Information security – Prevention of unauthorized use of data including prevention... – Access control
Reexamination Certificate
2011-02-22
2011-02-22
Arani, Taghi T (Department: 2438)
Information security
Prevention of unauthorized use of data including prevention...
Access control
C726S002000, C726S004000, C726S017000, C726S026000, C726S028000, C726S029000, C726S030000, C713S156000, C713S157000, C713S165000, C713S166000, C713S167000, C713S182000, C713S184000, C713S185000, C713S186000, C709S225000, C709S229000
Reexamination Certificate
active
07895664
ABSTRACT:
A computer implemented method, apparatus, and computer program product for access control in a mixed discretionary access control and role based access control environment. In one embodiment, an execution access for a command is determined using a set of role based authorizations for a user invoking the command. In response to a determination that the user invoking the command is authorized based on the set of role based authorizations, a privilege in a set of privileges associated with the command is raised. Raising the privilege in the set of privileges bypasses discretionary access control checks. In response to a determination that the user invoking the command is unauthorized based on the set of role based authorizations, an execution access for the command is determined using a set of discretionary access mode bits associated with the command.
REFERENCES:
patent: 7185192 (2007-02-01), Kahn
patent: 7529931 (2009-05-01), Vasishth et al.
patent: 2002/0184535 (2002-12-01), Moaven et al.
patent: 2005/0132215 (2005-06-01), Wang et al.
U.S. Appl. No. 11/619,918, filed Jan. 4, 2007, Whitson.
Camillone et al., “Compatibility of Access Control Lists and Permission Bits in AIXv3”, IBM Technical Disclosure Bulletin, Dec. 1991, pp. 127-129.
Camillone et al., “Extensible Access Control List Mechanism”, IBM Technical Disclosoure Bulletin, Dec. 1991, pp. 114-117.
Desai Saurabh
Dubey Niteesh Kumar
Shankar Ravl A.
Walters Drew Thomas
Arani Taghi T
Baca Matthew W.
Herzog Madhuri
International Business Machines - Corporation
Yee & Associates P.C.
LandOfFree
Determination of access checks in a mixed role based access... does not yet have a rating. At this time, there are no reviews or comments for this patent.
If you have personal experience with Determination of access checks in a mixed role based access..., we encourage you to share that experience with our LandOfFree.com community. Your opinion is very important and Determination of access checks in a mixed role based access... will most certainly appreciate the feedback.
Profile ID: LFUS-PAI-O-2637558