METHOD AND SYSTEM FOR PERFORMING DELEGATION OF RESOURCES
First Claim
1. Method for performing delegation of resources, in particular services, wherein a user—
- resource owner—
has access to a resource offered by a service provider and wherein the resource is delegated to at least one other user—
delegate—
by using delegation credentials,characterized in that the method comprises the steps ofperforming an authentication of the delegate at the service provider, andperforming an authorization of the delegate at an identity provider based on authorization rules.
1 Assignment
0 Petitions
Accused Products
Abstract
A method for performing delegation of resources, in particular services, wherein a user—resource owner—has access to a resource offered by a service provider and wherein the resource is delegated to at least one other user—delegate—by using delegation credentials, is characterized in that the method includes the steps of defining authorization rules for the delegate regarding resource access restrictions and registering the authorization rules at an identity provider thereby employing the delegation credentials, performing an authentication of the delegate at the service provider, and performing an authorization of the delegate at the identity provider based on the authorization rules. Furthermore, a corresponding system is disclosed.
-
Citations
21 Claims
-
1. Method for performing delegation of resources, in particular services, wherein a user—
- resource owner—
has access to a resource offered by a service provider and wherein the resource is delegated to at least one other user—
delegate—
by using delegation credentials,characterized in that the method comprises the steps of performing an authentication of the delegate at the service provider, and performing an authorization of the delegate at an identity provider based on authorization rules. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16, 17)
- resource owner—
-
18. System for performing delegation of resources, in particular services, the system comprising a service provider for offering a resource, wherein a user—
- resource owner—
has access to the resource, and wherein the resource is delegated to at least one other user—
delegate—
by using delegation credentials,characterized in that said service provider is configured to perform an authentication of the delegate, and that an identity provider is provided, which is configured to perform an authorization of the delegate based on authorization rules. - View Dependent Claims (19, 20, 21)
- resource owner—
Specification