发明名称 |
Method for controlling access to electronically provided services and system for implementing such method |
摘要 |
The security of stored data and applications is improved by and access control system and method in which user keys for accessing the stored data/services which keys are provided to users are representative of the user's level of authority, such that there is no need to maintain a separate lookup table of user authority levels. This removes a potential security exposure from the system.The user keys are advantageously hierarchical, including data for generating a plurality of different access keys for each of a plurality of different access levels. The access keys may be decryption keys for encrypted data or application programs. The invention is applicable to SmartCard systems.
|
申请公布号 |
US6282649(B1) |
申请公布日期 |
2001.08.28 |
申请号 |
US19980115447 |
申请日期 |
1998.07.14 |
申请人 |
INTERNATIONAL BUSINESS MACHINES CORPORATION |
发明人 |
LAMBERT HOWARD SHELTON;ORCHARD JAMES RONALD LEWIS |
分类号 |
G06F1/00;G06F21/00;G06F21/62;G07F7/10;H04L9/08;(IPC1-7):H04L9/32;G06F12/14 |
主分类号 |
G06F1/00 |
代理机构 |
|
代理人 |
|
主权项 |
|
地址 |
|