×

Access authorization having embedded policies

  • US 8,453,200 B2
  • Filed: 10/13/2011
  • Issued: 05/28/2013
  • Est. Priority Date: 10/01/2004
  • Status: Active Grant
First Claim
Patent Images

1. A computer implemented method for auditing a denial of a request to access a resource, the method comprising:

  • receiving the request to access the resource from an identified principal computer application, wherein receiving the request comprises receiving an authorization query;

    identifying a policy applicable to the identified principal computer application, the policy referencing at least one rule or privilege that authorizes access to the resource;

    performing an access control check based on the identified principal computer application and the identified policy; and

    upon determining that access is denied for the identified principal computer application according to the access check;

    triggering a first event based upon determining that the access is denied for the identified principal computer application according to the access check;

    auditing the denial of the request by making an entry in an audit log; and

    triggering a second event based upon the auditing of the denial of the request.

View all claims
  • 1 Assignment
Timeline View
Assignment View
    ×
    ×