Variable Expressions in Security Assertions
First Claim
1. A system implementing a security scheme comprising a security language that operates with assertions, wherein the security language implicitly assigns a type to variables of a given assertion based on syntactic positions of the variables within the given assertion, the type selected from a set of predefined security-related types.
2 Assignments
0 Petitions
Accused Products
Abstract
A security scheme enables control over variables that are expressed in security assertions. In an example implementation, a security type is implicitly assigned to variables based on their syntactic position within a given assertion. In another example implementation, a security scheme enforces strong variable typing such that each variable in an assertion binds to only a single security type. In yet another example implementation, a security scheme constrains the binding behavior of two variables with respect to each other.
102 Citations
20 Claims
- 1. A system implementing a security scheme comprising a security language that operates with assertions, wherein the security language implicitly assigns a type to variables of a given assertion based on syntactic positions of the variables within the given assertion, the type selected from a set of predefined security-related types.
- 9. A device implementing a security language that operates with assertions, wherein the device enforces strong-typing for variables by validating that each variable binds to only a single type, the single type selected from a set of predefined security-related types.
- 16. A system implementing a security scheme comprising a variable binding constraint mechanism that enables an author of an assertion to constrain binding behavior of two or more variables with respect to each other when the two or more variables are of a same type.
Specification