Access right control using access control alerts
First Claim
Patent Images
1. A method comprising:
- creating, by a requester, a subscribe message comprising a request for information about access rights to a particular resource and for information about any change to a level of access of the access rights, wherein the subscribe message specifies an event package and an event type to which to subscribe, wherein the information about access rights comprises information having an attribute-based format that conforms with a service location protocol;
determining, by the requester, to send the subscribe message to a network entity that comprises an event server, where the network entity queries a database of said event server containing access control information for said particular resource; and
in response to said access control information not indicating denial of access to said particular resource, receiving, in response to the sent subscribe message, a notify message specifying information about a description of the particular resource, access right information relating to the change to the level of access of the access rights to the particular resource, and an event triggering the change to the level of access of the access rights, wherein the subscribe message and the notify message are generated according to a session initiation protocol.
0 Assignments
0 Petitions
Accused Products
Abstract
Systems and methods are provided for providing access controlled event subscription and notification and event access change alerts. In some embodiments, the systems and methods of the present invention operate within a SIP infrastructure. As such, SIP SUBSCRIBE messages and SIP NOTIFY messages are used for subscribing to and receiving notifications related to access control. According to some embodiments, event access change alerts are used in conjunction with access controlled event subscription to provide an efficient method for providing access controlled event subscription using current access control information.
-
Citations
16 Claims
-
1. A method comprising:
-
creating, by a requester, a subscribe message comprising a request for information about access rights to a particular resource and for information about any change to a level of access of the access rights, wherein the subscribe message specifies an event package and an event type to which to subscribe, wherein the information about access rights comprises information having an attribute-based format that conforms with a service location protocol; determining, by the requester, to send the subscribe message to a network entity that comprises an event server, where the network entity queries a database of said event server containing access control information for said particular resource; and in response to said access control information not indicating denial of access to said particular resource, receiving, in response to the sent subscribe message, a notify message specifying information about a description of the particular resource, access right information relating to the change to the level of access of the access rights to the particular resource, and an event triggering the change to the level of access of the access rights, wherein the subscribe message and the notify message are generated according to a session initiation protocol. - View Dependent Claims (2, 3, 4, 5, 6)
-
-
7. A method comprising:
-
receiving, from a requester, a subscribe message comprising a request for information about access rights to a particular resource and for information about any change to a level of access of the access rights wherein the information about access rights comprises information having an attribute-based format that conforms with a service location protocol; determining whether the requester is authorized to obtain status information about the access rights for the particular resource, wherein the determining comprises querying a database containing access control information for said particular resource; based on the determination that there is not a denial of access, obtaining from a separate repository information about access rights to the particular resource; and creating, in response to the subscribe message, a notify message specifying information about a description of the resource, access right information relating to the change to the level of access in the access rights to the particular resource, and an event triggering the change to the level of access of the access rights, wherein the subscribe message and the notify message are generated according to a session initiation protocol. - View Dependent Claims (8, 9, 10)
-
-
11. An apparatus comprising:
-
at least one processor; and at least one memory including computer program code for one or more programs, the at least one memory and the computer program code configured to with the at least one processor, cause the apparatus to perform at least the following, create a subscribe message comprising a request for information about access rights to a particular resource and for information about any change to a level of access of the access rights, wherein the subscribe message specifies an event package and an event type to which to subscribe, wherein the information about access rights comprises information having an attribute-based format that conforms with a service location protocol; determine to send the subscribe message to a network entity that comprises an event server, where the network entity queries a database of said event server containing access control information for said particular resource; and based on said access control information not indicating a denial of access to said particular resource, receive, in response to the sent subscribe message, a notify message specifying information about a description of the resource, access right information relating to the change to the level of access of the access rights to the particular resource, and an event triggering the change to the level of access of the access rights, wherein the subscribe message and the notify message are generated according to a session initiation protocol. - View Dependent Claims (12, 13)
-
-
14. An apparatus comprising:
-
at least one processor; and at least one memory including computer program code for one or more programs, the at least one memory and the computer program code configured to with the at least one processor, cause the apparatus to perform at least the following,; receive, from a requester, a subscribe message comprising a request for information about access rights to a particular resource and for information about any change to a level of access of the access rights, wherein the information about access rights comprises information having an attribute-based format that conforms with a service location protocol; determine whether the requester is authorized to obtain status information about the access rights for the resource, wherein the determining comprises querying a database containing access control information for said particular resource; if the determination does not indicate denial of access, then obtaining from a separate repository information about access rights to the particular resource; and create, in response to the subscribe message, a notify message specifying information about a description of the resource, access right information relating to access rights to the particular resource, and an event triggering the change to the level of access of the access rights, wherein the subscribe message and the notify message are generated according to a session initiation protocol. - View Dependent Claims (15, 16)
-
Specification