ACCESS CONTROL MANAGEMENT APPARATUS AND METHOD FOR OPEN SERVICE COMPONENTS

US 20150286815A1
Filed: 02/12/2015
Published: 10/08/2015
Est. Priority Date: 04/03/2014
Status: Abandoned Application

First Claim

Patent Images

1. An access control management apparatus, comprising:

a header extractor configured to extract a header from a request message for a service component which is received from an application;

an authentication manager configured to authenticate a permission of the application for the service component using an application ID, a service key for the service component and an authorization code which are included in the header; and

a history manager configured to store an execution result of the service component if the permission is authenticated.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

An access control management apparatus and method for open service components are provided. The access control management apparatus may include a header extractor configured to extract a header from a request message for a service component which is received from an application, an authentication manager configured to authenticate a permission of the application for the service component using an application ID, a service key for the service component and an authorization code which are included in the header, and a history manager configured to store an execution result of the service component if the permission is authenticated.

Citations

12 Claims

1. An access control management apparatus, comprising:
- a header extractor configured to extract a header from a request message for a service component which is received from an application;
  
  an authentication manager configured to authenticate a permission of the application for the service component using an application ID, a service key for the service component and an authorization code which are included in the header; and
  
  a history manager configured to store an execution result of the service component if the permission is authenticated.
- View Dependent Claims (2, 3, 4, 5, 6)
- - 2. The access control management apparatus of claim 1, wherein the service key is a unique key which is individually assigned to the application for the service component.
  - 3. The access control management apparatus of claim 1, wherein the authentication code is an encrypted code which is comprised of combination of the application ID, the service key and a time stamp.
  - 4. The access control management apparatus of claim 1, wherein the authentication manager examines validity of the request message based on the time stamp which is extracted from the header,generates an authentication code by combining the application ID, a service key for the service component which is requested from the application among service keys which are already stored, and the time stamp and encoding it,authenticates permission of the application for the service component by comparing the extracted authentication code from the header and the generated authentication code.
  - 5. The access control management apparatus of claim 1, wherein the history manager stores authentication failure information for the request message if the authentication for the permission is failed.
  - 6. The access control management apparatus of claim 1 further comprising an application registration manager configured to register the application by endowing the application ID to the application, and to assign the service key to the registered application.

7. A method for managing access to a service component performed by an access control management apparatus, comprising:
- extracting a header from a request message for the service component which is received from an application;
  
  authenticating a permission of the application for the service component using an application ID, a service key for the service component and an authorization code which are included in the header; and
  
  storing an execution result of the service component if the permission is authenticated.
- View Dependent Claims (8, 9, 10, 11, 12)
- - 8. The method for managing access of claim 7, wherein the service key is a unique key which is individually assigned to the application for the service component.
  - 9. The method for managing access of claim 7, wherein the authentication code is an encrypted code which is comprised of combination of the application ID, the service key and a time stamp.
  - 10. The method for managing access of claim 7, wherein authenticating the permission of the application comprises:
    - examining validity of the request message based on the time stamp which is extracted from the header;
      
      generating an authentication code by combining the application ID, a service key for the service component which is requested from the application among service keys which are already stored, and the time stamp and encoding it; and
      
      comparing the authentication code extracted from the header and the generated authentication code.
  - 11. The method for managing access of claim 7 further comprising storing authentication failure information for the request message if the authentication for the permission is failed, after authenticating the permission of the application.
  - 12. The method for managing access of claim 7 further comprising:
    - registering the application by endowing the application ID to the application; and
      
      assigning the service key to the registered application, before extracting the header.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Electronics and Telecommunications Research Institute
Original Assignee
Electronics and Telecommunications Research Institute
Inventors
CHUNG, Ki Sook, BAE, Hyun Joo

Application Number

US14/620,870
Publication Number

US 20150286815A1
Time in Patent Office

Days
Field of Search
US Class Current

1/1
CPC Class Codes

G06F 21/44   Program or device authentic...

G06F 21/45   Structures or tools for the...

H04L 2463/121   Timestamp

H04L 63/08   for authentication of entit...

H04L 9/3226   using a predetermined code,...

H04L 9/3297   involving time stamps, e.g....

ACCESS CONTROL MANAGEMENT APPARATUS AND METHOD FOR OPEN SERVICE COMPONENTS

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

Citations

12 Claims

Specification

Solutions

Use Cases

Quick Links

ACCESS CONTROL MANAGEMENT APPARATUS AND METHOD FOR OPEN SERVICE COMPONENTS

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

Citations

12 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links