Method for establishing resource access authorization in M2M communication
First Claim
1. A method for establishing an authorization to access resource in Machine-to-Machine (M2M) communication, when entity selected from a terminal, a gateway and an end user as a client in an M2M service provider domain attempts to access resource located in a service layer of an M2M server for providing an M2M service in the same M2M service provider domain, the method comprising:
- receiving by the client a client credential allocated from an authentication server for providing an authentication service which is required in the M2M service provider domain by performing a client registration to the service layer by the client;
requesting by the client an authorization to access the resource to a resource owner of the resource based on information about a Resource_URI of the resource;
verifying, by the resource owner, the client through the authentication server;
granting, by the resource owner, the authentication server the authorization for the client to access the resource;
issuing an access token to the client by the authentication server; and
accessing, by a processor of the client, the resource based on the issued access token.
1 Assignment
0 Petitions
Accused Products
Abstract
A method for establishing a resource access authorization in M2M communication is provided. When an entity including a terminal, a gateway and an end user as client in a first M2M service provider domain attempts to access resource located in terminal or gateway in second M2M service provider domain, the method includes receiving client credential allocated from M2M Authentication Server (MAS1) in first M2M service provider domain by performing client registration to Network Service Capabilities Layer (NSCL1) in first M2M service provider domain by client, requesting an authorization to access resource to resource owner through NSCL (NSCL2) in second M2M service provider domain based on information about Universal Resource Identifier (URI) of resource by client, verifying client through MAS1 by the resource owner, authorizing client to access the resource by the resource owner, and issuing access token to the client by MAS (MAS2) in second M2M service provider domain.
-
Citations
5 Claims
-
1. A method for establishing an authorization to access resource in Machine-to-Machine (M2M) communication, when entity selected from a terminal, a gateway and an end user as a client in an M2M service provider domain attempts to access resource located in a service layer of an M2M server for providing an M2M service in the same M2M service provider domain, the method comprising:
-
receiving by the client a client credential allocated from an authentication server for providing an authentication service which is required in the M2M service provider domain by performing a client registration to the service layer by the client; requesting by the client an authorization to access the resource to a resource owner of the resource based on information about a Resource_URI of the resource; verifying, by the resource owner, the client through the authentication server; granting, by the resource owner, the authentication server the authorization for the client to access the resource; issuing an access token to the client by the authentication server; and accessing, by a processor of the client, the resource based on the issued access token. - View Dependent Claims (2, 3, 4, 5)
-
Specification
-
- Resources
-
Current AssigneeModa Inc.
-
Original AssigneeModa Inc.
-
InventorsKim, Kyung-su, Lee, Jaeho, Kim, Yong-jin
-
Primary Examiner(s)Patel, Haresh N
-
Application NumberUS14/403,967Publication NumberTime in Patent Office1,245 DaysField of Search726/2, 726/3, 726/4, 726/6, 726/9US Class Current1/1CPC Class CodesH04L 63/0807 using tickets, e.g. Kerbero...H04L 63/0892 by using authentication-aut...H04L 63/10 for controlling access to d...H04W 12/069 using certificates or pre-s...H04W 4/70 Services for machine-to-mac...H04W 48/02 Access restriction performe...
