发明名称 |
AUTHORIZATION IN A DISTRIBUTED SYSTEM USING ACCESS CONTROL LISTS AND GROUPS |
摘要 |
In a method of controlling sharing of an object between entities in a distributed system, a processor will identify an object and generate an access control list (ACL) for the object so that the ACL includes a list of clauses. Each clause will include a blessing pattern that will match one or more blessings, and at least one of the clauses also may include a reference to one or more groups. Each group represents a set of strings that represent blessing patterns or fragments of blessing patterns. The processor may generate each clause of the ACL as either a permit clause or a deny clause to indicate whether an entity or entities that have a blessing matched by the blessing pattern are permitted to access the object. The processor will save the ACL to a data store for use in responding to a request to access the object. |
申请公布号 |
WO2016190949(A1) |
申请公布日期 |
2016.12.01 |
申请号 |
WO2016US24477 |
申请日期 |
2016.03.28 |
申请人 |
GOOGLE INC. |
发明人 |
BURROWS, Michael;ABADI, Martin;PUCHA, Himabindu;SADOVSKY, Adam;SHANKAR, Asim;TALY, Ankur |
分类号 |
G06F21/60;G06F21/62 |
主分类号 |
G06F21/60 |
代理机构 |
|
代理人 |
|
主权项 |
|
地址 |
|