Patent
1995-09-20
1997-12-23
Amsbury, Wayne
G06F 1730
Patent
active
057014582
ABSTRACT:
A system and method for managing access control lists (ACL) in a data processing system with a hierarchical object structure permits manipulation of an arbitrary set of ACLs and individual entries within an ACL. A set of actions covering all possible entry updates provides flexibility in manipulating ACLs and removing latent ambiguity. By permitting operation on the arbitrary set of ACLs rather than a resource tree, heterogeneous trees remain after the apply function. A mechanism is provided for identifying specific failures of ACL updates by resource name and error, thereby permitting correction without necessitating re-running the entire apply function.
REFERENCES:
patent: 5265221 (1993-11-01), Miller
patent: 5283830 (1994-02-01), Hinsley et al.
patent: 5297283 (1994-03-01), Kelly, Jr. et al.
patent: 5313646 (1994-05-01), Hendricks et al.
patent: 5315657 (1994-05-01), Abadi et al.
patent: 5321841 (1994-06-01), East et al.
patent: 5335346 (1994-08-01), Fabbio
patent: 5469576 (1995-11-01), Dauerer et al.
patent: 5495521 (1996-02-01), Rangachar
patent: 5584022 (1996-12-01), Kikuchi et al.
"Domain Based Configuration and Name Management for Distributed Sytsems", K. Twidle et al, IEEE, TH0228-7/88/0000/0147, 1988, pp. 147-153.
"Access Control and Authorization Plan for Customer Control of Network Services", C. Yu, IEEE, CH2682-3/89/0000-0862, 1989, pp. 862-869.
"An Authorization Plan for Commercial Service Systems", C. Yu, IEEE, Th0351-7/90/0000/0376, 1990, pp. 376-383.
"Non-Monotonic Transformation of Access Rights", R. S. Sandhu et al, IEEE, 0-8186-2825-1/92, 1992, pp. 148-161.
"Access Control for a Modular, Extensible Storage Service", J. Bacon et al, IEEE, 0-8186-5835-5/94, 1994, pp. 108-114.
Kelter, "Discritionary Access Controls in a High-Performance Object management System", Proc IEEE Computer Society Symposium on research in Security and Privacy, 20-22 May 1991, pp. 288-299, May 22, 1991.
Pernul et al, "A Multilevel Secure Relational Data Model Based on Views", PROC Seventh Annual Computer Security Applications Conference, 2-6 Dec. 1991, pp. 166-177, Dec. 6, 1991.
Kang et al, "An Integrated Access Control in Heterogeneous Distributed Database Systems", IEEE Region 10 Conference, Tencon 92, 11-13 Nov. 1992, pp. 222-226, Nov. 13, 1992.
Bacon et al, "Access Control for a Modular, Extensible Storage Service", PROC First International Workshop on Services in Distributed and Networked Environments, 27-28 Jun. 1994, pp. 108-114, Jun. 28, 1994.
Bsaibes Mounir Emile
Kells Timothy Roger
Amsbury Wayne
Carwell Robert M.
International Business Machines - Corporation
LandOfFree
System and method for managing arbitrary subsets of access contr does not yet have a rating. At this time, there are no reviews or comments for this patent.
If you have personal experience with System and method for managing arbitrary subsets of access contr, we encourage you to share that experience with our LandOfFree.com community. Your opinion is very important and System and method for managing arbitrary subsets of access contr will most certainly appreciate the feedback.
Profile ID: LFUS-PAI-O-1807949