Authorization system for heterogeneous enterprise environments

Assignee

• Oracle International Corporation · US

Inventors

• Hari Sastry · San Jose, US
• Sirish V. Vepa · Aundh, IN
• Uppili Srinivasan · Irvine, US
• Vrinda S. Joshi · Bengaluru, IN

Key dates

Classification

• Technology area (CPC H)Electricity
• CPC primaryH04L63/102
• WIPO fieldComputer technology
• WIPO sectorElectrical engineering

Abstract

A unified authorization system for an enterprise that includes heterogeneous access control environments is provided. Components in the enterprise utilizing either Java Platform Security (JPS) or Oracle Access Manager (OAM) can both use the unified authorization system to perform authorization. A common policy store can contain policies applicable to diverse components in a canonical form conducive to varieties of access control models. The data model used within the common policy store can support access control features found in both role-based policies and delegable access control administration. The common policy store can enable the querying and retrieval of authorization policies that are based on various access control models. A unified administrator interface permits administrators of applications following any kind of access control model to administer policies for resources. A unified policy decision engine can evaluate whether authorization policies are satisfied, regardless of the access control models that those policies follow.