Secure resource authorization for external identities using remote subject objects
Methods for secure resource authorization of external identities using remote subject objects are performed by systems and devices. An external entity creates a user group and defines the rights of security resources of all entities as a set of rights for the group. An immutable access template with...
Gespeichert in:
| Hauptverfasser: | , , , |
|---|---|
| Format: | Patent |
| Sprache: | chi ; eng |
| Schlagworte: | |
| Online-Zugang: | Volltext bestellen |
| Tags: |
Tag hinzufügen
Keine Tags, Fügen Sie den ersten Tag hinzu!
|
| container_end_page | |
|---|---|
| container_issue | |
| container_start_page | |
| container_title | |
| container_volume | |
| creator | CHOUDHURY DEBASHIS JARIN MICHEL DASARI CHAITANYA PRABHAKAR R STEEMAN JAMES A |
| description | Methods for secure resource authorization of external identities using remote subject objects are performed by systems and devices. An external entity creates a user group and defines the rights of security resources of all entities as a set of rights for the group. An immutable access template with permissions and access policies for secure resources are provided to all entities for approval. After approval, the remote subject object is created in the owner directory according to the authority and the access policy. A remote subject that is a group member accesses an owner domain via an interface using an external domain credential request. The identity of the remote subject is verified by the token service for the remote subject object. Verification results in generating a token with enumeration rights and issuing the token to a remote subject interface, affecting redirection of access to the secure resource.
用于使用远程主体对象对外部身份进行安全资源授权的方法由系统和设备执行。外部实体创建用户群组,并将所有实体的安全资源的权利定义为针对该群组的权限集合。具有权限的不可变的访问模板和针对安全资源的访问策略 |
| format | Patent |
| fullrecord | <record><control><sourceid>epo_EVB</sourceid><recordid>TN_cdi_epo_espacenet_CN115698998A</recordid><sourceformat>XML</sourceformat><sourcesystem>PC</sourcesystem><sourcerecordid>CN115698998A</sourcerecordid><originalsourceid>FETCH-epo_espacenet_CN115698998A3</originalsourceid><addsrcrecordid>eNqNyzEKwkAQRuE0FqLeYTyARRAlW0pQrCzUPqzrnzgSd8LOLIinV8QDWH3Ne-PieELICZSgklMA-Ww3SfzyxhKplUR4GlL0PfEV0dgYSlk5dp_pIQbSfLkjGMkXnRaj1veK2c9JMd9tz_V-gUEa6OADIqypD2W5WrvKuWqz_Kd5A6wUOVE</addsrcrecordid><sourcetype>Open Access Repository</sourcetype><iscdi>true</iscdi><recordtype>patent</recordtype></control><display><type>patent</type><title>Secure resource authorization for external identities using remote subject objects</title><source>esp@cenet</source><creator>CHOUDHURY DEBASHIS ; JARIN MICHEL ; DASARI CHAITANYA PRABHAKAR R ; STEEMAN JAMES A</creator><creatorcontrib>CHOUDHURY DEBASHIS ; JARIN MICHEL ; DASARI CHAITANYA PRABHAKAR R ; STEEMAN JAMES A</creatorcontrib><description>Methods for secure resource authorization of external identities using remote subject objects are performed by systems and devices. An external entity creates a user group and defines the rights of security resources of all entities as a set of rights for the group. An immutable access template with permissions and access policies for secure resources are provided to all entities for approval. After approval, the remote subject object is created in the owner directory according to the authority and the access policy. A remote subject that is a group member accesses an owner domain via an interface using an external domain credential request. The identity of the remote subject is verified by the token service for the remote subject object. Verification results in generating a token with enumeration rights and issuing the token to a remote subject interface, affecting redirection of access to the secure resource.
用于使用远程主体对象对外部身份进行安全资源授权的方法由系统和设备执行。外部实体创建用户群组,并将所有实体的安全资源的权利定义为针对该群组的权限集合。具有权限的不可变的访问模板和针对安全资源的访问策略</description><language>chi ; eng</language><subject>CALCULATING ; COMPUTING ; COUNTING ; ELECTRIC DIGITAL DATA PROCESSING ; PHYSICS</subject><creationdate>2023</creationdate><oa>free_for_read</oa><woscitedreferencessubscribed>false</woscitedreferencessubscribed></display><links><openurl>$$Topenurl_article</openurl><openurlfulltext>$$Topenurlfull_article</openurlfulltext><thumbnail>$$Tsyndetics_thumb_exl</thumbnail><linktohtml>$$Uhttps://worldwide.espacenet.com/publicationDetails/biblio?FT=D&date=20230203&DB=EPODOC&CC=CN&NR=115698998A$$EHTML$$P50$$Gepo$$Hfree_for_read</linktohtml><link.rule.ids>230,308,780,885,25563,76318</link.rule.ids><linktorsrc>$$Uhttps://worldwide.espacenet.com/publicationDetails/biblio?FT=D&date=20230203&DB=EPODOC&CC=CN&NR=115698998A$$EView_record_in_European_Patent_Office$$FView_record_in_$$GEuropean_Patent_Office$$Hfree_for_read</linktorsrc></links><search><creatorcontrib>CHOUDHURY DEBASHIS</creatorcontrib><creatorcontrib>JARIN MICHEL</creatorcontrib><creatorcontrib>DASARI CHAITANYA PRABHAKAR R</creatorcontrib><creatorcontrib>STEEMAN JAMES A</creatorcontrib><title>Secure resource authorization for external identities using remote subject objects</title><description>Methods for secure resource authorization of external identities using remote subject objects are performed by systems and devices. An external entity creates a user group and defines the rights of security resources of all entities as a set of rights for the group. An immutable access template with permissions and access policies for secure resources are provided to all entities for approval. After approval, the remote subject object is created in the owner directory according to the authority and the access policy. A remote subject that is a group member accesses an owner domain via an interface using an external domain credential request. The identity of the remote subject is verified by the token service for the remote subject object. Verification results in generating a token with enumeration rights and issuing the token to a remote subject interface, affecting redirection of access to the secure resource.
用于使用远程主体对象对外部身份进行安全资源授权的方法由系统和设备执行。外部实体创建用户群组,并将所有实体的安全资源的权利定义为针对该群组的权限集合。具有权限的不可变的访问模板和针对安全资源的访问策略</description><subject>CALCULATING</subject><subject>COMPUTING</subject><subject>COUNTING</subject><subject>ELECTRIC DIGITAL DATA PROCESSING</subject><subject>PHYSICS</subject><fulltext>true</fulltext><rsrctype>patent</rsrctype><creationdate>2023</creationdate><recordtype>patent</recordtype><sourceid>EVB</sourceid><recordid>eNqNyzEKwkAQRuE0FqLeYTyARRAlW0pQrCzUPqzrnzgSd8LOLIinV8QDWH3Ne-PieELICZSgklMA-Ww3SfzyxhKplUR4GlL0PfEV0dgYSlk5dp_pIQbSfLkjGMkXnRaj1veK2c9JMd9tz_V-gUEa6OADIqypD2W5WrvKuWqz_Kd5A6wUOVE</recordid><startdate>20230203</startdate><enddate>20230203</enddate><creator>CHOUDHURY DEBASHIS</creator><creator>JARIN MICHEL</creator><creator>DASARI CHAITANYA PRABHAKAR R</creator><creator>STEEMAN JAMES A</creator><scope>EVB</scope></search><sort><creationdate>20230203</creationdate><title>Secure resource authorization for external identities using remote subject objects</title><author>CHOUDHURY DEBASHIS ; JARIN MICHEL ; DASARI CHAITANYA PRABHAKAR R ; STEEMAN JAMES A</author></sort><facets><frbrtype>5</frbrtype><frbrgroupid>cdi_FETCH-epo_espacenet_CN115698998A3</frbrgroupid><rsrctype>patents</rsrctype><prefilter>patents</prefilter><language>chi ; eng</language><creationdate>2023</creationdate><topic>CALCULATING</topic><topic>COMPUTING</topic><topic>COUNTING</topic><topic>ELECTRIC DIGITAL DATA PROCESSING</topic><topic>PHYSICS</topic><toplevel>online_resources</toplevel><creatorcontrib>CHOUDHURY DEBASHIS</creatorcontrib><creatorcontrib>JARIN MICHEL</creatorcontrib><creatorcontrib>DASARI CHAITANYA PRABHAKAR R</creatorcontrib><creatorcontrib>STEEMAN JAMES A</creatorcontrib><collection>esp@cenet</collection></facets><delivery><delcategory>Remote Search Resource</delcategory><fulltext>fulltext_linktorsrc</fulltext></delivery><addata><au>CHOUDHURY DEBASHIS</au><au>JARIN MICHEL</au><au>DASARI CHAITANYA PRABHAKAR R</au><au>STEEMAN JAMES A</au><format>patent</format><genre>patent</genre><ristype>GEN</ristype><title>Secure resource authorization for external identities using remote subject objects</title><date>2023-02-03</date><risdate>2023</risdate><abstract>Methods for secure resource authorization of external identities using remote subject objects are performed by systems and devices. An external entity creates a user group and defines the rights of security resources of all entities as a set of rights for the group. An immutable access template with permissions and access policies for secure resources are provided to all entities for approval. After approval, the remote subject object is created in the owner directory according to the authority and the access policy. A remote subject that is a group member accesses an owner domain via an interface using an external domain credential request. The identity of the remote subject is verified by the token service for the remote subject object. Verification results in generating a token with enumeration rights and issuing the token to a remote subject interface, affecting redirection of access to the secure resource.
用于使用远程主体对象对外部身份进行安全资源授权的方法由系统和设备执行。外部实体创建用户群组,并将所有实体的安全资源的权利定义为针对该群组的权限集合。具有权限的不可变的访问模板和针对安全资源的访问策略</abstract><oa>free_for_read</oa></addata></record> |
| fulltext | fulltext_linktorsrc |
| identifier | |
| ispartof | |
| issn | |
| language | chi ; eng |
| recordid | cdi_epo_espacenet_CN115698998A |
| source | esp@cenet |
| subjects | CALCULATING COMPUTING COUNTING ELECTRIC DIGITAL DATA PROCESSING PHYSICS |
| title | Secure resource authorization for external identities using remote subject objects |
| url | https://sfx.bib-bvb.de/sfx_tum?ctx_ver=Z39.88-2004&ctx_enc=info:ofi/enc:UTF-8&ctx_tim=2025-01-10T18%3A28%3A15IST&url_ver=Z39.88-2004&url_ctx_fmt=infofi/fmt:kev:mtx:ctx&rfr_id=info:sid/primo.exlibrisgroup.com:primo3-Article-epo_EVB&rft_val_fmt=info:ofi/fmt:kev:mtx:patent&rft.genre=patent&rft.au=CHOUDHURY%20DEBASHIS&rft.date=2023-02-03&rft_id=info:doi/&rft_dat=%3Cepo_EVB%3ECN115698998A%3C/epo_EVB%3E%3Curl%3E%3C/url%3E&disable_directlink=true&sfx.directlink=off&sfx.report_link=0&rft_id=info:oai/&rft_id=info:pmid/&rfr_iscdi=true |