ACCESS CONTROL MANAGEMENT
First Claim
Patent Images
1. An access control system, comprising:
- a claims processing component configured to expand two or more input claims associated with a device into a set of output claims; and
an authorization component configured to match the set of output claims to an authorization table for rows that contain a matching resource claim, a matching subject claim, and a matching action claim to indicate the device is authorized to access a system resource.
3 Assignments
0 Petitions
Accused Products
Abstract
The subject disclosure relates to authorization based on a determination of permissions that can be granted for an action(s) to be performed on a resource. The determination of the permission is based on a set of rules that represent a theory including a notion of trust that has been divided into different sized tables. The tables are utilized to evaluate two or more input claims and to facilitate a determination of whether access to at least one system resource is to be granted. The evaluation can include matching the two or more input claims to rows in the table, wherein access is allowed if a match is found.
-
Citations
20 Claims
-
1. An access control system, comprising:
-
a claims processing component configured to expand two or more input claims associated with a device into a set of output claims; and an authorization component configured to match the set of output claims to an authorization table for rows that contain a matching resource claim, a matching subject claim, and a matching action claim to indicate the device is authorized to access a system resource. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10)
-
-
11. A method, comprising:
-
receiving an authorization request; expanding a first input claim and a second input claim into a set of output claims; correlating a plurality of output claims in the set of output claims to an authorization table; and authorizing an action for the first input claim and the second input claim as a result of the correlating. - View Dependent Claims (12, 13, 14, 15, 16, 17)
-
-
18. A computer-readable storage medium comprising computer-executable instructions stored therein that, in response to execution, cause a computing system to perform operations, comprising:
-
expanding two or more input claims associated with a device into a set of output claims; and corresponding the set of output claims to an authorization table for rows that include a matching resource claim, subject claim, and action claim to indicate the device is authorized to access a system resource. - View Dependent Claims (19, 20)
-
Specification