User access control to distributed resources on a data communications network
First Claim
Patent Images
1. A method for controlling user access to distributed resources on a data communications network, the method comprising:
- receiving a resource request, said request including a rights key credential, said rights key credential comprising;
at least one key to provide access to a resource on said data communications network; and
a resource identifier, said resource identifier comprising a resource server peer group ID and a randomized ID, said resource server peer group ID identifying a resource server peer group, said resource server peer group comprising at least one server that maintains a mapping between a randomized ID and said at least one key; and
providing access to said resource using said at least one key.
1 Assignment
0 Petitions
Accused Products
Abstract
A method for controlling user access to distributed resources on a data communications network includes receiving a resource request. The request includes a rights key credential that includes at least one key to provide access to a resource on the data communications network. The rights key credential also includes a resource identifier that includes a resource server peer group ID and a randomized ID. The resource server peer group ID identifies a resource server peer group. The resource server peer group includes at least one server that maintains a mapping between a randomized ID and the at least one key. The method also includes providing access to the resource using the at least one key.
-
Citations
6 Claims
-
1. A method for controlling user access to distributed resources on a data communications network, the method comprising:
-
receiving a resource request, said request including a rights key credential, said rights key credential comprising;
at least one key to provide access to a resource on said data communications network; and
a resource identifier, said resource identifier comprising a resource server peer group ID and a randomized ID, said resource server peer group ID identifying a resource server peer group, said resource server peer group comprising at least one server that maintains a mapping between a randomized ID and said at least one key; and
providing access to said resource using said at least one key.
-
-
2. A method for controlling user access to distributed resources on a data communications network, the method comprising:
-
receiving a resource request, said request including a rights key credential, said rights key credential comprising;
at least one key, each of said at least one key providing access to at least one resource on said data communications network, each of said at least one resource stored on a separate secure device; and
a resource identifier, said resource identifier comprising a resource server peer group ID and a randomized ID, said resource server peer group ID identifying a resource server peer group, said resource server peer group comprising at least one server that maintains a mapping between a randomized ID and said at least one key; and
providing access to said resource using said at least one key.
-
-
3. A program storage device readable by a machine, embodying a program of instructions executable by the machine to perform a method for controlling user access to distributed resources on a data communications network, the method comprising:
-
receiving a resource request, said request including a rights key credential, said rights key credential comprising;
at least one key to provide access to a resource on said data communications network; and
a resource identifier, said resource identifier comprising a resource server peer group ID and a randomized ID, said resource server peer group ID identifying a resource server peer group, said resource server peer group comprising at least one server that maintains a mapping between a randomized ID and said at least one key; and
providing access to said resource using said at least one key.
-
-
4. A program storage device readable by a machine, embodying a program of instructions executable by the machine to perform a method for controlling user access to distributed resources on a data communications network, the method comprising:
-
receiving a resource request, said request including a rights key credential, said rights key credential comprising;
at least one key, each of said at least one key providing access to at least one resource on said data communications network, each of said at least one resource stored on a separate secure device; and
a resource identifier, said resource identifier comprising a resource server peer group ID and a randomized ID, said resource server peer group ID identifying a resource server peer group, said resource server peer group comprising at least one server that maintains a mapping between a randomized ID and said at least one key; and
providing access to said resource using said at least one key.
-
-
5. An apparatus for controlling user access to distributed resources on a data communications network, the apparatus comprising:
-
means for receiving a resource request, said request including a rights key credential, said rights key credential comprising;
at least one key to provide access to a resource on said data communications network; and
a resource identifier, said resource identifier comprising a resource server peer group ID and a randomized ID, said resource server peer group ID identifying a resource server peer group, said resource server peer group comprising at least one server that maintains a mapping between a randomized ID and said at least one key; and
means for providing access to said resource using said at least one key.
-
-
6. An apparatus for controlling user access to distributed resources on a data communications network, the apparatus comprising:
-
means for receiving a resource request, said request including a rights key credential, said rights key credential comprising;
at least one key, each of said at least one key providing access to at least one resource on said data communications network, each of said at least one resource stored on a separate secure device; and
a resource identifier, said resource identifier comprising a resource server peer group ID and a randomized ID, said resource server peer group ID identifying a resource server peer group, said resource server peer group comprising at least one server that maintains a mapping between a randomized ID and said at least one key; and
means for providing access to said resource using said at least one key.
-
Specification
-
- Resources
Litigation Campaign Assessment
Thank you for your request. You will receive a custom alert email when the Litigation Campaign Assessment is available.
×
-
Current AssigneeSun Microsystems Incorporated (Oracle Corporation)
-
Original AssigneeSun Microsystems Incorporated (Oracle Corporation)
-
InventorsLevy, Moshe, de Jong, Eduard K., Leung, Albert Y.
-
Application NumberUS10/014,893Publication NumberTime in Patent OfficeDaysField of SearchUS Class Current709/229CPC Class CodesG06F 21/33 using certificatesG06F 21/34 involving the use of extern...H04L 63/04 for providing a confidentia...H04L 63/0414 during transmission, i.e. p...H04L 63/08 for authentication of entit...H04L 63/0823 using certificates cryptogr...H04L 63/0853 using an additional device,...H04L 63/102 Entity profilesH04L 67/34 involving the movement of s...H04L 9/40 Network security protocols
