CN110427744A - A kind of identity management method and system for supporting service security label - Google Patents
A kind of identity management method and system for supporting service security label Download PDFInfo
- Publication number
- CN110427744A CN110427744A CN201910536199.2A CN201910536199A CN110427744A CN 110427744 A CN110427744 A CN 110427744A CN 201910536199 A CN201910536199 A CN 201910536199A CN 110427744 A CN110427744 A CN 110427744A
- Authority
- CN
- China
- Prior art keywords
- user
- service security
- label
- identity
- service
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Granted
Links
Classifications
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/30—Authentication, i.e. establishing the identity or authorisation of security principals
- G06F21/31—User authentication
- G06F21/33—User authentication using certificates
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/08—Network architectures or network communication protocols for network security for authentication of entities
- H04L63/0823—Network architectures or network communication protocols for network security for authentication of entities using certificates
Landscapes
- Engineering & Computer Science (AREA)
- Computer Security & Cryptography (AREA)
- Computer Hardware Design (AREA)
- General Engineering & Computer Science (AREA)
- Theoretical Computer Science (AREA)
- Computing Systems (AREA)
- Computer Networks & Wireless Communication (AREA)
- Signal Processing (AREA)
- Software Systems (AREA)
- Physics & Mathematics (AREA)
- General Physics & Mathematics (AREA)
- Management, Administration, Business Operations System, And Electronic Commerce (AREA)
Abstract
The present invention relates to a kind of identity management method for supporting service security to mark and systems.This method comprises: in addition to the information such as the identity information of the typing user, validity period of certificate, also configuring service security label when user's application for registration identity;Then service security label and the identity information of user are bound;After user completes authentication, the addition service security label into the authentication information or certification bill for returning to related system, related system is marked according to the service security that authentication information or certification bill inquiry obtain user.The present invention provides a kind of methods of management by synchronization customer service security attribute during Identity Management, so that existing identity management system supports service security label, using the service security attribute of shared service under network environment and resource as a part of identity information and user identity binding;User can provide the service security label of user after carrying out authentication for related system, thus the unified and act of authorization of the specification user in each system.
Description
Technical field
The present invention relates to a kind of identity management method more particularly to a kind of Identity Management sides based on service security label
Method belongs to field of computer information security.
Background technique
Identity Management and authentication techniques are to protect an important technology of information security, mainly use user information at present
The methods of library, letter of identity, Attribute certificate are managed the identity and associated user's attribute information of user.But traditional identity
Management system does not manage service security attribute information of the user in not homologous ray generally, these information often by related system from
Row management revests user by related system after user logs in.In a network environment, this to lack service security information
Identity Management mode is difficult to support the licensing mode of sorts of systems formation unified standard in network environment, is unfavorable for according to shared clothes
The service security attribute of business and resource carries out standardized administration to its act of authorization, it is difficult to which comprehensive understanding user is had in network
Service security attribute and its actual relationship with service, resource authorization, be difficult to establish unified user safety management of overall importance
View simultaneously supports that authorization improper to resource or user's abnormal movement are effectively analyzed.
Summary of the invention
The problems such as service security attribute management is lacked in existing identity management system, the purpose of the present invention is to provide
A kind of method provides and pacifies comprising business for related application and system for adding simultaneously management business safety label information for user
Subscriber identity information including all mark supports application and system to be based on customer service safety label information and carry out to related resource
Authorization, thus the unified and act of authorization of the specification user in each system.
To achieve the goals above, the present invention provides a kind of identity management method for supporting service security to mark, the party
Method the following steps are included:
Step 1: management customer service safety label.When user's application for registration identity, such as application user account or application
When letter of identity, in addition to the information such as the identity information of the typing user, validity period of certificate, the service security for configuring the user is also needed
Label, the label show the service security attributes such as the security level of user, business classification.
Step 2: binding service security label.Identity management system has audited user related information, establishes user identity
When, service security label is bound with subscriber identity information.This step can be realized by 4 kinds of modes: mode 1, by service security
In label insertion user identity certificate;Mode 2, will be in the insertion of service security label and the associated Attribute certificate of letter of identity;Side
Service security is marked the identity information library of the user in write-in identity management system by formula 3;Mode 4 writes service security label
In the hardware such as the usbKey of access customer or other media.
Step 3: customer service safety label is provided.After user completes authentication to certain system, in addition to providing general body
Outside part information, the service security label of the user is added into authentication information or certification bill, and supports other systems according to recognizing
It demonstrate,proves information or authenticates the service security label that bill inquiry obtains user.Wherein, authentication information, certification bill refer to authentication
That transmits in the process carries the information or bill of user identity, attribute etc..Bill is authenticated it can be appreciated that being authentication information
It is a kind of.
To achieve the above object, the present invention also provides a kind of identity management systems for supporting service security to mark, mainly
Including user's mark management module, label relating module:
The user's mark management module mainly realizes the management of customer service safety label, and user is in application for registration identity
When, it is marked by the service security that the module configures user, or the service security label of user is changed.Relevant information is examined
After core passes through, by customer service safety label and user identity binding.
The label relating module mainly after user completes authentication, to the authentication information for returning to related system or
It authenticates and adds customer service safety label in bill, and service support related system is provided and is looked into according to authentication information or certification bill
Ask the service security label for obtaining user.
The beneficial effects of the present invention are:
The identity management method and system of support service security label of the invention, during providing a kind of Identity Management
The method of management by synchronization customer service security attribute, so that existing identity management system supports service security label, by network rings
The a part of the service security attribute of shared service and resource as identity information under border, with user identity binding.User carries out
After authentication, the service security label of user can be provided for related system, so that unified and specification user is in each system
The act of authorization, and can effectively analyze resource it is improper authorization or user's abnormal movement situation.
Detailed description of the invention
Fig. 1 is the basic flow chart for the identity management method that support service security of the invention marks;
Fig. 2 is the basic block diagram for the identity management system that support service security of the invention marks.
Specific embodiment
In order to make the foregoing objectives, features and advantages of the present invention clearer and more comprehensible, below in conjunction with attached drawing to the present invention
Preferred embodiment be illustrated, it should be understood that embodiment described herein is merely to illustrate and explain the present invention, and is not had to
It is of the invention in limiting.
The basic flow chart of the identity management method of support service security label of the invention referring to Figure 1, below will ginseng
Fig. 1 is examined to be described in detail the identity identifying method of support service security label of the invention:
1. service security marks
Service security marks M for a multi-component system comprising multiple business security attribute, M=<C, G, and F>.Wherein C is peace
Full rank;G is multiple service security attribute giSet, G={ g1,g2,…gn, giIt can be class of service, working group, angle
The service security attribute such as color, environmental requirement;F is operation controlled attribute fjSet, F={ f1,f2,…fm, fjIt can be read-write
The operation generic attributes such as control, print control, imprinting control, copy control.
The service security of the information objects such as data (resource) is denoted as M (r)=< Cr, Gr, Fr>, user, application, process
The service security of equal system objects (main body) is denoted as M (s)=< Cs, Gs>.Between body mark M (s) and resource mark M (r)
Relationship there are two types of: dominance relation with it is not comparable.It marks M (s) to dominate label M (r), works as Cs≥CrAndWe are denoted as M
(s) >=M (r) indicates that main body can dominate object.It, can not between them if dominance relation is not present between M (s) and M (r)
Than main body haves no right to dominate object.IfThen main body should be according to the concrete operations controlled attribute f that the label includesjLimitation
Corresponding operating is carried out to resource.
2. configuring the service security label of user
When user's application for registration user identity, except general subscriber identity information is submitted, such as essential information (User ID, use
Family name, validity period of certificate), outside the information such as association attributes, also need the service security label of configuration user, be denoted as M (u)=< Cu,
Gu>, show the service security attribute such as security level, class of service of user.
3. the service security of user bound marks
Customer service safety label M (u) and subscriber identity information are bound.Wherein, it can realize and tie up at least through 4 kinds of modes
It is fixed:
Mode 1, by service security label M (u) insertion user identity certificate, service security is marked M (u) by such method
It is signed and issued in a user identity certificate with subscriber identity information, realizes that service security label M (u) is tied up with subscriber identity information
It is fixed.
Service security label M (u) is embedded into the associated Attribute certificate of letter of identity, is signing and issuing identity card by mode 2
When book, while Attribute certificate is signed and issued, realizes that service security label M (u) and subscriber identity information are bound.
Mode 3 is realized in the identity information library of the user in service security label M (u) write-in identity management system
Service security marks M (u) and subscriber identity information to bind.
Service security label M (u) is written in the hardware such as the usbKey of user or other media, and realizes business by mode 4
Safety label M (u) is bound with subscriber identity information in medium.
4. providing the service security label of user
For aforesaid way 1, when user carries out authentication, after authenticate successfully, can by the letter of identity of reading user,
Customer service safety label is added into the authentication information or certification bill of return, obtains the service security label M of the user
(u)。
For aforesaid way 2, when user carries out authentication, after authenticate successfully, can by the Attribute certificate of reading user,
Customer service safety label is added into the authentication information or certification bill of return, obtains the service security label M of the user
(u)。
For aforesaid way 3, when user carries out authentication, after authenticate successfully, can by access identity management system, to
Customer service safety label is added in the authentication information or certification bill of return, obtains service security label M (u) of the user.
It,, can be by reading the hardware such as usbKey after authenticating successfully when user carries out authentication for aforesaid way 4
Or other media, customer service safety label is added into the authentication information or certification bill of return, obtains the business of the user
Safety label M (u).
Further, it is also possible to which the label correlation inquiry service provided by access identity management system, obtains specific user's
Service security marks M (u).
In the present embodiment, when user carries out identity registration application, the service security label of the user is configured, by user information
It marks and binds with service security, when user carries out authentication to certain system, which can get the service security of the user
Mark information is realized and is accessed control and control based on customer service safety label to its related object.
The basic block diagram of the identity management system of support service security label of the invention refers to Fig. 2, below will ginseng
Fig. 2 is examined, the identity management system of support service security label of the invention is described in detail, identity management system mainly includes using
Family annotation management module, label relating module:
1. user's mark management module
The service security label that user's mark management module mainly realizes configuration, manages user.User u is in application for registration body
When part, M (u) is marked by the service security that the module configures user, or change to service security label M (u) of user.
Relevant information after the approval, by customer service safety label M (u) and user identity binding.According to the difference of implementation, this
Module at least 4 kinds of design methods:
Method 1, by service security label M (u) insertion user identity certificate, service security is marked M (u) by such method
It is signed and issued in a user identity certificate with subscriber identity information, realizes that service security label M (u) is tied up with subscriber identity information
It is fixed.
Service security label M (u) is embedded into the associated Attribute certificate of letter of identity, is signing and issuing identity card by method 2
When book, while Attribute certificate is signed and issued, realizes that service security label M (u) and subscriber identity information are bound.
Method 3 realizes business in the information bank of the user in service security label M (u) write-in identity management system
Safety label M (u) and subscriber identity information are bound.
Service security label M (u) is written in the hardware such as the usbKey of user or other media, and realizes business by method 4
Safety label M (u) is bound with subscriber identity information in medium.
2. marking relating module
The label relating module mainly user u complete authentication after, to the authentication information for returning to related system
Or corresponding customer service safety label M (u) is added in certification bill, and provide label correlation inquiry service, support phase relation
System marks M (u) according to the service security that authentication information or certification bill inquiry obtain user.
In the present embodiment, by user's mark management module, configuration, the service security mark information for managing user are realized
Service security mark information and subscriber identity information are bound, are authentication information or certification bill addition by label relating module
Corresponding service security label, and label correlation inquiry service is provided, support related system to inquire user's according to authentication information
Service security label.
Although disclosing particular content of the invention for the purpose of illustration, implementing algorithm and attached drawing, its object is to help
Understand the contents of the present invention and implements accordingly, but it will be appreciated by those skilled in the art that: it is of the invention and appended not departing from
Spirit and scope of the claims in, various substitutions, changes and modifications are all possible.The present invention should not be limited to this explanation
Book most preferred embodiment and attached drawing disclosure of that, the scope of protection of present invention are with the range that claims define
It is quasi-.
Claims (10)
1. a kind of identity management method for supporting service security to mark, which comprises the following steps:
When user's application for registration identity, the service security label of the user is configured;
Service security label and the identity information of the user are bound;
After the user completes authentication, the user is added into the authentication information or certification bill for returning to related system
Service security label, the related system obtains the service security mark of the user according to authentication information or certification bill inquiry
Note.
2. the method according to claim 1, wherein the business of the user of the related system based on acquisition
Safety label accesses control and control to its related object.
3. the method according to claim 1, wherein pacifying when user's application for registration identity except the business is configured
Other than all mark, the other information of the typing user is gone back, the other information includes: identity information, validity period of certificate.
4. the method according to claim 1, wherein the service security is pacified labeled as one comprising multiple business
The multi-component system of full attribute, is expressed as M=<C, and G, F>, wherein M is that service security marks, and C is security level, and G is that multiple business are pacified
The set of full attribute;F is the set for operating controlled attribute.
5. according to the method described in claim 4, it is characterized in that, the service security of resource is denoted as M (r)=< Cr, Gr, Fr
>, system object, that is, main body service security is denoted as M (s)=<Cs, Gs>, there are two types of the relationships between M (s) and M (r): branch
With relationship with it is not comparable;If Co≥CrAndIt is denoted as M (o) >=M (r), then M (o) is marked to dominate label M (r), indicates master
Body can dominate object;Not comparable between them if dominance relation is not present between M (o) and M (r), main body haves no right to dominate visitor
Body;IfThen main body, that is, system object should carry out resource according to the concrete operations controlled attribute limitation that the label includes
Corresponding operating.
6. the method according to claim 1, wherein the business is pacified using any one in following manner
All mark and the identity information of the user are bound: mode 1 marks service security in insertion user identity certificate;Mode 2,
It will be in the insertion of service security label and the associated Attribute certificate of letter of identity;Service security is marked write-in Identity Management by mode 3
The identity information library of the user in system;Service security is marked the usbKey hardware or other media of write-in user by mode 4
In.
7. according to the method described in claim 6, it is characterized in that, be directed to mode 1, user carry out authentication when, certification at
Service security label M (u) of the user is obtained after function by reading the letter of identity of user;For mode 2, user carries out identity
When certification, service security label M (u) of the user is obtained after authenticating successfully by reading the Attribute certificate of user;For mode
3, when user carries out authentication, the service security for obtaining the user after authenticating successfully by accessing identity management system marks M
(u);For mode 4, when user carries out authentication, by reading usbKey hardware or other media after authenticating successfully, obtain
The service security of the user marks M (u).
8. a kind of identity management system for supporting service security to mark characterized by comprising
User's mark management module is responsible for realizing the management of customer service safety label, and user passes through in application for registration identity
The module configures the service security label of user, or changes to the service security label of user, and customer service is safe
Label and the identity information of user are bound;
Relating module is marked, is responsible for after user completes authentication, to the authentication information or certification ticket for returning to related system
According to middle addition customer service safety label, and label correlation inquiry service support related system is provided according to authentication information or certification
Bill inquiry obtains the service security label of user.
9. system according to claim 8, which is characterized in that the service security is pacified labeled as one comprising multiple business
The multi-component system of full attribute, is expressed as M=<C, and G, F>, wherein M is that service security marks, and C is security level, and G is that multiple business are pacified
The set of full attribute;F is the set for operating controlled attribute.
10. system according to claim 9, which is characterized in that the service security of resource is denoted as M (r)=< Cr, Gr,
Fr>, system object, that is, main body service security is denoted as M (s)=<Cs, Gs>, there are two types of the relationships between M (s) and M (r):
Dominance relation with it is not comparable;If Co≥CrAndIt is denoted as M (o) >=M (r), then M (o) is marked to dominate label M (r), is indicated
Main body can dominate object;If dominance relation is not present between M (o) and M (r), not comparable between them, main body haves no right to dominate
Object;IfThen main body, that is, system object should according to the limitation of concrete operations controlled attribute that the label includes to resource into
Row corresponding operating.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201910536199.2A CN110427744B (en) | 2019-06-20 | 2019-06-20 | Identity management method and system supporting service security label |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201910536199.2A CN110427744B (en) | 2019-06-20 | 2019-06-20 | Identity management method and system supporting service security label |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN110427744A true CN110427744A (en) | 2019-11-08 |
| CN110427744B CN110427744B (en) | 2021-07-13 |
Family
ID=68408779
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201910536199.2A Active CN110427744B (en) | 2019-06-20 | 2019-06-20 | Identity management method and system supporting service security label |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN110427744B (en) |
Cited By (1)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN110932869A (en) * | 2019-12-02 | 2020-03-27 | 北京合游时空科技有限公司 | Method, device and equipment for certificate real-name authentication |
Citations (12)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101197026A (en) * | 2007-12-20 | 2008-06-11 | 浙江大学 | Design and storage method for resource and its access control policy in high-performance access control system |
| CN101448002A (en) * | 2008-12-12 | 2009-06-03 | 北京大学 | Method and device for accessing digital resources |
| CN101571897A (en) * | 2009-06-04 | 2009-11-04 | 浙江大学 | Method for controlling access permission of massive objects in computer system |
| CN102420690A (en) * | 2010-09-28 | 2012-04-18 | 上海可鲁系统软件有限公司 | Fusion and authentication method and system of identity and authority in industrial control system |
| CN102882686A (en) * | 2012-10-09 | 2013-01-16 | 北京深思洛克软件技术股份有限公司 | Authentication method and authentication device |
| CN103248485A (en) * | 2013-04-24 | 2013-08-14 | 中国南方电网有限责任公司 | Security label-based power secondary system access control method and system |
| CN103647772A (en) * | 2013-12-12 | 2014-03-19 | 浪潮电子信息产业股份有限公司 | Method for carrying out trusted access controlling on network data package |
| CN103745161A (en) * | 2013-12-23 | 2014-04-23 | 东软集团股份有限公司 | Method and device for controlling access security |
| CN104504340A (en) * | 2014-12-25 | 2015-04-08 | 国家电网公司 | Power system security tag based mandatory access control method |
| CN105357201A (en) * | 2015-11-12 | 2016-02-24 | 中国科学院信息工程研究所 | Access control method and system for object cloud storage |
| US20170053133A1 (en) * | 2002-09-04 | 2017-02-23 | International Business Machines Corporation | Row-level security in a relational database management system |
| CN108270782A (en) * | 2018-01-15 | 2018-07-10 | 中国科学院信息工程研究所 | A kind of access control method and system based on safety label |
-
2019
- 2019-06-20 CN CN201910536199.2A patent/CN110427744B/en active Active
Patent Citations (12)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US20170053133A1 (en) * | 2002-09-04 | 2017-02-23 | International Business Machines Corporation | Row-level security in a relational database management system |
| CN101197026A (en) * | 2007-12-20 | 2008-06-11 | 浙江大学 | Design and storage method for resource and its access control policy in high-performance access control system |
| CN101448002A (en) * | 2008-12-12 | 2009-06-03 | 北京大学 | Method and device for accessing digital resources |
| CN101571897A (en) * | 2009-06-04 | 2009-11-04 | 浙江大学 | Method for controlling access permission of massive objects in computer system |
| CN102420690A (en) * | 2010-09-28 | 2012-04-18 | 上海可鲁系统软件有限公司 | Fusion and authentication method and system of identity and authority in industrial control system |
| CN102882686A (en) * | 2012-10-09 | 2013-01-16 | 北京深思洛克软件技术股份有限公司 | Authentication method and authentication device |
| CN103248485A (en) * | 2013-04-24 | 2013-08-14 | 中国南方电网有限责任公司 | Security label-based power secondary system access control method and system |
| CN103647772A (en) * | 2013-12-12 | 2014-03-19 | 浪潮电子信息产业股份有限公司 | Method for carrying out trusted access controlling on network data package |
| CN103745161A (en) * | 2013-12-23 | 2014-04-23 | 东软集团股份有限公司 | Method and device for controlling access security |
| CN104504340A (en) * | 2014-12-25 | 2015-04-08 | 国家电网公司 | Power system security tag based mandatory access control method |
| CN105357201A (en) * | 2015-11-12 | 2016-02-24 | 中国科学院信息工程研究所 | Access control method and system for object cloud storage |
| CN108270782A (en) * | 2018-01-15 | 2018-07-10 | 中国科学院信息工程研究所 | A kind of access control method and system based on safety label |
Non-Patent Citations (3)
| Title |
|---|
| LIJIE GAO ET AL.: "A fine-grained access control model with secure label on data resource", 《PROCEEDINGS OF 2013 3RD INTERNATIONAL CONFERENCE ON COMPUTER SCIENCE AND NETWORK TECHNOLOGY》 * |
| 彭勇等: "一种基于安全标记的多租户访问控制方法", 《中兴通讯技术》 * |
| 范艳芳等: "支持协作的强制访问控制模型", 《计算机研究与发展》 * |
Cited By (1)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN110932869A (en) * | 2019-12-02 | 2020-03-27 | 北京合游时空科技有限公司 | Method, device and equipment for certificate real-name authentication |
Also Published As
| Publication number | Publication date |
|---|---|
| CN110427744B (en) | 2021-07-13 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| Al-Khouri | PKI in government digital identity management systems | |
| US9094215B2 (en) | Method and system for digital rights management of documents | |
| US8839383B2 (en) | Authentification broker for the securities industry | |
| DE60023340T2 (en) | METHOD FOR THE ELECTRONIC STORAGE AND RECOVERY OF AUTHENTICATED ORIGINAL DOCUMENTS | |
| CN102812473A (en) | Executable Identity Based File Access | |
| KR102131206B1 (en) | Method, service server and authentication server for providing corporate-related services, supporting the same | |
| KR20190107601A (en) | Method and system for the generation of user-initiated federated identities | |
| CN102298756A (en) | Method for ensuring security of computer lottery trade information | |
| CN113610528A (en) | Block chain-based management system, method, device and storage medium | |
| CN109034987A (en) | A kind of tax administration method and system based on block chain | |
| US11550892B2 (en) | Presentation of a verifiable credential having usage data | |
| CA3147372C (en) | Electronic invoice management method, device, computer apparatus, and storage medium | |
| JP5050151B2 (en) | Electronic seal authentication accounting audit system | |
| US20230177174A1 (en) | Encrypted verifiable credentials | |
| CN110427744A (en) | A kind of identity management method and system for supporting service security label | |
| CN104951923A (en) | Electronic signature system based on combination of PKI technology and anti-counterfeit technology of physical seal | |
| Rössler | Giving an interoperable e-ID solution: Using foreign e-IDs in Austrian e-Government | |
| Hardjono et al. | Core identities for future transaction systems | |
| CN110647756B (en) | Online examination management system based on blockchain and CP-ABE and application method thereof | |
| CN101105827A (en) | Method for binding security mechanism of application software and large database | |
| CN103839205A (en) | Network invoice and application system thereof | |
| JP6009521B2 (en) | User identification system, method and program | |
| JP2005293404A (en) | Electronic seal authentication auditing system and method | |
| US20230088787A1 (en) | User information management system, user information management method, user agent and program | |
| Ludwig et al. | MIERA: Method for inter-enterprise role-based authorization |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| GR01 | Patent grant | ||
| GR01 | Patent grant |