| 发明名称 |
Providing Restricted Access to Given Devices by Constructing Abstract Devices |
| 摘要 |
Methods, systems, and computer program products for providing restricted access to given devices by constructing abstract devices are provided herein. A method includes generating a virtual device based on one or more physical devices; mapping multiple device actions of the one or more physical devices to multiple device actions of the virtual device exposed by the virtual device; incorporating (i) discretionary access control techniques, (ii) policy-based access control techniques, and (iii) a physical device-level partial ordering of actions to determine a resolution in response to a set of multiple user access requests for two or more of the multiple device actions of the virtual device; and executing the two or more device actions of the virtual device on the virtual device for one or more given users in accordance with said resolution by coordinating the execution of two or more corresponding device actions of the one or more physical devices on the one or more physical devices based on said mapping. |
| 申请公布号 |
US2016105441(A1) |
申请公布日期 |
2016.04.14 |
| 申请号 |
US201414512634 |
申请日期 |
2014.10.13 |
| 申请人 |
International Business Machines Corporation |
发明人 |
Banerjee Nilanjan;Deshpande Pralhad;Kapoor Shalini;Kodeswaran Palanivel;Kumar Rajan;Mangalvedkar Amit M.;Nanavati Amit A. |
| 分类号 |
H04L29/06 |
主分类号 |
H04L29/06 |
| 代理机构 |
|
代理人 |
|
| 主权项 |
1. A method comprising the following steps:
generating a virtual device based on one or more physical devices; mapping multiple device actions of the one or more physical devices to multiple device actions of the virtual device exposed by the virtual device; incorporating (i) discretionary access control techniques, (ii) policy-based access control techniques, and (iii) a physical device-level partial ordering of actions to determine a resolution in response to a set of multiple user access requests for two or more of the multiple device actions of the virtual device; and executing the two or more device actions of the virtual device on the virtual device for one or more given users in accordance with said resolution by coordinating the execution of two or more corresponding device actions of the one or more physical devices on the one or more physical devices based on said mapping; wherein at least one of the steps is carried out by a computing device. |
| 地址 |
Armonk NY US |
