Controlling access to services via usage models

US 10,291,715 B1
Filed: 12/30/2013
Issued: 05/14/2019
Est. Priority Date: 01/27/2004
Status: Active Grant

First Claim

Patent Images

1. A non-transitory computer-readable medium including stored executable instructions that, upon execution by a processor, cause a computing device to at least:

authorize, by the computing device, access of a Web service consumer to a Web service available from a Web service provider in response to a determination that one or more service use conditions specified in an access control group are satisfied for the access, wherein the one or more service use conditions include one or more restraints on an amount of use of the Web service, and wherein the determination includes determining that the access of the Web service consumer does not exceed the one or more restraints;

initiate, in response to the authorizing of the access of the Web service consumer, programmatic invocation of the Web service by a program executing on the computing device and over one or more computer networks from one or more computing systems of the Web service provider on behalf of the Web service consumer; and

trigger, in conjunction with one or more usage models associated with the Web service, an action on behalf of the Web service consumer for the access of the Web service consumer to the Web service.

View all claims

0 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

Techniques are described for facilitating interactions between computing systems, such as in accordance with usage models that are configured for available services by the providers of the services. In some situations, the services are Web services, and an electronic Web service (“WS”) marketplace is provided via which third-party WS providers make their WSes available to third-party WS consumers who purchase access to those WSes via the electronic marketplace based on configured usage models selected by the consumers. Some or all of the one or more usage models configured for an available WS may each have associated use prices and/or non-price use conditions, and if so access to those WSes using those usage models may be provided only if a consumer requesting access provides appropriate payment and otherwise satisfies the specified use conditions for a selected usage model.

49 Citations

24 Claims

1. A non-transitory computer-readable medium including stored executable instructions that, upon execution by a processor, cause a computing device to at least:
- authorize, by the computing device, access of a Web service consumer to a Web service available from a Web service provider in response to a determination that one or more service use conditions specified in an access control group are satisfied for the access, wherein the one or more service use conditions include one or more restraints on an amount of use of the Web service, and wherein the determination includes determining that the access of the Web service consumer does not exceed the one or more restraints;
  
  initiate, in response to the authorizing of the access of the Web service consumer, programmatic invocation of the Web service by a program executing on the computing device and over one or more computer networks from one or more computing systems of the Web service provider on behalf of the Web service consumer; and
  
  trigger, in conjunction with one or more usage models associated with the Web service, an action on behalf of the Web service consumer for the access of the Web service consumer to the Web service.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10)
- - 2. The non-transitory computer-readable medium of claim 1 wherein the access control group is at least part of one of the one or more usage models associated with the Web service.
  - 3. The non-transitory computer-readable medium of claim 1 wherein the determination that the one or more service use conditions are satisfied includes retrieving and using information regarding the Web service consumer.
  - 4. The non-transitory computer-readable medium of claim 1 wherein the stored executable instructions further cause the computing device to authorize the access to the Web service in response to a request obtained from the Web service consumer, and wherein the determination that the one or more service use conditions are satisfied is based at least in part on information included in the obtained request.
  - 5. The non-transitory computer-readable medium of claim 4 wherein the obtained request is from a program executing on a client device of the Web service consumer to invoke the Web service for the program on behalf of the Web service consumer.
  - 6. The non-transitory computer-readable medium of claim 1 wherein the stored executable instructions further cause the computing device to determine to not authorize access of a second Web service consumer to the Web service based at least in part on the one or more service use conditions not being satisfied by a request from the second Web service consumer.
  - 7. The non-transitory computer-readable medium of claim 1 wherein the one or more service use conditions further include at least one additional restraint of a group including a geographical restraint on locations of consumers who use the Web service, a restraint on one or more times of use of the Web service, a restraint on types of devices that consumers may use when accessing the Web service, a restraint on a number of devices that a consumer may use when accessing the Web service, a restraint on types of consumers who may use the Web service, a restraint on network locations of consumers who use the Web service, a restraint on a number of distinct users that may access the Web service on behalf of a consumer, and a restraint on a type of use of the Web service, and wherein the determination further includes determining that the access of the Web service consumer does not exceed the at least one additional restraint.
  - 8. The non-transitory computer-readable medium of claim 1 wherein the one or more service use conditions further include additional restraints involving a restraint on one or more times of use of the Web service and a restraint on types of consumers who may use the Web service, and wherein the determination further includes determining that the access of the Web service consumer does not exceed the additional restraints.
  - 9. The non-transitory computer-readable medium of claim 1 wherein the access control group is at least part of a first usage model of multiple usage models associated with the Web service, and wherein the stored executable instructions further cause the computing device to authorize the access to the Web service in response to a request obtained from the Web service consumer that identifies the first usage model.
  - 10. The non-transitory computer-readable medium of claim 1 wherein the computing device is part of an online service operated by an entity that is unrelated to the Web service consumer and to the Web service provider other than by acting as an intermediary to control access of Web consumers to the Web service of the Web service provider.

11. A system comprising:
- a hardware processor of a computing device; and
  
  a memory storing instructions that, upon execution by the hardware processor, cause the computing device to;
  
  authorize access of a service consumer to an invocable service available over one or more computer networks from one or more computing systems of a service provider in response to a determination that one or more service use conditions specified in an access control group are satisfied for the access, wherein the one or more service use conditions include one or more restraints on how the invocable service is used, and wherein the determination includes determining that the access of the service consumer does not exceed the one or more restraints;
  
  programmatically invoke the invocable service over the one or more computer networks from the one or more computing systems of the service provider on behalf of the service consumer in response to the authorizing of the access of the service consumer; and
  
  trigger, in conjunction with one or more usage models associated with the invocable service, an action on behalf of the service consumer for the access of the service consumer to the invocable service.
- View Dependent Claims (12, 13, 14, 15)
- - 12. The system of claim 11 wherein the invocable service available from the service provider is a Web service, and wherein the access control group is at least part of a usage model defined by the service provider and, wherein the usage model is one of the one or more usage models associated with the invocable service.
  - 13. The system of claim 12 wherein the instructions further cause the computing device to authorize the access to the invocable service in response to a request obtained from the service consumer, and wherein the obtained request is from a program executing on a client device of the service consumer to invoke the invocable service for the program on behalf of the service consumer.
  - 14. The system of claim 11 wherein the one or more restraints on how the invocable service is used include at least one of a geographical restraint on locations of consumers who use the invocable service, a restraint on a volume of use of the invocable service, a restraint on one or more times of use of the invocable service, a restraint on types of devices that consumers may use when accessing the invocable service, a restraint on a number of devices that a consumer may use when accessing the invocable service, a restraint on types of consumers who may use the invocable service, a restraint on network locations of consumers who use the invocable service, a restraint on a number of distinct users that may access the invocable service on behalf of a consumer, or a restraint on a type of use of the invocable service.
  - 15. The system of claim 11 wherein the one or more restraints on how the invocable service is used include a restraint on a volume of use of the invocable service, a restraint on one or more times of use of the invocable service, and a restraint on types of consumers who may use the invocable service.

16. A computer-implemented method, comprising:
- authorizing, by one or more configured computing devices, access of a service consumer to an invocable Web service available over one or more computer networks from one or more computing systems of a service provider in response to a determination that one or more service use conditions specified in an access control group for the invocable Web service are satisfied for the access, wherein the one or more service use conditions include one or more restraints on a type of use of the invocable Web service, and wherein the determination includes determining that the access of the service consumer does not exceed the one or more restraints;
  
  invoking, by the one or more configured computing devices in response to the authorizing of the access of the service consumer, and over the one or more computer networks, the invocable Web service from the one or more computing systems of the service provider on behalf of the service consumer; and
  
  triggering, in conjunction with one or more usage models associated with the Web service, an action on behalf of the service consumer for the access of the service consumer to the invocable Web service.
- View Dependent Claims (17, 18, 19, 20)
- - 17. The computer-implemented method of claim 16 wherein the access control group is at least part of a usage model of the one or more usage models associated with the invocable Web service by the service provider, and wherein the invoking of the invocable Web service includes programmatically invoking, by a server-side program executing on the one or more computing devices, the invocable Web service over the one or more computer networks.
  - 18. The computer-implemented method of claim 17 wherein the authorizing of the access to the invocable Web service is performed in response to a request obtained from a program executing on a client device of the service consumer to invoke the invocable Web service for the program on behalf of the service consumer.
  - 19. The computer-implemented method of claim 18 wherein the access control group is at least part of a first usage model of multiple usage models associated with the invocable Web service, wherein the obtained request indicates the first usage model, and wherein the one or more configured computing device are part of an online service operated by an entity that is unrelated to the service consumer and to the service provider other than by acting as an intermediary to control access of consumers to the invocable Web service of the service provider.
  - 20. The computer-implemented method of claim 16 wherein the one or more restraints on the type of use of the invocable Web service include multiple of a geographical restraint on locations of consumers who use the invocable Web service, a restraint on a volume of use of the invocable Web service, a restraint on one or more times of use of the invocable Web service, a restraint on types of devices that consumers may use when accessing the invocable Web service, a restraint on a number of devices that a consumer may use when accessing the invocable Web service, a restraint on types of consumers who may use the invocable Web service, a restraint on network locations of consumers who use the invocable Web service, or a restraint on a number of distinct users that may access the invocable Web service on behalf of a consumer.

21. A system comprising:
- a hardware processor of a computing device; and
  
  a memory storing instructions that, upon execution by the hardware processor, cause the computing device to;
  
  authorize access of a Web service consumer to a Web service available from a Web service provider in response to a determination that one or more service use conditions specified in an access control group are satisfied for the access, wherein the one or more service use conditions include one or more restraints on an amount of use of the Web service, and wherein the determination includes determining that the access of the Web service consumer does not exceed the one or more restraints;
  
  initiate, in response to the authorizing of the access of the Web service consumer, programmatic invocation of the Web service by a program executing on the computing device and over one or more computer networks from one or more computing systems of the Web service provider on behalf of the Web service consumer; and
  
  trigger, in conjunction with one or more usage models associated with the Web service, an action on behalf of the Web service consumer for the access of the Web service consumer to the Web service.
- View Dependent Claims (22)
- - 22. The system of claim 21 wherein the access control group is at least part of one of the one or more usage models associated with the Web service.

23. A computer-implemented method comprising:
- authorizing access of a Web service consumer to a Web service available from a Web service provider in response to a determination that one or more service use conditions specified in an access control group are satisfied for the access, wherein the one or more service use conditions include one or more restraints on an amount of use of the Web service, and wherein the determination includes determining that the access of the Web service consumer does not exceed the one or more restraints;
  
  initiating, in response to the authorizing of the access of the Web service consumer, programmatic invocation of the Web service by a program executing on the computing device and over one or more computer networks from one or more computing systems of the Web service provider on behalf of the Web service consumer; and
  
  triggering, in conjunction with one or more usage models associated with the Web service, an action on behalf of the Web service consumer for the access of the Web service consumer to the Web service.
- View Dependent Claims (24)
- - 24. The method of claim 23 wherein the access control group is at least part of one of the one or more usage models associated with the Web service.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Amazon Technologies, Inc. (Amazon.com, Inc.)
Original Assignee
Amazon Technologies, Inc. (Amazon.com, Inc.)
Inventors
Sirota, Peter, Ghare, Gaurav D., Johnson, Don, Jain, Tushar, Frederick, Robert, Agrawal, Ashish, Barr, Jeffrey
Primary Examiner(s)
Fadok, Mark A

Application Number

US14/144,377
Time in Patent Office

1,961 Days
Field of Search

705 261, 705 271
US Class Current
CPC Class Codes

G06Q 30/06   Buying, selling or leasing ...

G06Q 30/0601   Electronic shopping [e-shop...

G06Q 30/0641   Shopping interfaces

H04L 67/14   Session management for real...

Controlling access to services via usage models

First Claim

0 Assignments

0 Petitions

Accused Products

Abstract

49 Citations

24 Claims

Specification

Solutions

Use Cases

Quick Links

Controlling access to services via usage models

First Claim

0 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

49 Citations

24 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links