ONE TIME USE PASSWORD FOR TEMPORARY PRIVILEGE ESCALATION IN A ROLE-BASED ACCESS CONTROL (RBAC) SYSTEM
First Claim
1. A method of operating a computing system to facilitate temporary escalation of access privileges for a control program associated with a machine system in an industrial automation environment, the method comprising:
- receiving a request from a user for a temporary access level increase to utilize protected functions of the control program;
generating an encrypted string comprising a temporary password authorized to access the protected functions of the control program;
providing the encrypted string to the user, wherein the user provides the encrypted string to an administrator and the administrator authenticates the user for the temporary access level increase, decrypts the temporary password, and provides the temporary password to the user; and
receiving from the user a login request with the temporary password authorized to access the protected functions of the control program, and responsively granting the temporary access level increase to allow the user to utilize the protected functions of the control program.
1 Assignment
0 Petitions
Accused Products
Abstract
Techniques to facilitate temporary escalation of access privileges for a control program associated with a machine system in an industrial automation environment are disclosed. In at least one implementation, a request is received from a user for a temporary access level increase to utilize protected functions of the control program. An encrypted string is generated comprising a temporary password authorized to access the protected functions of the control program. The encrypted string is provided to the user, wherein the user provides the encrypted string to an administrator and the administrator authenticates the user for the temporary access level increase, decrypts the temporary password, and provides the temporary password to the user. A login request is received from the user with the temporary password, and the temporary access level increase is responsively granted to allow the user to utilize the protected functions of the control program.
84 Citations
10 Claims
-
1. A method of operating a computing system to facilitate temporary escalation of access privileges for a control program associated with a machine system in an industrial automation environment, the method comprising:
-
receiving a request from a user for a temporary access level increase to utilize protected functions of the control program; generating an encrypted string comprising a temporary password authorized to access the protected functions of the control program; providing the encrypted string to the user, wherein the user provides the encrypted string to an administrator and the administrator authenticates the user for the temporary access level increase, decrypts the temporary password, and provides the temporary password to the user; and receiving from the user a login request with the temporary password authorized to access the protected functions of the control program, and responsively granting the temporary access level increase to allow the user to utilize the protected functions of the control program. - View Dependent Claims (2, 3, 4)
-
-
5. One or more computer-readable storage media having program instructions stored thereon to facilitate temporary escalation of access privileges for a control program associated with a machine system in an industrial automation environment, wherein the program instructions, when executed by a computing system, direct the computing system to at least:
-
receive a request from a user for a temporary access level increase to utilize protected functions of the control program; generate an encrypted string comprising a temporary password authorized to access the protected functions of the control program; provide the encrypted string to the user, wherein the user provides the encrypted string to an administrator and the administrator authenticates the user for the temporary access level increase, decrypts the temporary password, and provides the temporary password to the user; and receive from the user a login request with the temporary password authorized to access the protected functions of the control program, and responsively grant the temporary access level increase to allow the user to utilize the protected functions of the control program. - View Dependent Claims (6, 7)
-
-
8. An apparatus to facilitate temporary escalation of access privileges for a control program associated with a machine system in an industrial automation environment, the apparatus comprising:
-
one or more computer-readable storage media; and program instructions stored on the one or more computer-readable storage media that, when executed by a processing system, direct the processing system to at least; receive a request from a user for a temporary access level increase to utilize protected functions of the control program; generate an encrypted string comprising a temporary password authorized to access the protected functions of the control program; provide the encrypted string to the user, wherein the user provides the encrypted string to an administrator and the administrator authenticates the user for the temporary access level increase, decrypts the temporary password, and provides the temporary password to the user; and receive from the user a login request with the temporary password authorized to access the protected functions of the control program, and responsively grant the temporary access level increase to allow the user to utilize the protected functions of the control program. - View Dependent Claims (9, 10)
-
Specification