Patent · US Active

Type system for access control lists

US8095557B2 · kind B2 · utility

2Cited by

1References

24Claims

0Family size

Assignee

Oracle International Corporation · US

Inventors

Tanvir Ahmed · Bellevue, US
Thomas Keefee · Mill Valley, US
Vikram Pesati · San Jose, US
Eric Sedlar · San Francisco, US

Key dates

Filing date	Apr 30, 2009
Grant date	Jan 10, 2012
Priority date	—
Expiry date	Jan 15, 2030

Classification

Technology area (CPC G)Physics
CPC primaryG06F2221/2141
WIPO fieldComputer technology
WIPO sectorElectrical engineering

Abstract

A method and storage media for performing access resolution using ACL types is provided. Under an AND semantic, an intersection set formed from the types of multiple ACLs protecting a resource may be utilized to efficiently determine whether a request for a privilege to access the resource is granted or denied. If the privilege is not a member of the intersection set, the privilege cannot be granted. A union set may be used for an OR semantic. A global ACL type may represent all privileges system-wide or application-wide. A global ACL may represent a system-wide or application-wide access policy. A conjunction of a global ACL and a regular ACL may be stored in a cache. The union set, intersection set, or access resolution may also be cached for subsequent request processing.

Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.