Rules engine for selectively granting access to secured resources

Assignee

• CAPITAL ONE SERVICES, LLC · US

Inventors

• Jordan Hale · Glen Allen, US
• Devon Powley · Reston, US
• Wesley Sham · Jericho, US
• Thomas Shaffer · Arlington, US
• Jared Baker · Forest Meadow Mobile Home Park, US
• John Bollinger · Madison, US
• Robert Stump · El Paso, US
• Gabriel Duke · Richmond, US

Key dates

Classification

• Technology area (CPC H)Electricity
• CPC primaryH04L63/20
• WIPO fieldDigital communication
• WIPO sectorElectrical engineering

Abstract

Systems and methods for providing least privilege access to a resource within a secured server are disclosed. The systems and method can include receiving an access request from a client requesting access to the resource, the access request comprising a role or policy associated with the client and one or more actions associated with the resource. A rules engine can be initialized, the engine defining one or more rules usable by the system to determine whether the access request complies with a least privilege policy. The systems and method can analyze the role or policy and the access request with the rules engine to determine whether the access request complies with the least privilege policy. When the access request complies with the rules, access to the resource can be granted; when the access request does not comply with the rules, access to the resource can be denied.