INTEGRATED PHYSICAL ACCESS CONTROL AND INFORMATION TECHNOLOGY (IT) SECURITY

US 20140020056A1
Filed: 07/13/2012
Published: 01/16/2014
Est. Priority Date: 07/13/2012
Status: Active Grant

First Claim

Patent Images

1. A method for integrating physical access control and information technology (IT) security, the method comprising the computer-implemented steps of:

receiving a first instance of user credentials at an access control point of a secured area;

verifying the user credentials to enable access to a user IT account;

providing access to the user IT account; and

receiving a second instance of the user credentials at the access control point to disable access to the user IT account.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

Embodiments described herein provide security for a user integrated technology (IT) account by integrating a facility'"'"'s physical access controls with its IT security system to provide authorization and access. When a user is granted facility access, his/her accounts are automatically enabled or provisioned via an IT security system. When the user exits the facility, his/her accounts are automatically disabled or de-provisioned via the IT security system. The IT security system maintains the user IT account in a secured state until the user credentials are verified at an access control point to enable access to the user IT account, and returns the user IT account to the secured state after receiving the user credentials at the access control point to disable access to the user IT account. As such, the user IT account is secured when not needed by the user to reduce periods of vulnerability.

8 Citations

20 Claims

1. A method for integrating physical access control and information technology (IT) security, the method comprising the computer-implemented steps of:
- receiving a first instance of user credentials at an access control point of a secured area;
  
  verifying the user credentials to enable access to a user IT account;
  
  providing access to the user IT account; and
  
  receiving a second instance of the user credentials at the access control point to disable access to the user IT account.
- View Dependent Claims (2, 3, 4, 5, 6)
- - 2. The method according to claim 1, further comprising the computer-implemented steps of:
    - maintaining the user IT account in a secured state until the user credentials are verified to enable access to the user IT account; and
      
      returning the user IT account to the secured state after receiving the second instance of the user credentials at the access control point.
  - 3. The method according to claim 1, further comprising the computer-implemented step of verifying an identity of a user to provide access to the user IT account.
  - 4. The method according to claim 1, the receiving the first instance of user credentials comprising the computer-implemented step of receiving the user credentials from an authentication device at the access control point, wherein the access control point comprises a physical access control system.
  - 5. The method according to claim 4, the receiving the second instance of the user credentials comprising the computer-implemented step of subsequently receiving the user credentials from the authentication device at the physical access control system.
  - 6. The method according to claim 1, wherein receiving the first instance of user credentials further comprises the computer-implemented receiving the user credentials from a user located remote to the secured area.

7. A system for integrated physical access control and information technology (IT) security, the system comprising:
- a memory medium comprising instructions;
  
  a bus coupled to the memory medium; and
  
  a processor coupled to an IT security system via the bus that when executing the instructions causes the system to;
  
  receive user credentials at an access control point of a facility;
  
  verify the user credentials to enable access to a user IT account;
  
  provide access to the user IT account; and
  
  subsequently receive the user credentials at the access control point to disable access to the user IT account.
- View Dependent Claims (8, 9, 10, 11)
- - 8. The system according to claim 7, further comprising instructions causing the system to:
    - maintain the user IT account in a secured state until the user credentials are verified to enable access to the user IT account; and
      
      return the user IT account to the secured state after receiving the user credentials at the access control point.
  - 9. The system according to claim 7, further comprising instructions causing the system to verify an identity of a user to provide access to the user IT account.
  - 10. The system according to claim 7, wherein the instructions causing the system to receive the user credentials at the access control point further comprise instructions causing the system to receive the user credentials from an authentication device at the access control point, the access control point comprising a physical access control system, and wherein the instructions causing the system to subsequently receive the user credentials at the access control point further comprise instructions causing the system to receive the user credentials from the authentication device at the physical access control system.
  - 11. The system according to claim 7, the instructions causing the system to receive the user credentials at the access control point comprising instructions causing the system to receive the user credentials from a user located remote to the facility.

12. A computer-readable storage medium storing computer instructions, which when executed, enables a computer system to provide integrated physical access control and information technology (IT) security, the computer instructions comprising:
- receiving user credentials at an access control point of a secured area;
  
  verifying the user credentials to enable access to a user IT account;
  
  providing access to the user IT account; and
  
  subsequently receiving the user credentials at the access control point to disable access to the user IT account.
- View Dependent Claims (13, 14, 15, 16)
- - 13. The computer-readable storage medium according to claim 12 further comprising computer instructions for:
    - maintaining the user IT account in a secured state until the user credentials are verified to enable access to the user IT account; and
      
      returning the user IT account to the secured state after subsequently receiving the user credentials at the access control point.
  - 14. The computer-readable storage medium according to claim 12 further comprising computer instructions for verifying an identity of a user to provide access to the user IT account.
  - 15. The computer-readable storage medium according to claim 12, wherein the computer instructions for receiving the user credentials comprises receiving the user credentials from an authentication device at the access control point, the access control point comprising a physical access control system, and wherein the computer instructions for subsequently receiving the user credentials comprises receiving the user credentials from the authentication device at the physical access control system.
  - 16. The computer-readable storage medium according to claim 12, the computer instructions for receiving the user credentials comprising receiving the user credentials from a user located remote to the facility.

17. A method for providing integrated physical access control and information technology (IT) security, the method comprising:
- receiving, by a computer system, user credentials of a user at an access control point of a facility;
  
  verifying, by the computer system, the user credentials to enable access to a user IT account;
  
  providing, by the computer system, access to the user IT account; and
  
  subsequently receiving, by the computer system, the user credentials at the access control point to disable access to the user IT account.
- View Dependent Claims (18, 19, 20)
- - 18. The method according to claim 17, further comprising:
    - maintaining, by the computer system, the user IT account in a secured state until the user credentials are verified to enable access to the user IT account; and
      
      returning, by the computer system, the user IT account to the secured state after subsequently receiving the user credentials at the access control point.
  - 19. The method according to claim 17, wherein the receiving user credentials comprises receiving, by the computer system, the user credentials from an authentication device at the access control point, the access control point comprising a physical access control system, and wherein the subsequently receiving the user credentials comprises receiving, by the computer system, the user credentials from the authentication device at the physical access control system.
  - 20. The method according to claim 17, the receiving comprising receiving, by the computer system, the user credentials from a user located remote to the secured area.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
International Business Machines Corporation
Original Assignee
International Business Machines Corporation
Inventors
Hoesl, Mark J.

Granted Patent

US 8,756,655 B2
Time in Patent Office

Days
Field of Search
US Class Current

726/2
CPC Class Codes

G06F 21/62 Protecting access to data v...

G07C 9/00571 operated by interacting wit...

INTEGRATED PHYSICAL ACCESS CONTROL AND INFORMATION TECHNOLOGY (IT) SECURITY

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

8 Citations

20 Claims

Specification

Solutions

Use Cases

Quick Links

INTEGRATED PHYSICAL ACCESS CONTROL AND INFORMATION TECHNOLOGY (IT) SECURITY

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

8 Citations

20 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links