×

Access restriction facility method and apparatus

  • US 5,265,221 A
  • Filed: 12/02/1992
  • Issued: 11/23/1993
  • Est. Priority Date: 03/20/1989
  • Status: Expired due to Term
First Claim
Patent Images

1. An access restriction mechanism using a processor for controlling access to objects in a computer system, comprising:

  • subject means for storing user information in a matrix having a specific user on each row of the matrix, with user attributes pertaining to each of the specific users in each field of the matrix;

    verb means for storing at least one verb name with a default rule for each of the verb names;

    object means for storing at least one object name with object attributes and object rules expressed as object-boolean expressions for each of the verb names;

    definition means for storing field definitions, external function declarations and strings;

    rule means for storing at least one rule name with a rule-boolean expression for each of the rule names; and

    evaluation means coupled to said subject means, said object means, said definition means, said verb means and said rule means, responsive to the user information, at least one verb name, at least one object name, at least one rule name and at least one of the field definitions, external function declarations and strings for determining, changing, and controlling access authorization, wherein access is granted or denied according to a predetermined algorithm including a combination of at least any two of default rules, object rules, field definitions, external function declarations, strings, rule-boolean expressions, user attributes, and object attributes.

View all claims
  • 0 Assignments
Timeline View
Assignment View
    ×
    ×