×

Network layer claims based access control

  • US 9,344,432 B2
  • Filed: 06/24/2010
  • Issued: 05/17/2016
  • Est. Priority Date: 06/24/2010
  • Status: Active Grant
First Claim
Patent Images

1. A method for use in a system comprising a computer configured to communicate with a network resource via at least one network, the at least one network employing a network layer security protocol, the method comprising:

  • receiving from the computer a request for one or more requester claims;

    providing the one or more requester claims to the computer in a first communication formatted to comply with the network layer security protocol, at least one of the one or more requester claims comprises attributes of one or more of the computer, the user of the computer, a context in which access by the computer to the network resource is requested, and an encryption strength of connection between the computer and the network resource, and an indication of whether the computer is associated with a home of a user of the computer;

    receiving from the network resource a request for one or more resource claims, at least one of the resource claims comprises attributes describing whether the resource has a high, medium, or low business impact, and whether or not the resource is at production stage;

    providing the one or more resource claims to the network resource in a second communication formatted to comply with the network layer security protocol;

    receiving a request for an access control policy decision, the request for the access control policy decision providing information included in the one or more requester claims and the one or more resource claims; and

    issuing the requested access control policy decision based at least in part on the provided information.

View all claims
  • 2 Assignments
Timeline View
Assignment View
    ×
    ×