Data processing: database and file management or data structures – Database design – Data structure types
Patent
1995-08-14
1999-06-08
Kulik, Paul V.
Data processing: database and file management or data structures
Database design
Data structure types
707104, 707 10, 707 9, 395728, 395800, G06F 1730
Patent
active
059111437
ABSTRACT:
A method and system for registration, authorization, and control of access rights in a computer system. Access rights of subjects on objects in a computer system are controlled using parameterized role types that can be instantiated into role instances equivalent to roles or groups. The required parameters are provided by the subject of the computer system, e.g. by a person, a job position, or an organization unit. Furthermore, relative resource sets are instantiated into concrete resource sets and individual resources by using the same parameter values as for instantiating the role types. Authorization and control of access rights include capability lists providing the access rights of the subjects on the objects of a computer system on a per subject basis. Furthermore, access control lists are derived from capability lists, so that access rights of the subjects on the respective objects are provided.
REFERENCES:
patent: 4941175 (1990-07-01), Enescu et al.
patent: 5113442 (1992-05-01), Moir
patent: 5191522 (1993-03-01), Bosco et al.
patent: 5315657 (1994-05-01), Adabi et al.
patent: 5321841 (1994-06-01), East et al.
patent: 5414844 (1995-05-01), Wang
patent: 5414852 (1995-05-01), Kramer et al.
patent: 5446903 (1995-08-01), Abraham et al.
patent: 5450593 (1995-09-01), Howell et al.
patent: 5469556 (1995-11-01), Clifton
patent: 5475839 (1995-12-01), Watson et al.
patent: 5539906 (1996-07-01), Abraham et al.
patent: 5564016 (1996-10-01), Korenshtien
Hartig et al., "Mechanisms for persistence and security in birlix", IEEE/INSPEC, pp. 309-318. May, 1990.
Born et al., "Discretionary access control by means of usage conditions", IEEE/INSPEC, pp. 437-450, vol.: 13, No. 5, Jan. 1994.
Hu et al., "User-role based security profiles for an object-oriented design model", IEEE/INSPEC, pp. 333-348, vol. A-21, Aug. 1992.
Hu et al., "User-role based security profiles for an object -oriented design model", Compendex Plus, issue: N. A-21, pp. 333-348, Aug. 1993.
Demurjian et al. "Towards an authorization mechanism for user-role based serity in an object-oriented design model", IEEE, pp. 195-202, Jul. 1993.
Biskup et al. "The personal model of data: Towards a privacy-oriented information system", IEEE, pp. 575-597, Dec. 1988.
Ting et al., "Requirements, capabilities and functionalities of user-role based security for an object-oriented design model", IEEE, pp. 275-296, Nov. 1991.
Jonscher. D, "Extending access control with duties-realized by active mechanisms", IEEE/INSPEC, pp. 91-111, vol.: A-21, Aug. 1992.
Kelter. U, "Type-level access control for distributed structurally object-oriented database systems", IEEE/INSPEC, pp. 2-40, Nov. 1992.
Jonscher et al., "A role-based modelling of access control with the held of frames", IEEE/INSPEC, pp. 147-158, May 1991.
Deinhart Klaus
Gligor Virgil
Lingenfelder Christoph
Lorenz Sven
Corrielus Jean M.
Duffield Edward H.
International Business Machines - Corporation
Kulik Paul V.
LandOfFree
Method and system for advanced role-based access control in dist does not yet have a rating. At this time, there are no reviews or comments for this patent.
If you have personal experience with Method and system for advanced role-based access control in dist, we encourage you to share that experience with our LandOfFree.com community. Your opinion is very important and Method and system for advanced role-based access control in dist will most certainly appreciate the feedback.
Profile ID: LFUS-PAI-O-1688932