Method for managing data in a shared computing environment
US8352999B1 · kind B1 · utility
Assignee
Inventors
Key dates
| Filing date | Jul 21, 2006 |
| Grant date | Jan 8, 2013 |
| Priority date | — |
| Expiry date | Feb 27, 2029 |
Classification
- Technology area (CPC H)Electricity
- CPC primaryH04L63/104
- WIPO fieldDigital communication
- WIPO sectorElectrical engineering
Abstract
A method of storing secret data in a shared computing environment includes defining secret data, such as a password and administration policies according to a schema of a directory server such as a LDAP server. The secret data and administration polices are centrally stored on the LDAP server. The secret data can be encrypted. Administration polices include authorization and authentication policies, and a security zone can be defined for a collection of entities with a common security characteristic, such as a common password. A security zone defines a group of users and the secret data that can be accessed by the group of users. Multiple security zones can be defined. The secret data can be accessed directly from the server of the directory service without accessing another server or data store assuming the administration policies are satisfied.
Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.