Method and system for multi-tiered distributed security authentication and filtering
First Claim
1. A method of managing user access to one or more computing resources, comprising:
- centrally maintaining user subscription information comprising user authentication information and system authorization information based on user credentials, wherein the user subscription information is contained in a master list, wherein the system authorization information includes system type per user;
providing relevant subscription information from the user subscription information to multiple remote computing systems including propagating user credentials;
in a remote computing system;
querying the master list for subscription information for relevant users associated with computing resources of the remote computing system;
downloading one or more relevant portions of the master list, wherein the relevant portions downloaded comprise the subscription information for the relevant users associated with the computing resources of the remote computing system;
authenticating a user login to the remote computing system based on user authentication information from the relevant portions downloaded, wherein said user authentication information comprises multilevel authentication and multilevel password information for filtering access to multiple attached systems of the remote computing system and controlling access to the computing resources of the remote computing system based on user credentials of the relevant users associated with the computing resources of the remote computing system, wherein user provided credentials are checked against the multilevel authentication and multilevel password information for authenticating access to the remote computing system, wherein the multilevel authentication and multilevel password information facilitate filtering by user and filtering by limiting access to certain systems, and wherein the multilevel password information comprises personal passwords and system passwords; and
upon authentication of the user login, selectively authorizing user access to the computing resources of the remote computing system based on system authorization information from the relevant portions downloaded.
1 Assignment
0 Petitions
Accused Products
Abstract
Multi-tiered distributed security authentication and filtering. One embodiment comprises managing user access to one or more computing resources, by centrally maintaining user subscription information comprising user authentication information and system authorization information, and providing relevant subscription information from the user subscription information to one or more remote computing systems. Managing user access further includes, in a remote computing system, authenticating a user login to the remote computing system based on user authentication information from said relevant subscription information, and upon user authentication, selectively authorizing user access to computing resources of the remote computing system based on system authorization information from said relevant subscription information.
-
Citations
18 Claims
-
1. A method of managing user access to one or more computing resources, comprising:
-
centrally maintaining user subscription information comprising user authentication information and system authorization information based on user credentials, wherein the user subscription information is contained in a master list, wherein the system authorization information includes system type per user; providing relevant subscription information from the user subscription information to multiple remote computing systems including propagating user credentials; in a remote computing system; querying the master list for subscription information for relevant users associated with computing resources of the remote computing system; downloading one or more relevant portions of the master list, wherein the relevant portions downloaded comprise the subscription information for the relevant users associated with the computing resources of the remote computing system; authenticating a user login to the remote computing system based on user authentication information from the relevant portions downloaded, wherein said user authentication information comprises multilevel authentication and multilevel password information for filtering access to multiple attached systems of the remote computing system and controlling access to the computing resources of the remote computing system based on user credentials of the relevant users associated with the computing resources of the remote computing system, wherein user provided credentials are checked against the multilevel authentication and multilevel password information for authenticating access to the remote computing system, wherein the multilevel authentication and multilevel password information facilitate filtering by user and filtering by limiting access to certain systems, and wherein the multilevel password information comprises personal passwords and system passwords; and upon authentication of the user login, selectively authorizing user access to the computing resources of the remote computing system based on system authorization information from the relevant portions downloaded. - View Dependent Claims (2, 3, 4, 5)
-
-
6. A system for managing user access to one or more computing resources, comprising:
-
a subscription subsystem that centrally maintains user subscription information comprising user authentication information and system authorization information based on user credentials, wherein the user subscription information is contained in a master list, wherein the system authorization information includes system type per user, wherein the subscription subsystem provides relevant subscription information from the user subscription information to multiple remote computing systems including propagating user credentials, wherein said user authentication information comprises multilevel authentication and multilevel password information for filtering access to multiple attached systems of a remote computing system and controlling access to remote computing resources based on user credentials of individual users; and for a remote computing system, an authentication subsystem that; queries the master list for subscription information for relevant users associated with computing resources of the remote computing system; downloading one or more relevant portions of the master list, wherein the relevant portions downloaded comprise the subscription information for the relevant users associated with the computing resources of the remote computing system; authenticates a user login to a remote computing system based on user authentication information from the relevant portions downloaded, and upon authentication of the user login, selectively authorizes user access to the computing resources of the remote computing system based on system authorization information from the relevant portions downloaded, wherein user provided credentials are checked against the multilevel authentication and multilevel password information for authenticating access to the remote computing system, wherein the multilevel authentication and multilevel password information facilitate filtering by user and filtering by limiting access to certain systems, and wherein the multilevel password information comprises personal passwords and system passwords. - View Dependent Claims (7, 8, 9, 10, 11)
-
-
12. A computer program product for managing user access to one or more computing resources, the computer program product comprising:
-
a non-transitory computer readable storage medium having computer readable program code embodied therewith, the computer readable program code comprising; computer readable program code configured to centrally maintain user subscription information comprising user authentication information and system authorization information based on user credentials, wherein the user subscription information is contained in a master list, wherein the system authorization information includes system type per user; computer readable program code configured to provide relevant subscription information from the user subscription information to multiple remote computing systems including propagating user credentials; computer readable program code configured to, in a remote computing system; query the master list for subscription information for relevant users associated with computing resources of the remote computing system; download one or more relevant portions of the master list, wherein the relevant portions downloaded comprise the subscription information for the relevant users associated with the computing resources of the remote computing system; authenticate a user login to the remote computing system based on user authentication information from the relevant portions downloaded, wherein said user authentication information comprises multilevel authentication and multilevel password information for filtering access to multiple attached systems of the remote computing system and controlling access to the computing resources of the remote computing system based on user credentials of the relevant users associated with the computing resources of the remote computing system, wherein user provided credentials are checked against the multilevel authentication and multilevel password information for authenticating access to the remote computing system, wherein the multilevel authentication and multilevel password information facilitate filtering by user and filtering by limiting access to certain systems, and wherein the multilevel password information comprises personal passwords and system passwords; and upon authentication of the user login, selectively authorize user access to the computing resources of the remote computing system based on system authorization information from the relevant portions downloaded. - View Dependent Claims (13, 14, 15, 16, 17)
-
-
18. A method of managing user access to one or more computing resources, comprising:
-
centrally maintaining user subscription information comprising user authentication information and system authorization information based on user credentials, wherein the user subscription information is contained in a master list, wherein the system authorization information includes system type per user; and providing relevant subscription information from the user subscription information to multiple remote computing systems including propagating user credentials; wherein each remote computing system; queries the master list for subscription information for relevant users associated with computing resources of said remote computing system; downloads one or more relevant portions of the master list, wherein the relevant portions downloaded comprise the subscription information for the relevant users associated with the computing resources of said remote computing system; authenticates a user login to said remote computing system based on user authentication information from the relevant portions downloaded; and upon authentication of the user login, selectively authorize user access to the computing resources of said remote computing system based on system authorization information from the relevant portions downloaded, wherein said user authentication information comprises multilevel authentication and multilevel password information for filtering access to multiple attached systems of said remote computing system and controlling access to the computing resources of said remote computing system based on user credentials of the relevant users associated with the computing resources of said remote computing system, wherein user provided credentials are checked against the multilevel authentication and multilevel password information for authenticating access to the remote computing system, wherein the multilevel authentication and multilevel password information facilitate filtering by user and filtering by limiting access to certain systems, and wherein the multilevel password information comprises personal passwords and system passwords.
-
Specification