MULTILAYER ACCESS CONTROL FOR CONNECTED DEVICES

摘要

A system for controlling accesses to network enabled devices includes a network interface over which a hub communicates with network enabled devices, a processor, and a multilayer access control layer. The access control layer includes instructions that, when executed by the processor, cause the processor to detect, at the hub, a request representing an attempt by an application executing on a remote host device to access a network enabled device communicatively coupled to the hub, characterize the request according to a user of the remote host device, the application making the attempt, and the network enabled device, and determine whether to allow or deny the request based upon the characterization and a plurality of rules. The rules may include definitions of access rights, with respect to the network enabled device, for users, applications, commands or queries made by applications, remote host devices, and network domains.

主权项

1. At least one non-transitory machine readable storage medium, comprising computer-executable instructions carried on the machine readable medium, the instructions readable by a processor, the instructions, when read and executed, for causing the processor to:
detect, at a hub in wireless communication with a network enabled device, a request representing an attempt by an application executing on a remote host device to access the network enabled device; characterize the request according to a user of the remote host device, the application making the attempt, and the network enabled device; and determine whether to allow or deny the request based upon the characterization and a plurality of rules, the rules to include definitions of access rights for one or more users with respect to the network enabled device and definitions of access rights for one or more applications with respect to the network enabled device.