Patent · US Active

Universal authorization and access control security measure for applications

US7865931B1 · kind B1 · utility

129Cited by

15References

36Claims

0Family size

Assignee

ACCENTURE GLOBAL SERVICES LIMITED · IE

Inventors

Andrew Stone · Somerville, US
Brett Cooper · Silver Spring, US
Christopher Miller · Audubon, US
Timothy Daniel McCarthy · San Diego, US
Clifford Randall Cannon · Pacifica, US

Key dates

Filing date	Nov 25, 2002
Grant date	Jan 4, 2011
Priority date	—
Expiry date	Jan 11, 2027

Classification

Technology area (CPC G)Physics
CPC primaryG06F2221/2115
WIPO fieldDigital communication
WIPO sectorElectrical engineering

Abstract

The invention provides a system that includes: a web server, an application server, and a data server all connected to each other. The system is intended to protect web based applications. A web server receives a request and transmits it as a message to the application server. When the application server receives the request, the application server extracts attributes of this request. The application server uses an authorization engine to determine if each attribute of the request is authorized by accessing the data server to compare each attribute of the request with at least one rule from a rules store. The rules store resides on the data server. If the attributes of the request meet the rules in the rules store, then the request is executed by the application server.

Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.