Business pre-permissioning in delegated third party authorization
US8544068B2 · kind B2 · utility
Assignee
Inventors
Key dates
| Filing date | Nov 10, 2010 |
| Grant date | Sep 24, 2013 |
| Priority date | — |
| Expiry date | Sep 17, 2031 |
Classification
- Technology area (CPC H)Electricity
- CPC primaryH04L51/42
- WIPO fieldDigital communication
- WIPO sectorElectrical engineering
Abstract
A method to manage access to end user-protected resources hosted in a shared pool of configurable computing resources, such as a cloud computing environment, begins by registering a particular application or service into the environment. The application or service is one that is being permitted to access resources on behalf of end users via a delegated authorization protocol, such as OAuth. For at least one end user associated with the organization, a permission is set, preferably by an organization entity, such as an organization administrator. The permission determines whether the application or service is permitted to access one or more resources associated with the end user. Then, in response to a request by the third party application to access a resource, where the request is received via the delegated authorization protocol, the permission is then used to determine whether the third party application is permitted to access the resource.
Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.