Information security – Policy
Reexamination Certificate
2011-04-05
2011-04-05
Zand, Kambiz (Department: 2434)
Information security
Policy
Reexamination Certificate
active
07921452
ABSTRACT:
A method of defining policies for controlling access to resources of a system. Authorization requirements for the system are modeled to obtain a model expressing each of a plurality of access control policies as a constraint. From the model is generated a single policy set in an authorization markup language that captures the requirements. This method can be used to define role-based access control policies in a format that can be adapted for input to a variety of access control mechanisms. This generative approach to access control design allows maintenance to be performed at the requirements level.
REFERENCES:
patent: 6023765 (2000-02-01), Kuhn
patent: 6324647 (2001-11-01), Bowman-Amuah
patent: 6640307 (2003-10-01), Viets et al.
patent: 7340469 (2008-03-01), Alghathbar et al.
patent: 7590698 (2009-09-01), Cooley
patent: 2002/0002577 (2002-01-01), Garg et al.
patent: 2004/0093518 (2004-05-01), Feng et al.
patent: 2004/0193909 (2004-09-01), Chang et al.
patent: 2005/0166260 (2005-07-01), Betts et al.
patent: 2006/0090131 (2006-04-01), Kumagai
patent: WO 01/33349 (2001-05-01), None
patent: WO 02/101975 (2002-12-01), None
patent: WO 2005/009003 (2005-01-01), None
Johnson, M. et al., KAoS Semantic Policy and Domain Services: An Application of DAML to Web Services-Based Grid Architectures; Proceedings of the AAMAS 03 Workshop on Web Services and Agent-Based Engineering; Melbourne, Australia; 2003.
Suri, N., et al., DAML-based Policy Enforcement for Semantic Data Transformation and Filtering in Multi-agent Systems; Proceedings of the Autonomous Agents and Multi-Agent Systems Conference (AAMAS 2003); Melbourne, Australia; New York, NY: ACM Press; 2003.
Tonti, G., et al., Semantic Web Languages for Policy Representation and Reasoning: A Comparison of KAoS, Rei, and Ponder; Submitted to the International Semantic Web Conference (ISWC 03); Sanibel Island, Florida; 2003.
Uszok, A., et al., KAoS Policy and Domain Services: Toward a Description-Logic Approach to Policy Representation, Deconfliction, and Enforcement; Proceedings of Policy 2003; Como, Italy, in press; 2003.
Uszok, A., et al., DAML Reality Check: A Case Study of KAoS Domain and Policy Services; Submitted to the International Semantic Web Conference (ISWC 03); Sanibel Island, Florida; 2003.
Adda et al., MceTech, Jan. 19, 2005.
Hannover et al., Rule-based Policy Specification: State of the Art and Future Work, 2004.
Damianou et al., A Survey of Policy Specification Approaches, Apr. 2002.
XACML, Aug. 23, 2005.
Unified Modeling Language, Aug. 23, 2005.
Ray et al., Using UML to Visualize Role-Based Access Control Constraints, 2004.
IBM Rational Software Modeler, Oct. 2004.
Ferraiolo et al., Role Based Access Control, Aug. 23, 2005.
White Papers and Business Guides, Aug. 23, 2005.
Acevedo et al., Enterprise Security Applications of Partition Rule Based Access Control (PRBAC), Aug. 23, 2005.
Manish Verma, XML Security: Control information access with XACML, Aug. 23, 2005.
Ridlon Stephen A.
Robinson Richard V.
Tjelle James P.
Williamson Keith
Harness & Dickey & Pierce P.L.C.
The Boeing Company
Wyszynski Aubrey H
Zand Kambiz
LandOfFree
Defining consistent access control policies does not yet have a rating. At this time, there are no reviews or comments for this patent.
If you have personal experience with Defining consistent access control policies, we encourage you to share that experience with our LandOfFree.com community. Your opinion is very important and Defining consistent access control policies will most certainly appreciate the feedback.
Profile ID: LFUS-PAI-O-2695250