Method and apparatus for providing reactive authorization

US 9,009,810 B2
Filed: 05/28/2010
Issued: 04/14/2015
Est. Priority Date: 05/28/2010
Status: Expired due to Fees

First Claim

Patent Images

1. A method comprising:

detecting, via a processor, an authorization proxy entity acting between at least a semantic network resource and a requesting entity that requests access to the semantic network resource, wherein the authorization proxy entity has an access policy that determines a right to access the authorization proxy entity; and

determining, via the processor, to cause, at least in part, actions that result in transmission of a query for whether to accept the requesting entity to an owner entity of the semantic network resource,wherein an access application of the requesting entity creates the authorization proxy entity after the request is issued, andwherein the authorization proxy entity is deleted by an access application of the owner entity of the semantic network resource after the request of the requesting entity is authorized or denied.

View all claims

2 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

An approach is provided for providing reactive authorization for accessing a semantic network resource. An access application of a resource owner entity detects an authorization proxy entity acting between at least a semantic network resource and a requesting entity that requests access to the semantic network resource. The access application determines to cause, at least in part, actions that result in transmission of a query for whether to accept the requesting entity to an owner entity of the semantic network resource.

Citations

20 Claims

1. A method comprising:
- detecting, via a processor, an authorization proxy entity acting between at least a semantic network resource and a requesting entity that requests access to the semantic network resource, wherein the authorization proxy entity has an access policy that determines a right to access the authorization proxy entity; and
  
  determining, via the processor, to cause, at least in part, actions that result in transmission of a query for whether to accept the requesting entity to an owner entity of the semantic network resource,wherein an access application of the requesting entity creates the authorization proxy entity after the request is issued, andwherein the authorization proxy entity is deleted by an access application of the owner entity of the semantic network resource after the request of the requesting entity is authorized or denied.
- View Dependent Claims (2, 3, 4, 5, 6, 7)
- - 2. The method of claim 1, further comprising:
    - determining to cause actions that result in establishing a link between at least the requesting entity and the semantic network resource, when the owner entity accepts the requesting entity, ordetermining to cause actions that result in dropping a link between the authorization proxy entity and the semantic network resource, when the owner entity denies the requesting entity.
  - 3. The method of claim 1, further comprising:
    - dropping a link between the authorization proxy entity and the semantic network resource after a predetermined time has passed since the transmission of the query.
  - 4. The method of claim 1, further comprising:
    - retrieving semantic information of the requesting entity; and
      
      determining to cause actions that result in presentation of the semantic information to the owner entity.
  - 5. The method of claim 2, wherein the authorization proxy entity is created according to a reactive access policy set by the owner entity for accessing the semantic network resource, and the determinations are made at least in part based upon the reactive access policy.
  - 6. The method of claim 1, wherein each of the query and the semantic network resource are represented by a semantic graph.
  - 7. The method of claim 1, wherein the access to the semantic network resource includes creating an account, registering an account, posting a new message to a blog, posting a new message to a discussion forum, subscribing to a query, or a combination thereof.

8. A method comprising:
- causing, at least in part, via a processor, transmission of a request for accessing a semantic network resource;
  
  causing, at least in part, via the processor, generation of an authorization proxy entity by an access application of the requesting entity after the request is issued, wherein the authorization proxy entity has an access policy that determines a right to access the authorization proxy entity; and
  
  causing, at least in part, via the processor, reception of a notification regarding authorization by an owner entity of the semantic network resource,wherein the authorization proxy entity is deleted by an access application of the owner entity of the semantic network resource after the request of the requesting entity is authorized or denied.
- View Dependent Claims (9, 10)
- - 9. The method of claim 8, further comprising:
    - establishing one or more links between the requesting entity and the semantic network resource through the authorization proxy entity.
  - 10. The method of claim 9, further comprising:
    - detecting a direct link to the semantic network resource and accessing the semantic network resource through the direct link, when the owner entity accepts the request;
      
      ordropping the one or more links between the requesting entity and the semantic network resource through the authorization proxy entity, when the owner entity denies the request.

11. An apparatus comprising:
- at least one processor; and
  
  at least one memory including computer program code for one or more programs,the at least one memory and the computer program code configured to, with the at least one processor, cause the apparatus to perform at least the following,detect an authorization proxy entity acting between at least a semantic network resource and a requesting entity that requests access to the semantic network resource, wherein the authorization proxy entity has an access policy that determines a right to access the authorization proxy entity; and
  
  determine to cause, at least in part, actions that result in transmission of a query for whether to accept the requesting entity to an owner entity of the semantic network resource,wherein an access application of the requesting entity creates the authorization proxy entity after the request is issued, andwherein the authorization proxy entity is deleted by an access application of the owner entity of the semantic network resource after the request of the requesting entity is authorized or denied.
- View Dependent Claims (12, 13, 14, 15, 16, 17)
- - 12. The apparatus of claim 11, wherein the apparatus is further caused to:
    - determine to cause actions that result in establishing a link between at least the requesting entity and the semantic network resource, when the owner entity accepts the requesting entity, ordetermine to cause actions that result in dropping a link between the authorization proxy entity and the semantic network resource, when the owner entity denies the requesting entity.
  - 13. The apparatus of claim 11, wherein the apparatus is further caused to:
    - drop a link between the authorization proxy entity and the semantic network resource after a predetermined time has passed since the transmission of the query.
  - 14. The apparatus of claim 11, wherein the apparatus is further caused to:
    - retrieve semantic information of the requesting entity; and
      
      determine to cause actions that result in presentation of the semantic information to the owner entity.
  - 15. The apparatus of claim 12, wherein the authorization proxy entity is created according to a reactive access policy set by the owner entity for accessing the semantic network resource, and the determinations are made at least in part based upon the reactive access policy.
  - 16. The apparatus of claim 11, wherein each of the query and the semantic network resource are represented by a semantic graph.
  - 17. The apparatus of claim 11, wherein the access to the semantic network resource include creating an account, registering an account, posting a new message to a blog, posting a new message to a discussion forum, subscribing to a query, or a combination thereof.

18. An apparatus comprising:
- at least one processor; and
  
  at least one memory including computer program code for one or more programs,the at least one memory and the computer program code configured to, with the at least one processor, cause the apparatus to perform at least the following,cause, at least in part, transmission of a request for accessing a semantic network resource;
  
  cause, at least in part, generation of an authorization proxy entity by an access application of the requesting entity after the request is issued, wherein the authorization proxy entity has an access policy that determines a right to access the authorization proxy entity; and
  
  cause, at least in part, reception of a notification regarding authorization by an owner entity of the semantic network resource,wherein the authorization proxy entity is deleted by an access application of the owner entity of the semantic network resource after the request of the requesting entity is authorized or denied.
- View Dependent Claims (19, 20)
- - 19. The apparatus of claim 18, wherein the apparatus is further caused to:
    - establish one or more links between the requesting entity and the semantic network resource through the authorization proxy entity.
  - 20. The apparatus of claim 19, wherein the apparatus is further caused to:
    - detect a direct link to the semantic network resource and accessing the semantic network resource through the direct link, when the owner entity accepts the request;
      
      ordrop the one or more links between the requesting entity and the semantic network resource through the authorization proxy entity, when the owner entity denies the request.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Nokia Technologies Oy (Nokia Corporation)
Original Assignee
Nokia Corporation
Inventors
Grigoriev, Nikolai, Fortin, Sylvain, Thorkelsson, Halli
Primary Examiner(s)
SHAW, PETER C

Application Number

US12/790,358
Publication Number

US 20110296517A1
Time in Patent Office

1,782 Days
Field of Search

726/12
US Class Current

726/12
CPC Class Codes

G06F 16/36   Creation of semantic tools,...

H04L 63/102   Entity profiles

H04L 63/104   Grouping of entities

Method and apparatus for providing reactive authorization

First Claim

2 Assignments

0 Petitions

Accused Products

Abstract

Citations

20 Claims

Specification

Solutions

Use Cases

Quick Links

Method and apparatus for providing reactive authorization

First Claim

2 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

Citations

20 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links