CN102938043B - 授权应用对安全资源的访问 - Google Patents

授权应用对安全资源的访问 Download PDF

Info

Publication number
CN102938043B
CN102938043B CN201210507142.8A CN201210507142A CN102938043B CN 102938043 B CN102938043 B CN 102938043B CN 201210507142 A CN201210507142 A CN 201210507142A CN 102938043 B CN102938043 B CN 102938043B
Authority
CN
China
Prior art keywords
application
user
request
permission
access
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Expired - Fee Related
Application number
CN201210507142.8A
Other languages
English (en)
Chinese (zh)
Other versions
CN102938043A (zh
Inventor
R·M·霍华德
T·C·米龙
W·D·泰勒
朱韶峰
E·艾登
V·维拉拉哈万
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Microsoft Technology Licensing LLC
Original Assignee
Microsoft Technology Licensing LLC
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Microsoft Technology Licensing LLC filed Critical Microsoft Technology Licensing LLC
Publication of CN102938043A publication Critical patent/CN102938043A/zh
Application granted granted Critical
Publication of CN102938043B publication Critical patent/CN102938043B/zh
Expired - Fee Related legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Classifications

    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/60Protecting data
    • G06F21/62Protecting access to data via a platform, e.g. using keys or access control rules
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/10Network architectures or network communication protocols for network security for controlling access to devices or network resources
    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F2221/00Indexing scheme relating to security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F2221/21Indexing scheme relating to G06F21/00 and subgroups addressing additional information or applications relating to security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F2221/2141Access rights, e.g. capability lists, access control lists, access tables, access matrices

Landscapes

  • Engineering & Computer Science (AREA)
  • Theoretical Computer Science (AREA)
  • General Engineering & Computer Science (AREA)
  • Computer Security & Cryptography (AREA)
  • Computer Hardware Design (AREA)
  • General Physics & Mathematics (AREA)
  • Software Systems (AREA)
  • Physics & Mathematics (AREA)
  • Health & Medical Sciences (AREA)
  • General Health & Medical Sciences (AREA)
  • Bioethics (AREA)
  • Computing Systems (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Storage Device Security (AREA)
  • Exchange Systems With Centralized Control (AREA)
CN201210507142.8A 2011-12-01 2012-11-30 授权应用对安全资源的访问 Expired - Fee Related CN102938043B (zh)

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
US13/308,572 US9015807B2 (en) 2011-12-01 2011-12-01 Authorizing application access to secure resources
US13/308,572 2011-12-01

Publications (2)

Publication Number Publication Date
CN102938043A CN102938043A (zh) 2013-02-20
CN102938043B true CN102938043B (zh) 2016-12-21

Family

ID=47696939

Family Applications (1)

Application Number Title Priority Date Filing Date
CN201210507142.8A Expired - Fee Related CN102938043B (zh) 2011-12-01 2012-11-30 授权应用对安全资源的访问

Country Status (6)

Country Link
US (1) US9015807B2 (enExample)
EP (1) EP2786297B1 (enExample)
JP (1) JP6050374B2 (enExample)
KR (1) KR20140097274A (enExample)
CN (1) CN102938043B (enExample)
WO (1) WO2013081921A2 (enExample)

Families Citing this family (13)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US9003556B2 (en) * 2013-02-28 2015-04-07 Facebook, Inc. Techniques for in-app user data authorization
JP2014191627A (ja) * 2013-03-27 2014-10-06 Fujitsu Ltd 端末装置、情報提供方法及び情報提供プログラム
US9276928B2 (en) 2013-06-15 2016-03-01 Microsoft Corporation Sending session tokens through passive clients
CN104954330B (zh) * 2014-03-27 2018-03-16 华为软件技术有限公司 一种对数据资源进行访问的方法、装置和系统
US10069832B2 (en) * 2014-11-14 2018-09-04 Google Llc Ephemeral applications
US10341342B2 (en) * 2015-02-05 2019-07-02 Carrier Corporation Configuration data based fingerprinting for access to a resource
US10102216B2 (en) * 2015-04-21 2018-10-16 Google Llc System for associating related digital assets
US11503035B2 (en) * 2017-04-10 2022-11-15 The University Of Memphis Research Foundation Multi-user permission strategy to access sensitive information
US9836596B2 (en) 2015-07-08 2017-12-05 Google Inc. Methods and systems for controlling permission requests for applications on a computing device
WO2017008084A1 (en) * 2015-07-09 2017-01-12 Sensoriant, Inc. Method and system for creating adaptive user interfaces using user provided and controlled data
CN107103245B (zh) * 2016-02-23 2022-08-02 中兴通讯股份有限公司 文件的权限管理方法及装置
US20200028877A1 (en) * 2017-03-01 2020-01-23 Carrier Corporation A framework for access provisioning in physical access control systems
EP3751812B1 (en) * 2019-06-10 2022-10-26 Nokia Technologies Oy Resource access

Citations (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101794366A (zh) * 2010-01-26 2010-08-04 恒生电子股份有限公司 一种核心业务系统访问权限控制方法和设备
CN102238007A (zh) * 2010-04-20 2011-11-09 阿里巴巴集团控股有限公司 第三方应用获得用户的会话令牌的方法、装置及系统

Family Cites Families (20)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US6233684B1 (en) 1997-02-28 2001-05-15 Contenaguard Holdings, Inc. System for controlling the distribution and use of rendered digital works through watermaking
JPH11272769A (ja) * 1998-03-19 1999-10-08 Toshiba Corp 電子伝票承認機能を備えたコンピュータシステム及び電子伝票承認プログラムを記憶した記憶媒体
JP4177957B2 (ja) * 2000-03-22 2008-11-05 日立オムロンターミナルソリューションズ株式会社 アクセス制御システム
US7257815B2 (en) 2001-09-05 2007-08-14 Microsoft Corporation Methods and system of managing concurrent access to multiple resources
US7191469B2 (en) * 2002-05-13 2007-03-13 Green Border Technologies Methods and systems for providing a secure application environment using derived user accounts
US9621538B2 (en) 2002-07-10 2017-04-11 Hewlett-Packard Development Company, L.P. Secure resource access in a distributed environment
DE10324189A1 (de) 2003-05-28 2004-12-16 Robert Bosch Gmbh Verfahren zur Steuerung des Zugriffs auf eine Ressource einer Applikation in einer Datenverarbeitungseinrichtung
FR2856865A1 (fr) 2003-06-25 2004-12-31 France Telecom Attribution d'une autorisation d'acces a une ressource
US7650644B2 (en) 2003-11-25 2010-01-19 Sap Aktiengesellschaft Object-based access control
US7721328B2 (en) 2004-10-01 2010-05-18 Salesforce.Com Inc. Application identity design
JP4628149B2 (ja) 2005-03-14 2011-02-09 株式会社エヌ・ティ・ティ・ドコモ アクセス制御装置及びアクセス制御方法
CN100583118C (zh) * 2005-10-13 2010-01-20 株式会社Ntt都科摩 便携终端、访问控制管理装置以及访问控制管理方法
JP5090790B2 (ja) * 2006-06-07 2012-12-05 株式会社リコー 機器、ライセンス管理方法、ライセンス管理プログラム、及びライセンス管理システム
US7885900B1 (en) 2006-10-31 2011-02-08 Polaris Solutions, LLC Grant management system and method
US8856859B2 (en) 2007-02-06 2014-10-07 Blackberry Limited System and method for setting application permissions
US8387152B2 (en) 2008-06-27 2013-02-26 Microsoft Corporation Attested content protection
US20100242097A1 (en) * 2009-03-20 2010-09-23 Wavemarket, Inc. System and method for managing application program access to a protected resource residing on a mobile device
EP2529527B1 (en) 2010-01-25 2015-12-02 Nokia Solutions and Networks Oy Method for controlling access to resources
CN102200922B (zh) * 2011-04-06 2013-12-11 宇龙计算机通信科技(深圳)有限公司 应用程序安装方法和终端
US8646100B2 (en) * 2011-06-03 2014-02-04 Apple Inc. Method for executing an application in a restricted operating environment

Patent Citations (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101794366A (zh) * 2010-01-26 2010-08-04 恒生电子股份有限公司 一种核心业务系统访问权限控制方法和设备
CN102238007A (zh) * 2010-04-20 2011-11-09 阿里巴巴集团控股有限公司 第三方应用获得用户的会话令牌的方法、装置及系统

Non-Patent Citations (1)

* Cited by examiner, † Cited by third party
Title
The Effectiveness of Application Permissions;Adrienne Porter Felt et al;《Proceedings of the 2ND USENIX conference on Web application development》;20110616;第75-86页 *

Also Published As

Publication number Publication date
US9015807B2 (en) 2015-04-21
EP2786297A4 (en) 2015-08-26
JP2015505391A (ja) 2015-02-19
EP2786297A2 (en) 2014-10-08
KR20140097274A (ko) 2014-08-06
WO2013081921A3 (en) 2013-07-25
US20130145427A1 (en) 2013-06-06
WO2013081921A2 (en) 2013-06-06
EP2786297B1 (en) 2019-04-24
JP6050374B2 (ja) 2016-12-21
CN102938043A (zh) 2013-02-20

Similar Documents

Publication Publication Date Title
CN102938043B (zh) 授权应用对安全资源的访问
CN110546979B (zh) 在服务与应用之间的多级分布式访问控制
US10951661B1 (en) Secure programming interface hierarchies
US8474012B2 (en) Progressive consent
CN105917309B (zh) 确定第一租户关于第二租户的许可
US9098675B1 (en) Authorized delegation of permissions
EP1946238B1 (en) Operating system independent data management
US8776255B2 (en) Claims-aware role-based access control
CN107688485B (zh) 用于对虚拟化应用程序的基于策略的访问的方法和系统
US9338166B2 (en) System and method for a single request and single response authentication protocol
GB2540976A (en) Access control
WO2017021154A1 (en) Access control
WO2017054985A1 (en) Access control
CN102685089A (zh) 用于企业应用的可信设备声明
JP2012138078A (ja) クラウド・コンピューティング環境に保管されたデータに関するきめ細かい任意アクセス制御の有効化のための方法、システム、およびコンピュータ・プログラム
TW201636840A (zh) 資源選擇性取用權提供技術
WO2015123285A1 (en) Systems and methods for authenticating an application
US9471755B2 (en) Font protection management
KR20220132416A (ko) 연산 저장 장치의 보안 애플리케이션
US20240311464A1 (en) Registration of dynamically created packaged applications
US20120191731A1 (en) Method and System for Policy Driven Data Distribution
CN110874482A (zh) 已认证部件权限框架
US20240114029A1 (en) Methods and apparatus for identity and access management on networked machines
CN102404315B (zh) 作为服务的可信设备声明
CN119691785A (zh) 一种文档脱敏方法、装置、设备和存储介质

Legal Events

Date Code Title Description
C06 Publication
PB01 Publication
C10 Entry into substantive examination
SE01 Entry into force of request for substantive examination
ASS Succession or assignment of patent right

Owner name: MICROSOFT TECHNOLOGY LICENSING LLC

Free format text: FORMER OWNER: MICROSOFT CORP.

Effective date: 20150728

C41 Transfer of patent application or patent right or utility model
TA01 Transfer of patent application right

Effective date of registration: 20150728

Address after: Washington State

Applicant after: MICROSOFT TECHNOLOGY LICENSING, LLC

Address before: Washington State

Applicant before: Microsoft Corp.

C14 Grant of patent or utility model
GR01 Patent grant
CF01 Termination of patent right due to non-payment of annual fee

Granted publication date: 20161221

CF01 Termination of patent right due to non-payment of annual fee