Patent · US Active

Filtering policies for authorizing an API

US11245728B1 · kind B1 · utility

24Cited by

16References

20Claims

0Family size

Assignee

STYRA, INC. · US

Inventors

Andrew Curtis · San Mateo, US
Mikol Graves · San Francisco, US
Bryan J. Fulton · San Francisco, US
Timothy L. Hinrichs · Los Altos, US
Marco Sanvido · Belmont, US
Teemu Koponen · San Francisco, US

Key dates

Filing date	Jun 19, 2019
Grant date	Feb 8, 2022
Priority date	—
Expiry date	Apr 1, 2040

Classification

Technology area (CPC H)Electricity
CPC primaryH04L67/133
WIPO fieldDigital communication
WIPO sectorElectrical engineering

Abstract

Some embodiments provide a method for providing insight into applicability of policies that authorize access to at least one service through application programming interface (API) calls by multiple users. The method receives at least one authorization policy that defines access to the service by the users, where the policy includes two or more access rules. The method identifies a subset of unnecessary access rules in the received policy, based on a set of contextual data that is associated with the users, and filters the received policy by removing the identified subset of unnecessary access rules. The method receives a query regarding access to the service from a particular set of one or more users, and uses the filtered policy to provide a response to the query that describes access to the service for the particular user set.

Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.