| 发明名称 |
System, Apparatus And Method For Access Control List Processing In A Constrained Environment |
| 摘要 |
In one embodiment, a method includes receiving a first request from a first device to access a first resource of the system and determining whether to grant access to the first resource based on a first access control list stored in the system, the first access control list associated with the first device, the first device having a first relevance value, and based on the determination, granting the access to the first resource; and receiving a second request from a second device to access a second resource of the system and forwarding the second request to an access manager service coupled to the system to determine whether to grant access to the second resource based on a second access control list stored in the access manager service associated with the second device, the second device having a second relevance value, receive an access grant from the access manager service and based thereon, granting the access to the second resource. |
| 申请公布号 |
US2016381081(A1) |
申请公布日期 |
2016.12.29 |
| 申请号 |
US201615259560 |
申请日期 |
2016.09.08 |
| 申请人 |
Intel Corporation |
发明人 |
Smith Ned M.;Agerstam Mats G.;Heldt-Sheller Nathan |
| 分类号 |
H04L29/06 |
主分类号 |
H04L29/06 |
| 代理机构 |
|
代理人 |
|
| 主权项 |
1. At least one computer readable storage medium comprising instructions that when executed enable a system to:
responsive to a first request from a client device to access a resource of the system, search for an access control entry for the client device pertaining to the resource; responsive to absence of the access control entry for the client device pertaining to the resource, provide a message to the client device with an identity of an access manager service of an access manager server, wherein the system comprises a server device; receive an access control list from the client device and store the access control list in the system; and responsive to a second request from the client device to access the resource, grant access to the resource based on a first access control entry in the access control list of the system, the first access control entry to identify the client device as a subject, to identify the resource, and to identify a permission type associated with the resource and the client device. |
| 地址 |
Santa Clara CA US |
