System for Managing Access Control
First Claim
1. Method for managing access control in a content distribution system having access control according to a predefined data access format, the system comprisingat least one organization (32) for providing content data and related meta data,a rendering device (39) for rendering the content data and related meta data and executing the application, andat least one application for manipulating the content data and related meta data, which method comprises the steps ofsetting an access policy for the organization according to the predefined data access format, the access policy comprising access parameters for controlling access to resources of the rendering device and to said content data and related meta data,providing at least one organization application (35) complying with the access policy of the organization,providing content data and related meta data complying with the access policy of the respective organization,for enabling the rendering device to execute the organization application while accessing the resources of the rendering device according to the access policy of the organization,wherein method further comprises the steps ofmaintaining a user access policy that restricts, for the organization application, access to the resources of the rendering device relative to the access policy of the organization, andadjusting the user access policy for the organization based on additional trust data for selectively allowing the organization application to access the resources according to the access policy of the organization.
1 Assignment
0 Petitions
Accused Products
Abstract
A content distribution system (300) has access control according to a predefined data access format. The system has organizations (32) for providing content data and related meta data on record carriers (34), and a rendering device (39), and applications for manipulating the content data and related meta data. An access policy for the organization is set according to the predefined data access format, and has access parameters for controlling access to resources of the rendering device and to said content data and related meta data. An organization application (35) complying with the access policy of the organization for accessing said data is executed while accessing the resources of the rendering device according to the access policy of the organization. According to the invention a user access policy is maintained that restricts, for the organization application, access to the resources of the rendering device relative to the access policy of the organization. The user access policy is adjusted based on additional trust data for selectively allowing the organization application to access the resources according to the access policy of the organization. Hence the user controls the access that applications have to resources of the rendering device.
-
Citations
10 Claims
-
1. Method for managing access control in a content distribution system having access control according to a predefined data access format, the system comprising
at least one organization (32) for providing content data and related meta data, a rendering device (39) for rendering the content data and related meta data and executing the application, and at least one application for manipulating the content data and related meta data, which method comprises the steps of setting an access policy for the organization according to the predefined data access format, the access policy comprising access parameters for controlling access to resources of the rendering device and to said content data and related meta data, providing at least one organization application (35) complying with the access policy of the organization, providing content data and related meta data complying with the access policy of the respective organization, for enabling the rendering device to execute the organization application while accessing the resources of the rendering device according to the access policy of the organization, wherein method further comprises the steps of maintaining a user access policy that restricts, for the organization application, access to the resources of the rendering device relative to the access policy of the organization, and adjusting the user access policy for the organization based on additional trust data for selectively allowing the organization application to access the resources according to the access policy of the organization.
-
8. Device for rendering content data and related meta data for use in a content distribution system having access control according to a predefined data access format, the system further comprising
at least one organization (32) for providing content data and related meta data, at least one application for manipulating the content data and related meta data, and the system being arranged for setting an access policy for the organization according to the predefined data access format, the access policy comprising access parameters for controlling access to resources of the rendering device and to said content data and related meta data, providing at least one organization application complying with the access policy of the organization for accessing said data, providing content data and related meta data complying with the access policy of the respective organization, which device comprises rendering means (30) for generating a media signal for rendering the data and related meta data, access control means (31) for executing the organization application while accessing the resources of the rendering device according to the access policy of the organization, wherein the access control means (31) are arranged for maintaining a user access policy that restricts, for the organization application, access to the resources of the rendering device relative to the access policy of the organization, and adjusting the user access policy for the organization based on additional trust data for selectively allowing the organization application to access the resources according to the access policy of the organization.
-
10. Database entity for use in a content distribution system having access control according to a predefined data access format, the system further comprising
at least one organization (32) for providing content data and related meta data, a rendering device (39) for rendering the content data and related meta data, and at least one application for manipulating the content data and related meta data, and the system being arranged for setting an access policy for the organization according to the predefined data access format, the access policy comprising access parameters for controlling access to resources of the rendering device and to said content data and related meta data, providing at least one organization application complying with the access policy of the organization for accessing said data, providing said content data and related meta data according to the access policy of the respective organization, which database entity comprises database means (45) for storing data, wherein database means (45) are arranged for maintaining a set of trust data, and transferring the trust data from the set to the rendering device for the adjusting of the user access policy for the organization based on the trust data for selectively allowing the organization application to access the resources according to the access policy of the organization.
Specification