JP2024538626A - リソースプリンシパルまたはサービスプリンシパルとしてのアプリケーション - Google Patents

リソースプリンシパルまたはサービスプリンシパルとしてのアプリケーション Download PDF

Info

Publication number
JP2024538626A
JP2024538626A JP2024519653A JP2024519653A JP2024538626A JP 2024538626 A JP2024538626 A JP 2024538626A JP 2024519653 A JP2024519653 A JP 2024519653A JP 2024519653 A JP2024519653 A JP 2024519653A JP 2024538626 A JP2024538626 A JP 2024538626A
Authority
JP
Japan
Prior art keywords
token
identity
entity
access
request
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Pending
Application number
JP2024519653A
Other languages
English (en)
Japanese (ja)
Other versions
JP2024538626A5 (https=
Inventor
ウィルソン,グレッグ・アラン
エルメンシャウィ,アイマン・モハメド・アリー・ハッサン
ナガラジャ,ギリシュ
タマナ,ベンカタ・ラマ・プラサド
コール,ゲイリー・フィリップ
Original Assignee
オラクル・インターナショナル・コーポレイション
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Priority claimed from US17/953,175 external-priority patent/US12316762B2/en
Application filed by オラクル・インターナショナル・コーポレイション filed Critical オラクル・インターナショナル・コーポレイション
Publication of JP2024538626A publication Critical patent/JP2024538626A/ja
Publication of JP2024538626A5 publication Critical patent/JP2024538626A5/ja
Pending legal-status Critical Current

Links

Images

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/08Network architectures or network communication protocols for network security for authentication of entities
    • H04L63/0807Network architectures or network communication protocols for network security for authentication of entities using tickets, e.g. Kerberos
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/10Network architectures or network communication protocols for network security for controlling access to devices or network resources
    • H04L63/105Multiple levels of security
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/08Network architectures or network communication protocols for network security for authentication of entities
    • H04L63/0884Network architectures or network communication protocols for network security for authentication of entities by delegation of authentication, e.g. a proxy authenticates an entity to be authenticated on behalf of this entity vis-à-vis an authentication entity
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/12Applying verification of the received information

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Security & Cryptography (AREA)
  • Computer Hardware Design (AREA)
  • Computing Systems (AREA)
  • General Engineering & Computer Science (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Storage Device Security (AREA)
JP2024519653A 2021-09-30 2022-09-27 リソースプリンシパルまたはサービスプリンシパルとしてのアプリケーション Pending JP2024538626A (ja)

Applications Claiming Priority (7)

Application Number Priority Date Filing Date Title
US202163250980P 2021-09-30 2021-09-30
US202163250992P 2021-09-30 2021-09-30
US63/250,992 2021-09-30
US63/250,980 2021-09-30
US17/953,175 US12316762B2 (en) 2021-09-30 2022-09-26 Applications as resource principals or service principals
US17/953,175 2022-09-26
PCT/US2022/044894 WO2023055734A1 (en) 2021-09-30 2022-09-27 Applications as resource principals or service principals

Publications (2)

Publication Number Publication Date
JP2024538626A true JP2024538626A (ja) 2024-10-23
JP2024538626A5 JP2024538626A5 (https=) 2025-05-01

Family

ID=83995658

Family Applications (1)

Application Number Title Priority Date Filing Date
JP2024519653A Pending JP2024538626A (ja) 2021-09-30 2022-09-27 リソースプリンシパルまたはサービスプリンシパルとしてのアプリケーション

Country Status (3)

Country Link
EP (1) EP4409841A1 (https=)
JP (1) JP2024538626A (https=)
WO (1) WO2023055734A1 (https=)

Families Citing this family (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
EP4462730A1 (en) * 2023-05-09 2024-11-13 Bayerische Motoren Werke Aktiengesellschaft Method for token management for a vehicle service, computer program, and server
US12500889B2 (en) 2023-09-15 2025-12-16 Oracle International Corporation Secure resource access management using stacked resource principal identities
WO2025058663A1 (en) * 2023-09-15 2025-03-20 Oracle International Corporation Nested resource identity management for cloud resources
US12137145B1 (en) * 2023-09-15 2024-11-05 Oracle International Corporation Nested resource identity management for cloud resources

Family Cites Families (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US9043886B2 (en) * 2011-09-29 2015-05-26 Oracle International Corporation Relying party platform/framework for access management infrastructures
US11121873B2 (en) * 2019-02-08 2021-09-14 Microsoft Technology Licensing, Llc System and method for hardening security between web services using protected forwarded access tokens

Also Published As

Publication number Publication date
WO2023055734A1 (en) 2023-04-06
EP4409841A1 (en) 2024-08-07

Similar Documents

Publication Publication Date Title
US12058264B2 (en) Techniques for using signed nonces to secure cloud shells
US12316762B2 (en) Applications as resource principals or service principals
JP2024538626A (ja) リソースプリンシパルまたはサービスプリンシパルとしてのアプリケーション
US12273343B2 (en) Techniques for dynamically assigning client credentials to an application
US12413569B2 (en) Single sign-on between 2 independent states
EP4409843B1 (en) External identity provider as a domain resource
JP2025118833A (ja) クラウドシェルのインスタンスにわたってデータを永続化するための技法
US12438733B2 (en) Authorizing requests for access credentials, for accessing cloud resources, based on successful stateless validation of digital certificates
WO2025122326A1 (en) Issuing delegate credentials for accessing target resources
US20230097515A1 (en) Combined authorization for entities within a domain
US20260106875A1 (en) Ephemeral privileged access workstation
US20240346129A1 (en) Authorization brokering
US20230098641A1 (en) Single logout
CN118077173A (zh) 应用作为资源主体或服务主体
CN117751554A (zh) 作为域资源的外部身份提供者

Legal Events

Date Code Title Description
A521 Request for written amendment filed

Free format text: JAPANESE INTERMEDIATE CODE: A523

Effective date: 20250422

A621 Written request for application examination

Free format text: JAPANESE INTERMEDIATE CODE: A621

Effective date: 20250422

A977 Report on retrieval

Free format text: JAPANESE INTERMEDIATE CODE: A971007

Effective date: 20260423