CN102984199B - 资源访问授权 - Google Patents

资源访问授权 Download PDF

Info

Publication number
CN102984199B
CN102984199B CN201210335896.XA CN201210335896A CN102984199B CN 102984199 B CN102984199 B CN 102984199B CN 201210335896 A CN201210335896 A CN 201210335896A CN 102984199 B CN102984199 B CN 102984199B
Authority
CN
China
Prior art keywords
application
user
access
application identities
described application
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Active
Application number
CN201210335896.XA
Other languages
English (en)
Chinese (zh)
Other versions
CN102984199A (zh
Inventor
O.V.奥巴桑约
S.R.戈登
A.拉杜茨基
P.J.哈林
A.D.奥斯科夫
J.D.维加斯
D.C.基钦纳
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Microsoft Technology Licensing LLC
Original Assignee
Microsoft Technology Licensing LLC
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Microsoft Technology Licensing LLC filed Critical Microsoft Technology Licensing LLC
Publication of CN102984199A publication Critical patent/CN102984199A/zh
Application granted granted Critical
Publication of CN102984199B publication Critical patent/CN102984199B/zh
Active legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Classifications

    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/30Authentication, i.e. establishing the identity or authorisation of security principals
    • G06F21/31User authentication
    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/60Protecting data
    • G06F21/62Protecting access to data via a platform, e.g. using keys or access control rules
    • G06F21/6218Protecting access to data via a platform, e.g. using keys or access control rules to a system of files or objects, e.g. local or distributed file system or database
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/08Network architectures or network communication protocols for network security for authentication of entities
    • H04L63/0807Network architectures or network communication protocols for network security for authentication of entities using tickets, e.g. Kerberos
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/10Network architectures or network communication protocols for network security for controlling access to devices or network resources
    • H04L63/101Access control lists [ACL]

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Security & Cryptography (AREA)
  • Computer Hardware Design (AREA)
  • Theoretical Computer Science (AREA)
  • General Engineering & Computer Science (AREA)
  • Physics & Mathematics (AREA)
  • Signal Processing (AREA)
  • Software Systems (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • General Physics & Mathematics (AREA)
  • Computing Systems (AREA)
  • Databases & Information Systems (AREA)
  • Health & Medical Sciences (AREA)
  • Bioethics (AREA)
  • General Health & Medical Sciences (AREA)
  • Information Transfer Between Computers (AREA)
  • Storage Device Security (AREA)
CN201210335896.XA 2011-09-12 2012-09-12 资源访问授权 Active CN102984199B (zh)

Applications Claiming Priority (3)

Application Number Priority Date Filing Date Title
US13/230460 2011-09-12
US13/230,460 2011-09-12
US13/230,460 US9183361B2 (en) 2011-09-12 2011-09-12 Resource access authorization

Publications (2)

Publication Number Publication Date
CN102984199A CN102984199A (zh) 2013-03-20
CN102984199B true CN102984199B (zh) 2016-04-20

Family

ID=47831097

Family Applications (1)

Application Number Title Priority Date Filing Date
CN201210335896.XA Active CN102984199B (zh) 2011-09-12 2012-09-12 资源访问授权

Country Status (6)

Country Link
US (1) US9183361B2 (enExample)
EP (1) EP2756444B1 (enExample)
JP (1) JP5992524B2 (enExample)
KR (1) KR101951973B1 (enExample)
CN (1) CN102984199B (enExample)
WO (1) WO2013039813A1 (enExample)

Families Citing this family (47)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US9635028B2 (en) * 2011-08-31 2017-04-25 Facebook, Inc. Proxy authentication
US9183361B2 (en) * 2011-09-12 2015-11-10 Microsoft Technology Licensing, Llc Resource access authorization
US9407626B2 (en) * 2011-09-29 2016-08-02 Red Hat, Inc. Security token management service hosting in application server
US9787655B2 (en) * 2011-12-09 2017-10-10 Airwatch Llc Controlling access to resources on a network
US9438598B2 (en) * 2013-02-15 2016-09-06 Verizon Patent And Licensing Inc. Securely updating information identifying services accessible via keys
US20140282032A1 (en) * 2013-03-15 2014-09-18 Microsoft Corporation Dynamically configuring user experiences with action uniform resource identifiers
CN103220289A (zh) * 2013-04-15 2013-07-24 北京京东尚科信息技术有限公司 基于web应用的资源验证系统和方法
JP6198477B2 (ja) * 2013-06-21 2017-09-20 キヤノン株式会社 権限移譲システム、認可サーバーシステム、制御方法、およびプログラム
US20150026078A1 (en) * 2013-07-18 2015-01-22 Google Inc. Generating and providing an authorization indication in relation to a media content item
US9160731B2 (en) * 2013-09-06 2015-10-13 International Business Machines Corporation Establishing a trust relationship between two product systems
US9106642B1 (en) * 2013-09-11 2015-08-11 Amazon Technologies, Inc. Synchronizing authentication sessions between applications
KR102165820B1 (ko) * 2013-12-23 2020-10-14 한국전자통신연구원 사물간 웹 네트워크를 통한 자원 접근 제어 방법
CN111917797B (zh) * 2014-04-29 2022-11-25 推特公司 应用间委托的认证
US9894162B2 (en) * 2014-06-05 2018-02-13 Dropbox, Inc. Communication protocols for an online content management system
JP6428011B2 (ja) * 2014-07-16 2018-11-28 富士ゼロックス株式会社 セキュリティ管理装置及びプログラム
US20160080293A1 (en) * 2014-09-12 2016-03-17 Microsoft Corporation Accounts Control
KR102337990B1 (ko) * 2014-09-18 2021-12-13 삼성전자주식회사 권한 설정 토큰을 이용하는 전자 장치
EP3198960B1 (en) * 2014-09-26 2020-05-06 Intel Corporation Context-based resource access mediation
US9762676B2 (en) * 2014-09-26 2017-09-12 Intel Corporation Hardware resource access systems and techniques
WO2016061819A1 (zh) * 2014-10-24 2016-04-28 华为技术有限公司 一种访问资源的方法及装置
US9697349B2 (en) 2014-10-26 2017-07-04 Microsoft Technology Licensing, Llc Access blocking for data loss prevention in collaborative environments
KR102297476B1 (ko) * 2014-12-05 2021-09-02 삼성전자주식회사 응용 프로그램의 자원을 보호하는 방법 및 장치
EP3206357A1 (de) * 2016-02-09 2017-08-16 Secunet Security Networks Aktiengesellschaft Einsatz eines nicht lokalen kryptographie-verfahrens nach authentifizierung
KR101718454B1 (ko) * 2016-04-18 2017-03-21 (주)케이사인 캐시를 이용한 사용자 접근 제어 시스템 및 방법
CN107666505B (zh) * 2016-07-29 2020-09-15 京东方科技集团股份有限公司 对资源接入进行控制的方法和装置
US20180091490A1 (en) * 2016-09-23 2018-03-29 Apple Inc. Authentication framework for a client of a remote database
KR102588973B1 (ko) 2016-10-24 2023-10-12 로비 가이드스, 인크. 2-팩터 인증을 사용하여 미디어 자산에 대한 액세스를 제어하기 위한 시스템 및 방법
US10924467B2 (en) 2016-11-04 2021-02-16 Microsoft Technology Licensing, Llc Delegated authorization for isolated collections
JP2020525900A (ja) * 2017-06-20 2020-08-27 ベイジン ディディ インフィニティ テクノロジー アンド ディベロップメント カンパニー リミティッド オンライン・ツー・オフライン・サービスに関連するデータ処理のためのシステムおよび方法
GB2565270B (en) * 2017-07-03 2022-08-31 Arm Ip Ltd Secure server and compute nodes
CN107454086B (zh) * 2017-08-11 2019-11-08 杭州邦睿科技有限公司 一种验证网关的自动化处理方法
US11075925B2 (en) * 2018-01-31 2021-07-27 EMC IP Holding Company LLC System and method to enable component inventory and compliance in the platform
CN109040088B (zh) * 2018-08-16 2022-02-25 腾讯科技(深圳)有限公司 认证信息传输方法、密钥管理客户端及计算机设备
EP3641259A1 (de) * 2018-10-15 2020-04-22 Siemens Aktiengesellschaft Vorrichtung und verfahren zur prüfung von eigenschaften von ressourcen
US11599422B2 (en) 2018-10-16 2023-03-07 EMC IP Holding Company LLC System and method for device independent backup in distributed system
US11582229B2 (en) 2019-06-01 2023-02-14 Apple Inc. Systems and methods of application single sign on
US12299107B2 (en) 2019-06-01 2025-05-13 Apple Inc. Systems and methods for proximity single sign-on
US11226983B2 (en) * 2019-06-18 2022-01-18 Microsoft Technology Licensing, Llc Sub-scope synchronization
US11783022B2 (en) 2020-06-01 2023-10-10 Apple Inc. Systems and methods of account verification upgrade
US11425125B2 (en) 2020-06-24 2022-08-23 Google Llc Shared resource identification
US11562052B2 (en) 2020-08-31 2023-01-24 Procore Technologies, Inc. Computing system and method for verification of access permissions
CN112511569B (zh) * 2021-02-07 2021-05-11 杭州筋斗腾云科技有限公司 网络资源访问请求的处理方法、系统及计算机设备
CN114357476A (zh) * 2021-12-17 2022-04-15 深圳市优必选科技股份有限公司 授权方法、装置、电子设备及存储介质
US20240314116A1 (en) * 2023-03-15 2024-09-19 Jpmorgan Chase Bank, N.A. Systems and methods for restricted resource access management
US12189755B2 (en) * 2023-04-24 2025-01-07 Halcyon Tech, Inc. Automated system for program identity-driven program access control
US20240430248A1 (en) * 2023-06-21 2024-12-26 Microsoft Technology Licensing, Llc Secure communication channel injection for authentication across hosts with n-level deep applications
US12126623B1 (en) * 2024-04-30 2024-10-22 Citibank, N.A. Aggregated authorization token

Citations (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN1478223A (zh) * 2001-02-23 2004-02-25 �ʼҷ����ֵ������޹�˾ 验证方法和数据传输系统
CN101331735A (zh) * 2005-12-16 2008-12-24 国际商业机器公司 用于扩展验证方法的方法和系统

Family Cites Families (39)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US5889952A (en) 1996-08-14 1999-03-30 Microsoft Corporation Access check system utilizing cached access permissions
US5805803A (en) * 1997-05-13 1998-09-08 Digital Equipment Corporation Secure web tunnel
US6275944B1 (en) 1998-04-30 2001-08-14 International Business Machines Corporation Method and system for single sign on using configuration directives with respect to target types
US6205480B1 (en) 1998-08-19 2001-03-20 Computer Associates Think, Inc. System and method for web server user authentication
US7150038B1 (en) 2000-04-06 2006-12-12 Oracle International Corp. Facilitating single sign-on by using authenticated code to access a password store
US7464162B2 (en) 2000-07-10 2008-12-09 Oracle International Corporation Systems and methods for testing whether access to a resource is authorized based on access information
US7305701B2 (en) 2001-04-30 2007-12-04 Microsoft Corporation Methods and arrangements for controlling access to resources based on authentication method
US7174383B1 (en) 2001-08-31 2007-02-06 Oracle International Corp. Method and apparatus to facilitate single sign-on services in a hosting environment
US7610390B2 (en) 2001-12-04 2009-10-27 Sun Microsystems, Inc. Distributed network identity
GB2418757B (en) 2003-07-07 2006-11-08 Progress Software Corp Multi-platform single sign-on database driver
US20050015490A1 (en) * 2003-07-16 2005-01-20 Saare John E. System and method for single-sign-on access to a resource via a portal server
JP4617763B2 (ja) 2003-09-03 2011-01-26 ソニー株式会社 機器認証システム、機器認証サーバ、端末機器、機器認証方法、および機器認証プログラム
US7191288B2 (en) 2004-02-24 2007-03-13 Sun Microsystems, Inc. Method and apparatus for providing an application on a smart card
US7509497B2 (en) 2004-06-23 2009-03-24 Microsoft Corporation System and method for providing security to an application
CA2574883C (en) 2004-06-25 2013-12-17 Accenture Global Services Gmbh Single sign-on with common access card
BRPI0513195A (pt) 2004-07-09 2008-04-29 Matsushita Electric Industrial Co Ltd sistemas para administrar autenticação e autorização de usuário, e para suportar o usuário, métodos para administrar autenticação e autorização de usuário, para acessar serviços de múltiplas redes, para o controlador de autenticação processar uma mensagem de pedido de autenticação, selecionar a combinação de controladores de autenticação do resultado de busca, autenticar um usuário, e descobrir o caminho a um domìnio tendo relação empresarial com o domìnio doméstico, para o controlador de autorização processar a mensagem de pedido de autorização de serviço, e executar autorização de serviço, para um controlador de autenticação e autorização executar autenticação e autorização de serviço, para proteger o sìmbolo de usuário, e para a autoridade de controle de acesso no domìnio doméstico do usuário prover ao controlador de autenticação uma informação de perfil de assinatura limitada do usuário, para alcançar autenticação e autorização rápidas, e para alcançar registro único para acessar múltiplas redes, e, formatos para informação de capacidade de assinatura, para um sìmbolo de usuário, para um domìnio tendo relação empresarial com o domìnio doméstico de um usuário para pedir afirmação de autenticação e de autorização, e para um terminal de usuário indicar suas credenciais para acessar múltiplas redes em múltiplos domìnios administrativos
US7810153B2 (en) * 2005-01-28 2010-10-05 Microsoft Corporation Controlling execution of computer applications
US7779034B2 (en) 2005-10-07 2010-08-17 Citrix Systems, Inc. Method and system for accessing a remote file in a directory structure associated with an application program executing locally
US7761911B2 (en) 2005-11-21 2010-07-20 Oracle International Corporation Method and apparatus for facilitating single sign-on
US7657639B2 (en) 2006-07-21 2010-02-02 International Business Machines Corporation Method and system for identity provider migration using federated single-sign-on operation
US8458775B2 (en) 2006-08-11 2013-06-04 Microsoft Corporation Multiuser web service sign-in client side components
EP2055077B1 (en) 2006-08-22 2017-04-05 InterDigital Technology Corporation Method and apparatus for providing trusted single sign-on access to applications and internet-based services
US20100153569A1 (en) 2007-03-09 2010-06-17 Ghost, Inc. System and Method for a Virtual Hosted Operating System
US8990911B2 (en) 2008-03-30 2015-03-24 Emc Corporation System and method for single sign-on to resources across a network
US8141140B2 (en) 2008-05-23 2012-03-20 Hsbc Technologies Inc. Methods and systems for single sign on with dynamic authentication levels
US8225390B2 (en) * 2008-06-27 2012-07-17 Microsoft Corporation Licensing protected content to application sets
EP2353125A4 (en) 2008-11-03 2013-06-12 Veritrix Inc USER AUTHENTICATION FOR SOCIAL NETWORKS
WO2010082095A2 (en) * 2009-01-13 2010-07-22 Human Interface Security Ltd Secure handling of identification tokens
EP2396742A2 (en) 2009-02-10 2011-12-21 Uniloc Usa, Inc. Web content access using a client device identifier
US20100211772A1 (en) 2009-02-16 2010-08-19 Bjorn Johansson Collaborative Reconciliation of Application Trustworthiness
US8505084B2 (en) 2009-04-06 2013-08-06 Microsoft Corporation Data access programming model for occasionally connected applications
US8312272B1 (en) * 2009-06-26 2012-11-13 Symantec Corporation Secure authentication token management
US9490984B2 (en) 2009-09-14 2016-11-08 Interdigital Patent Holdings, Inc. Method and apparatus for trusted authentication and logon
US9262392B2 (en) 2009-09-29 2016-02-16 Paypal, Inc. User information population
US8898759B2 (en) * 2010-08-24 2014-11-25 Verizon Patent And Licensing Inc. Application registration, authorization, and verification
WO2012109751A1 (en) * 2011-02-15 2012-08-23 Research In Motion Limited System and method for identity management for mobile devices
US20120227098A1 (en) 2011-03-03 2012-09-06 Microsoft Corporation Sharing user id between operating system and application
US9418216B2 (en) 2011-07-21 2016-08-16 Microsoft Technology Licensing, Llc Cloud service authentication
US9183361B2 (en) * 2011-09-12 2015-11-10 Microsoft Technology Licensing, Llc Resource access authorization

Patent Citations (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN1478223A (zh) * 2001-02-23 2004-02-25 �ʼҷ����ֵ������޹�˾ 验证方法和数据传输系统
CN101331735A (zh) * 2005-12-16 2008-12-24 国际商业机器公司 用于扩展验证方法的方法和系统

Non-Patent Citations (1)

* Cited by examiner, † Cited by third party
Title
The OAuth 2.0 Authorization Protocol draft-ietf-oauth-v2-16;NETWORKING GROUP E. Hammer-Lahav, Ed.;《The OAuth 2.0 Authorization Protocol https://tools.ietf.org/pdf/draft-ietf-oauth-v2-16.pdf》;20110519;第3-5页,第1.1-1.4节 *

Also Published As

Publication number Publication date
JP5992524B2 (ja) 2016-09-14
EP2756444B1 (en) 2020-08-26
JP2014526744A (ja) 2014-10-06
US9183361B2 (en) 2015-11-10
EP2756444A4 (en) 2015-04-22
KR20140068964A (ko) 2014-06-09
US20130067568A1 (en) 2013-03-14
EP2756444A1 (en) 2014-07-23
CN102984199A (zh) 2013-03-20
KR101951973B1 (ko) 2019-02-25
WO2013039813A1 (en) 2013-03-21

Similar Documents

Publication Publication Date Title
CN102984199B (zh) 资源访问授权
JP6940212B1 (ja) アプリケーション連携方法、コンピュータプログラム及びアプリケーション連携システム
US11921839B2 (en) Multiple device credential sharing
CN110892672B (zh) 提供设备匿名性的密钥认证声明生成
CN107430657B (zh) 通过代理的认证
CN113141610B (zh) 将设备标识符和用户标识符相关联的设备盗窃防护
US20230230066A1 (en) Crypto Wallet Configuration Data Retrieval
US8752187B2 (en) Portable license server
CN102571629A (zh) 电子邮件信任服务
CN102685202A (zh) 在操作系统和应用之间共享用户id
CN107818258A (zh) 间接认证
US20140298486A1 (en) Granting access to digital content obtained from a third-party service
CN110574350B (zh) 执行优先生成第二因素认证的方法和系统
CN102710737A (zh) 跨平台服务通知
TW201729121A (zh) 雲端服務伺服器及用來管理一雲端服務伺服器之方法
CN102822835B (zh) 个人便携式安全网络访问系统
CN105339947A (zh) 保护反恶意软件进程
WO2018233584A1 (zh) 账户数值转移方法、装置、计算机设备及存储介质
CN107408237A (zh) 基于会议角色来引导会议加入者
WO2014035703A2 (en) Content gift techniques
JP2006031522A (ja) コンテンツ中継配信サーバ、コンテンツ中継配信コンピュータプログラム
JP4975065B2 (ja) 決済システム、決済方法、及びプログラム
TWI499288B (zh) 允許多個行動通信裝置控制同一影片解碼器的影片播放系統及相關的電腦程式產品
JPWO2007089045A1 (ja) 認証システム
JP7522787B2 (ja) 署名されたコンテンツを伝達する方法及び装置

Legal Events

Date Code Title Description
C06 Publication
PB01 Publication
C10 Entry into substantive examination
SE01 Entry into force of request for substantive examination
ASS Succession or assignment of patent right

Owner name: MICROSOFT TECHNOLOGY LICENSING LLC

Free format text: FORMER OWNER: MICROSOFT CORP.

Effective date: 20150715

C41 Transfer of patent application or patent right or utility model
TA01 Transfer of patent application right

Effective date of registration: 20150715

Address after: Washington State

Applicant after: Micro soft technique license Co., Ltd

Address before: Washington State

Applicant before: Microsoft Corp.

C14 Grant of patent or utility model
GR01 Patent grant