Condition based authorization model for data access

US 20080127354A1
Filed: 11/28/2006
Published: 05/29/2008
Est. Priority Date: 11/28/2006
Status: Abandoned Application

First Claim

Patent Images

1. A method for controlling access to a securable software object in a computer operating system, the method comprising:

receiving a security policy from an owner who is authorized to control access settings for the securable software object, the security policy being at least partially based on an access condition, wherein the access condition is based on dynamic user state information or dynamic system state information having a value that is updatable while a user is logged on to the computer operating system;

receiving a request from a user to perform an action on the securable software object, the request being received at an application programming interface of the computer operating system; and

determining whether the user is authorized to perform the action on the securable software object based at least in part on an evaluation of whether the access condition is satisfied, the evaluation being made by reference to a dynamically updatable operating system resource containing a current value of the dynamic system state information or dynamic user state information.

View all claims

2 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A condition-based authorization model for data access is provided. According to the model, the owner of a securable software object, such as a file, folder, or process, may specify a security policy that includes an access condition for accessing the object. The access condition may be based on dynamic user or system state information having a value that is updatable while a user is logged on, such as system time or user location. When a later request is received from a user to perform an action on the object via an application programming interface of a computer operating system, a security subsystem of the computer operating system queries a system resource containing information suitable to evaluate the access condition, and determines whether the access condition is met. If the access condition is met, access by the user to the securable software object is permitted. Otherwise, access is denied.

Citations

20 Claims

1. A method for controlling access to a securable software object in a computer operating system, the method comprising:
- receiving a security policy from an owner who is authorized to control access settings for the securable software object, the security policy being at least partially based on an access condition, wherein the access condition is based on dynamic user state information or dynamic system state information having a value that is updatable while a user is logged on to the computer operating system;
  
  receiving a request from a user to perform an action on the securable software object, the request being received at an application programming interface of the computer operating system; and
  
  determining whether the user is authorized to perform the action on the securable software object based at least in part on an evaluation of whether the access condition is satisfied, the evaluation being made by reference to a dynamically updatable operating system resource containing a current value of the dynamic system state information or dynamic user state information.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14)
- - 2. The method of claim 1, wherein determining whether the user is authorized to perform the action includes:
    - performing an access check on a function call from a thread carrying a user security context, the thread requesting an application programming interface of the operating system to perform an action on the securable object.
  - 3. The method of claim 2, further comprising, storing the security policy with the access condition in an object security data structure associated with the object and accessible to the security subsystem.
  - 4. The method of claim 3, wherein performing the access check further includes:
    - querying the object security data structure to identify the access condition for the securable object;
      
      querying a system resource for information to determine whether the access condition is met; and
      
      evaluating whether the access condition is met based on the information;
      
      and wherein the method further comprises;
      
      regulating access to the securable object based on the evaluation.
  - 5. The method of claim 1, wherein the access condition is a temporal condition.
  - 6. The method of claim 5, wherein the temporal condition is based on a parameter selected from year, month, date, day and time.
  - 7. The method of claim 1, wherein the access condition is a location based condition.
  - 8. The method of claim 7, wherein the location based condition is based on a logical location.
  - 9. The method of claim 8, wherein the logical location is a network address, subnet mask, network type, or active directory location.
  - 10. The method of claim 7, wherein the location based condition is based on a spatial location.
  - 11. The method of claim 1, wherein the system resource is selected from a system accessible clock, and a data structure containing network connection information, user manager information, user cached credential information, and/or user application or process information.
  - 12. The method of claim 1, further comprising:
    - displaying a user interface having a security policy selection tool;
      
      wherein receiving the security policy from the owner is accomplished at least in part by receiving an input of the security policy having the access condition from the owner via the security policy selection tool of the user interface.
  - 13. The method of claim 12, further comprising displaying a temporal condition selector on the security policy selection tool, the temporal condition selector being configured to receive input of the temporal condition from the owner.
  - 14. The method of claim 12, further comprising displaying a location parameter selector on the selection tool, configured to receive input of the location condition from the owner.

15. A system for controlling access to a securable software object in a computer operating system, the system comprising:
- an object security data structure configured to contain an access condition for the securable software object, wherein the access condition is based on dynamic user state information or dynamic system state information having a value that is updatable while a user is logged on to the computer operating system;
  
  a dynamically updatable system resource containing dynamic user state information or dynamic system state information for evaluating the access condition; and
  
  a security subsystem that is configured to determine whether the user is authorized to perform an action on the securable software object based at least in part on an evaluation of whether the access condition is satisfied, the evaluation being made by reference to the dynamic user state information or dynamic system state information for evaluating the access condition contained in the system resource.
- View Dependent Claims (16, 17, 18)
- - 16. The system of claim 15, wherein the access condition is one of a plurality of access conditions in an access control list of the object security data structure.
  - 17. The system of claim 15, wherein the system resource is one of a system accessible clock, and a data structure containing network connection information, user manager information, user cached credential information, and/or user application or process information.
  - 18. The system of claim 15, wherein the security subsystem is configured to make the determination of whether the user is authorized to perform the action on the object, without receiving information about the access condition from an application via an application programming interface.

19. A system for controlling access to a securable software object of a computer operating system, the system comprising:
- code executable to generate a graphical user interface, the graphical user interface including a security policy selection tool configured to receive input of an access condition from an owner of a securable software object, and the graphical user interface being configured to store the inputted access condition in an object security data structure for evaluation by a security subsystem of the computer operating system upon a requested action on the object by a user during a subsequent user logon session, wherein the access condition is based on dynamic user state information or dynamic system state information having a value that is updatable while the user is logged on to the computer operating system.
- View Dependent Claims (20)
- - 20. The system of claim 19, further comprising:
    - code executable to evaluate the access condition to regulate access to the object during the subsequent logon session of the user, by referencing a dynamically updatable system resource;
      
      wherein the dynamically updatable system resource contains dynamic user state information or dynamic system state information for evaluating whether the temporal condition or location-based condition is met.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Microsoft Technology Licensing LLC (Microsoft Corporation)
Original Assignee
Microsoft Corporation
Inventors
Carpenter, Matthew Chase, Tan, Xiaoxi

Application Number

US11/605,030
Publication Number

US 20080127354A1
Time in Patent Office

Days
Field of Search
US Class Current

726/28
CPC Class Codes

G06F 21/6209   to a single file or object,...

G06F 21/6218   to a system of files or obj...

G06F 21/6245   Protecting personal data, e...

G06F 2221/2111   Location-sensitive, e.g. ge...

Condition based authorization model for data access

First Claim

2 Assignments

0 Petitions

Accused Products

Abstract

Citations

20 Claims

Specification

Solutions

Use Cases

Quick Links

Condition based authorization model for data access

First Claim

2 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

Citations

20 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links