple storage servers with access to stored data, and using a separate network server to provide centralized RBAC.
141
Patent
Techniques for establishing and managing a distributed credential store
Lloyd Leon Burch,Douglas G. Earl,Stephen R. Carter +2 more
- 29 Jan 2004
TL;DR: In this paper, a distributed credential store is described, where an identity service aggregates identity information from one or more identity stores and maintains the information as a remote credential store, which is transmitted to a principal service as an initial configuration of a local credential store.
87
Patent
Techniques for dynamically establishing and managing authentication and trust relationships
Lloyd Leon Burch,Douglas G. Earl,Stephen R. Carter,Robert Mark Ward +3 more
- 08 Dec 2004
TL;DR: In this article, techniques for dynamically establishing and managing authentication and trust relationships are provided for dynamic establishing and management of authentication relationships between individuals and their relationships with an identity service, where the identity service can assemble authentication information, aggregated attributes, and aggregated policies which will drive and define the various relationships.
78
Patent
Techniques for providing role-based security with instance-level granularity
Stephen Hugh Kinser,Lloyd Leon Burch,Stephen R. Carter +2 more
- 06 Jun 2005
TL;DR: Role-based security with instance-level granularity is described in this article, where a security service detects a request made by a principal for access to a resource and determines whether access to the resource for the purposes of satisfying the request is permissible.
70
References
Patent
System and method for maintaining security in a distributed computer network
Mark Moriconi,Shelly Qian +1 more
- 22 Jan 2001
TL;DR: In this paper, a system and method for maintaining security in a distributed computing environment comprises a policy manager located on a server for managing and distributing a security policy, and an application guard located on client for managing access to securable components as specified by the security policy.
680
Patent
System and method for accessing enterprise-wide resources by presenting to the resource a temporary credential
Jerome D. Hudson,Jean-Paul Champagne,Mary A. Galindo,Cynthia M. K. Hickerson,Donna R. Hickman,Robert P. Lockhart,Nancy B. Saddler,Patricia A. Stange +7 more
- 27 Sep 1996
TL;DR: In this paper, a resource access control system and method for a corporate enterprise includes a security administrator (60, 62) in communication with a plurality of users (90), each of the users having an assigned role and a unique user identifier.
430
Patent
Method and system for advanced role-based access control in distributed and centralized computer systems
Klaus Deinhart,Virgil D. Gligor,Christoph Lingenfelder,Sven Lorenz +3 more
- 15 Aug 1994
TL;DR: In this article, a method and system for registration, authorization, and control of access rights in a computer system is presented, where the required parameters are provided by the subject of the computer system, e.g. by a person, a job position, or an organization unit.
319
Patent
Declarative and programmatic access control of component-based server applications using roles
Patrick J. Helland,Rodney T. Limprecht,Mohsen Al-Ghosein,David R. Reed,William D. Devlin +4 more
- 28 Oct 1997
TL;DR: In this paper, a programming model for component-based server applications provides declarative and programmatic access control at development without knowledge of the security configuration at deployment, where the developer defines the server application access control by defining logical classes of users, called roles.
268
Patent
Fine grained role-based access to system resources
David Yu Chang,Ching-Yun Chao,Hyen Vui Chung,Carlton Keith Mason,Vishwanath Venkataramappa,Leigh Williamson +5 more
- 30 May 2002
TL;DR: Role-based permissions for hierarchically organized system resources such as domains, clusters, application servers, and resources, as well as topic structures for messaging services are discussed in this article, where groups of permissions are assigned to roles, and each user is assigned a role and a level of access within the hierarchy of system resources or topics.
265