发明名称 |
Flexible Role Based Authorization Model |
摘要 |
Systems and methods described herein relate to role-based authorization systems which allow customization of role templates as well as the ability, using roles, for one user to act on behalf of another user. |
申请公布号 |
US2015095968(A1) |
申请公布日期 |
2015.04.02 |
申请号 |
US201314041203 |
申请日期 |
2013.09.30 |
申请人 |
LexisNexis, a division of Reed Elsevier Inc. |
发明人 |
Steiner Don Paul;Maxfield Bruce Daniel;Kilgallon William Donald |
分类号 |
G06F21/60 |
主分类号 |
G06F21/60 |
代理机构 |
|
代理人 |
|
主权项 |
1. A computer machine system comprising one or more computer machines wherein said computer machine system further comprises:
at least one computer memory comprising a rights database configured to store:
a set of roles wherein each role is associated with one or more capabilities;a set of user identifiers wherein each user identifier is associated with:
a specific user;one or more roles from said set of roles; andone or more capabilities from each of said roles; at least one policy decision point configured to authorize a service request received from a policy enforcement point wherein:
said policy decision point determines if a first set of capabilities allocated to a first role, wherein said first role is specified in a request header associated with said service request, matches a set of required privileges necessary to perform said service request;said policy decision point determines if a second set of capabilities allocated to a first user, wherein said first user is specified in said request header, acting as said first role matches said set of required privileges necessary to perform said service request. |
地址 |
Miamisburg OH US |