Patent · US Expired

Fine grained role-based access to system resources

US6950825B2 · kind B2 · utility

91Cited by

9References

27Claims

0Family size

Assignee

International Business Machines Corporation · US

Inventors

David Yu Chang · Austin, US
Ching-Yun Chao · Austin, US
Hyen Vui Chung · Round Rock, US
Carlton Keith Mason · Austin, US
Vishwanath Venkataramappa · Austin, US
Leigh Williamson · Austin, US

Key dates

Filing date	May 30, 2002
Grant date	Sep 27, 2005
Priority date	—
Expiry date	Sep 5, 2023

Classification

Technology area (CPC Y)Emerging Cross-Sectional Technologies
CPC primaryY10S707/99939
WIPO fieldDigital communication
WIPO sectorElectrical engineering

Abstract

A security policy process which provides role-based permissions for hierarchically organized system resources such as domains, clusters, application servers, and resources, as well as topic structures for messaging services. Groups of permissions are assigned to roles, and each user is assigned a role and a level of access within the hierarchy of system resources or topics. Forward or reverse inheritance is applied to each user level-role assignment such that each user is allowed all permissions for ancestors to the assigned level or descendants to the assigned level. This allows simplified security policy definition and maintenance of user permissions as each user's permission list must only be configured and managed at one hierarchical level with one role.

Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.