发明申请
US20080256357A1 METHODS AND APPARATUS FOR ACCESS CONTROL IN SERVICE-ORIENTED COMPUTING ENVIRONMENTS
有权
基本信息:
- 专利标题: METHODS AND APPARATUS FOR ACCESS CONTROL IN SERVICE-ORIENTED COMPUTING ENVIRONMENTS
- 专利标题(中):面向服务的计算环境中访问控制的方法和设备
- 申请号:US11734319 申请日:2007-04-12
- 公开(公告)号:US20080256357A1 公开(公告)日:2008-10-16
- 发明人: Arun Kwangil Iyengar , Thomas A. Mikalsen , Isabelle Marie Rouvellou , Mudhakar Srivalso , Jian Yin
- 申请人: Arun Kwangil Iyengar , Thomas A. Mikalsen , Isabelle Marie Rouvellou , Mudhakar Srivalso , Jian Yin
- 主分类号: H04L9/32
- IPC分类号: H04L9/32
摘要:
Improved access control techniques for use in a service-oriented computing environment are disclosed. For example, one method for authenticating a client in a service-oriented environment, wherein the service-oriented environment includes a plurality of services, includes the following steps. At least one service of the plurality of services is invoked. State information is associated with the at least one service invoked. The state information is used to authenticate a client with at least one service. Further, a method for access control in a service-oriented environment, wherein the service-oriented environment includes a plurality of services, includes the following steps. A rule specification language is provided. At least one rule is specified using the rule specification language. A verification is performed to determine whether or not the client satisfies the at least one rule. The client is granted access to a service when the client satisfies the at least one rule.
摘要(中):
公开了一种用于面向服务的计算环境中的改进的访问控制技术。 例如,一种用于在面向服务的环境中验证客户端的方法,其中面向服务的环境包括多个服务,包括以下步骤。 调用多个服务中的至少一个服务。 状态信息与所调用的至少一个服务相关联。 状态信息用于对至少一个服务的客户端进行身份验证。 此外,一种面向服务的环境中的访问控制方法,其中面向服务的环境包括多个服务,包括以下步骤。 提供规则规范语言。 使用规则规范语言指定至少一个规则。 执行验证以确定客户端是否满足至少一个规则。 当客户端满足至少一个规则时,客户端被授予对服务的访问权限。
公开/授权文献:
IPC结构图谱:
| H | 电学 |
| --H04 | 电通信技术 |
| ----H04L | 数字信息的传输,例如电报通信 |
| ------H04L9/00 | 保密或安全通信装置 |
| --------H04L9/32 | .包括用于检验系统用户的身份或凭据的装置 |