Method and device for generating access-control lists
US6237036A · kind A · utility
Assignee
Inventors
Key dates
| Filing date | Dec 21, 1998 |
| Grant date | May 22, 2001 |
| Priority date | — |
| Expiry date | Dec 21, 2018 |
Classification
- Technology area (CPC H)Electricity
- CPC primaryH04L63/101
- WIPO fieldDigital communication
- WIPO sectorElectrical engineering
Abstract
A method of generating access-control lists executable by a system and derived from access-control rules supplied for insuring security of an operation system is presented. The method includes the steps of inputting access-manager-type-group information, access-target-type-group information, and organizational-structure information, inputting access-control rules each comprised of an access-manager type, an access-target type, and an action in order to represent security guidelines of the system, inputting constraint conditions relating to the organizational structure of the system, extracting access managers and access targets from the access-manager-type-group information and the access-target-type-group information, respectively, with respect to the access-manager type and the access-target type included in each of the access-control rules, checking the constraint conditions with regard to all the combinations between the extracted access managers and the extracted access targets, and generating access-control lists comprised of such an access manager, an access target, and an action as to satisfy the constraint conditions.
Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.