ROLE-BASED ACCESS CONTROL
First Claim
Patent Images
1. A method of using a role-based access control (RBAC) system for controlling access rights to protected resources in a record keeping system, the method comprising the acts of:
- associating a rights request with a role based policy to determine access rights;
modifying the determined access rights in accordance with an exception list related to particular users and records; and
authorizing access to a record based upon the modified determined access rights.
1 Assignment
0 Petitions
Accused Products
Abstract
A user interface and a processor coupled to the user interface wherein the processor receives access requests through the user interface and authorizes access through the user interface. The processor associates a rights request with a role based policy to determine access rights, modifies the determined access rights in accordance with an exception list related to particular users and records, and authorizes access to a record based upon the modified determined access rights.
50 Citations
20 Claims
-
1. A method of using a role-based access control (RBAC) system for controlling access rights to protected resources in a record keeping system, the method comprising the acts of:
-
associating a rights request with a role based policy to determine access rights; modifying the determined access rights in accordance with an exception list related to particular users and records; and authorizing access to a record based upon the modified determined access rights. - View Dependent Claims (2, 3, 4, 5, 6, 7)
-
-
8. A role-based access control (RBAC) system for controlling access to protected resources, the system comprising:
-
a user interface; and a processor operably coupled to the user interface, wherein the processor is configured to receive access requests through the user interface and is configured to authorize access through the user interface, wherein the processor is configured to associate a rights request with a role based policy to determine access rights, modify the determined access rights in accordance with an exception list related to particular users and records, and authorize access to a record based upon the modified determined access rights. - View Dependent Claims (9, 10, 11, 12)
-
-
13. An application embodied on a computer readable medium configured to provide a role-based access control system (RBAC), the application comprising:
-
a portion configured to associate a rights request with a role based policy to determine access rights; a portion configured to modify the determined access rights in accordance with an exception list related to particular users and records; and a portion configured to authorize access to a record based upon the modified determined access rights. - View Dependent Claims (14, 15, 16, 17, 18, 19, 20)
-
Specification