DISCRETIONARY POLICY MANAGEMENT IN CLOUD-BASED ENVIRONMENT
摘要
Embodiments are disclosed for managing and providing access to a collection of digital resources. One embodiment provides a method comprising receiving a request to access a resource for a principal and determining one or more principal groups to which the principal belongs. The method further comprises obtaining resource set membership information indicating a resource set to which the resource belongs, and obtaining resource set access policy information for the resource set to which the resource belongs. The method yet further comprises determining whether the principal is allowed to access the resource based on the principal group membership information and the resource set access policy information, and, if the principal is allowed to access the resource, then permitting access to the resource by the principal.
申请公布号
EP2962244(B1)
申请公布日期
2016.08.17
申请号
EP20140710130
申请日期
2014.02.24
申请人
MICROSOFT TECHNOLOGY LICENSING, LLC
发明人
MARTIN, PIERRE;GAJJALA, VIJAY;GILL, TIMOTHY;JACOBY, JAMES T.;PLANTE, STEPHANE;GICK, CRAIG A.;COSTLEIGH, RICHARD K.;LENHART, LUKE JARED;KANG, AJAY S.