DYNAMIC DEPLOYMENT OF ACCESS CONTROLS ANCHORED ON REQUEST ACTIONS

US 20200137065A1
Filed: 10/30/2018
Published: 04/30/2020
Est. Priority Date: 10/30/2018
Status: Active Grant

First Claim

Patent Images

1. An electronic device configured to implement dynamic deployment of access controls anchored on request actions in a multi-user, on-demand computing environment, comprising:

at least one physical memory device capable to store one or more multi-user on demand databases;

one or more processors coupled with the at least one physical memory device, the one or more processors configurable to;

receive, via a user interface, a request to access one or more resources managed by the electronic device in the multi-user, on demand computing environment, the request comprising one or more request elements;

determine whether a virtual access rule logic comprises one or more virtual access check rules which are anchored to the one or more request elements; and

in response to a determination that the virtual access rule logic comprises one or more virtual access check rules which are anchored to the one or more request elements, apply the one or more virtual access check rules to the request.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

Techniques and structures to provide dynamic deployment of access controls in a on-demand environment. A host electronic device may comprise one or more processors coupled with the at least one physical memory device, the one or more processors configurable to receive, via a user interface, request to access one or more resources managed by the electronic device in the multi-user, on demand computing environment, the request comprising one or more request elements, determine whether a virtual access rule logic comprises one or more virtual access check rules which are anchored to the one or more request elements, and in response to a determination that the virtual access rule logic comprises one or more virtual access check rules which are anchored to the one or more request elements, apply the one or more virtual access check rules to the request. Additional subject matter may be described and claimed.

0 Citations

18 Claims

1. An electronic device configured to implement dynamic deployment of access controls anchored on request actions in a multi-user, on-demand computing environment, comprising:
- at least one physical memory device capable to store one or more multi-user on demand databases;
  
  one or more processors coupled with the at least one physical memory device, the one or more processors configurable to;
  
  receive, via a user interface, a request to access one or more resources managed by the electronic device in the multi-user, on demand computing environment, the request comprising one or more request elements;
  
  determine whether a virtual access rule logic comprises one or more virtual access check rules which are anchored to the one or more request elements; and
  
  in response to a determination that the virtual access rule logic comprises one or more virtual access check rules which are anchored to the one or more request elements, apply the one or more virtual access check rules to the request.
- View Dependent Claims (2, 3, 4, 5, 6)
- - 2. The electronic device of claim 1, wherein the one or more processors are configurable to:
    - apply one or more anchorless rules to the request.
  - 3. The electronic device of claim 2, wherein the one or more processors are configurable to:
    - block the request when the one or more of the anchorless rules comprises a blocking rule for the request.
  - 4. The electronic device of claim 1 wherein the one or more processors are configurable to:
    - apply one or more anchored rules to the request.
  - 5. The electronic device of claim 4, wherein the anchored rule is anchored to at least one of a user permission or an entity operation associated with the request.
  - 6. The electronic device of claim 5, wherein the wherein the one or more processors are configurable to:
    - block the request when the one or more of the anchored rules comprises a blocking rule for the request.

7. A non-transitory computer-readable medium having stored thereon instructions that, when executed by one or more processors, are configurable to cause the one or more processors to:
- receive, via a user interface, a request to access one or more resources managed by the electronic device in the multi-user, on demand computing environment, the request comprising one or more request elements;
  
  determine whether a virtual access rule logic comprises one or more virtual access check rules which are anchored to the one or more request elements; and
  
  in response to a determination that the virtual access rule logic comprises one or more virtual access check rules which are anchored to the one or more request elements, apply the one or more virtual access check rules to the request.
- View Dependent Claims (8, 9, 10, 11, 12)
- - 8. The non-transitory computer-readable medium of claim 7, further comprising instructions that, when executed by the one or more processors, are configurable to cause the one or more processors to:
    - apply one or more anchorless rules to the request.
  - 9. The non-transitory computer-readable medium of claim 8, further comprising instructions that, when executed by the one or more processors, are configurable to cause the one or more processors to:
    - block the request when the one or more of the anchorless rules comprises a blocking rule for the request.
  - 10. The non-transitory computer-readable medium of claim 7, further comprising instructions that, when executed by the one or more processors, are configurable to cause the one or more processors to:
    - apply one or more anchored rules to the request.
  - 11. The non-transitory computer-readable medium of claim 10, wherein the anchored rule is anchored to at least one of a user permission or an entity operation associated with the request.
  - 12. The non-transitory computer-readable medium of claim 11, further comprising instructions that, when executed by the one or more processors, are configurable to cause the one or more processors to:
    - block the request when the one or more of the anchored rules comprises a blocking rule for the request.

13. A method to implement secure data transfer between entities in a multi-user, on-demand computing environment:
- receiving, via a user interface, a request to access one or more resources managed by the electronic device in the multi-user, on demand computing environment, the request comprising one or more request elements;
  
  determining whether a virtual access rule logic comprises one or more virtual access check rules which are anchored to the one or more request elements; and
  
  in response to a determination that the virtual access rule logic comprises one or more virtual access check rules which are anchored to the one or more request elements, applying the one or more virtual access check rules to the request.
- View Dependent Claims (14, 15, 16, 17, 18)
- - 14. The method of claim 13, further comprising:
    - applying one or more anchorless rules to the request.
  - 15. The method of claim 14, further comprisingblocking the request when the one or more of the anchorless rules comprises a blocking rule for the request.
  - 16. The method of claim 13, further comprisingapplying one or more anchored rules to the request.
  - 17. The method of claim 16, wherein the anchored rule is anchored to at least one of a user permission or an entity operation associated with the request.
  - 18. The method of claim 17, further comprisingblocking the request when the one or more of the anchored rules comprises a blocking rule for the request.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Salesforce.com, Inc.
Original Assignee
Salesforce.com, Inc.
Inventors
Tubbs, Sean, Sobrier, Julien, Wong, Matthew Mang Fu

Granted Patent

US 11,012,443 B2
Time in Patent Office

Days
Field of Search
US Class Current
CPC Class Codes

G06F 21/6227   where protection concerns t...

H04L 63/102   Entity profiles

H04L 63/20   for managing network securi...

DYNAMIC DEPLOYMENT OF ACCESS CONTROLS ANCHORED ON REQUEST ACTIONS

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

0 Citations

18 Claims

Specification

Solutions

Use Cases

Quick Links

DYNAMIC DEPLOYMENT OF ACCESS CONTROLS ANCHORED ON REQUEST ACTIONS

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

0 Citations

18 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links