×

TRUSTED INTERMEDIARY FOR NETWORK LAYER CLAIMS-ENABLED ACCESS CONTROL

  • US 20110321152A1
  • Filed: 06/24/2010
  • Published: 12/29/2011
  • Est. Priority Date: 06/24/2010
  • Status: Active Grant
First Claim
Patent Images

1. An apparatus for use in a system comprising a computer in communication via at least one network with a network resource, the at least one network employing a network layer security protocol, the apparatus comprising at least one processor programmed to:

  • (A) receive from the computer one or more requester claims describing attributes of one or more of the computer, a user of the computer, and a context in which access by the computer to the network resource is requested, the one or more requester claims being included in a communication formatted to comply with the network layer security protocol;

    (B) request, on behalf of the network resource, one or more resource claims, the one or more resource claims describing attributes of one or more of the network resource, an organization to which the network resource is affiliated, an owner of the network resource, a stage of deployment of the network resource, and a sensitivity of the network resource;

    (C) receive the one or more resource claims, the one or more resource claims being included in a communication formatted to comply with the network layer security protocol; and

    (D) request an access control policy decision whether to grant or deny access by the computer to the network resource, the request providing information included in the one or more requester claims and the one or more resource claims, the request being included in a communication formatted to comply with the network layer security protocol, the access control policy decision being based at least in part on the information.

View all claims
  • 2 Assignments
Timeline View
Assignment View
    ×
    ×