METHOD FOR ESTABLISHING RESOURCE ACCESS AUTHORIZATION IN M2M COMMUNICATION
1 Assignment
0 Petitions
Accused Products
Abstract
A method for establishing a resource access authorization in M2M communication is provided. When an entity including a terminal, a gateway and an end user as client in a first M2M service provider domain attempts to access resource located in terminal or gateway in second M2M service provider domain, the method includes receiving client credential allocated from M2M Authentication Server (MAS1) in first M2M service provider domain by performing client registration to Network Service Capabilities Layer (NSCL1) in first M2M service provider domain by client, requesting an authorization to access resource to resource owner through NSCL (NSCL2) in second M2M service provider domain based on information about Universal Resource Identifier (URI) of resource by client, verifying client through MAS1 by the resource owner, authorizing client to access the resource by the resource owner, and issuing access token to the client by MAS (MAS2) in second M2M service provider domain.
35 Citations
57 Claims
-
1-34. -34. (canceled)
-
35. A method for establishing an authorization to access resource in Machine-to-Machine (M2M) communication, when an entity selected from a terminal, a gateway and an end user as a client in an M2M service provider domain attempts to access resource located in a terminal or a gateway in the same M2M service provider domain, the method comprising:
-
receiving by the client a client credential allocated from an authentication server for providing an authentication service in the M2M service provider domain by performing a client registration to a service layer of an M2M server for providing an M2M service which is required in the M2M service provider domain; requesting an authorization to access the resource to a resource owner of the resource through the service layer based on information about a Universal Resource Identifier (URI) of the resource by the client; verifying by the resource owner the client through the authentication server; granting the authorization for the client to access the resource by the resource owner; and issuing an access token to the client by the authentication server in the M2M service provider domain. - View Dependent Claims (36, 37, 38, 40, 42)
-
-
39. (canceled)
-
41. A method for accessing resource located in a terminal or a gateway in a Machine-to-Machine (M2M) service provider domain by an entity selected from a terminal, a gateway and an end user as a client in the same M2M service provider domain, the method comprising:
-
receiving a client credential allocated from an authentication server for providing an authentication service which is required in the M2M service provider domain by performing a client registration to a service layer of an M2M server for providing an M2M service in the M2M service provider domain; requesting an authorization to access the resource to a resource owner of the resource based on information about a Universal Resource Identifier (URI) of the resource; receiving an access token issued from the MAS in the M2M service provider domain; and accessing the resource based on the issued access token. - View Dependent Claims (43, 44)
-
-
45. A method for establishing an authorization of a client to access resource located in a terminal or a gateway in a Machine-to-Machine (M2M) service provider domain by a resource owner of the resource, the client being one of a terminal, a gateway, and an end user in the M2M service provider domain, the method comprising:
-
receiving an authorization request for the client; verifying the client through an authentication server for providing an authentication service which is required in the M2M service provider domain; and authorizing the client to an entity in which the resource is located and the authentication server. - View Dependent Claims (46, 47, 48, 49)
-
-
50. A method for authorizing access of a client to resource by a terminal or gateway having the resource in Machine-to-Machine (M2M) communication, the method comprising:
-
receiving an authorization request for the client from a resource owner of the resource; establishing an authorization of the client to access the resource; receiving an access token issued to the client from an authentication server for providing an authentication service; and determining whether to authorize the client to access the resource according to whether the access token received from the authentication server is identical to an access token provided by the client. - View Dependent Claims (51, 54, 55, 56, 57)
-
-
52. (canceled)
-
53. (canceled)
Specification