KR101951973B1 - 자원 액세스 허가 기법 - Google Patents

자원 액세스 허가 기법 Download PDF

Info

Publication number
KR101951973B1
KR101951973B1 KR1020147006550A KR20147006550A KR101951973B1 KR 101951973 B1 KR101951973 B1 KR 101951973B1 KR 1020147006550 A KR1020147006550 A KR 1020147006550A KR 20147006550 A KR20147006550 A KR 20147006550A KR 101951973 B1 KR101951973 B1 KR 101951973B1
Authority
KR
South Korea
Prior art keywords
application
user
access
authentication
identifier
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Active
Application number
KR1020147006550A
Other languages
English (en)
Korean (ko)
Other versions
KR20140068964A (ko
Inventor
올루데어 브이 오바산조
스티븐 알 고든
알렉산드르 라두츠키
필립 제이 할린
아타나스 디 오스코브
제레미 디 비에가스
다니엘 씨 키치너
Original Assignee
마이크로소프트 테크놀로지 라이센싱, 엘엘씨
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by 마이크로소프트 테크놀로지 라이센싱, 엘엘씨 filed Critical 마이크로소프트 테크놀로지 라이센싱, 엘엘씨
Publication of KR20140068964A publication Critical patent/KR20140068964A/ko
Application granted granted Critical
Publication of KR101951973B1 publication Critical patent/KR101951973B1/ko
Active legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Images

Classifications

    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/30Authentication, i.e. establishing the identity or authorisation of security principals
    • G06F21/31User authentication
    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/60Protecting data
    • G06F21/62Protecting access to data via a platform, e.g. using keys or access control rules
    • G06F21/6218Protecting access to data via a platform, e.g. using keys or access control rules to a system of files or objects, e.g. local or distributed file system or database
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/08Network architectures or network communication protocols for network security for authentication of entities
    • H04L63/0807Network architectures or network communication protocols for network security for authentication of entities using tickets, e.g. Kerberos
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/10Network architectures or network communication protocols for network security for controlling access to devices or network resources
    • H04L63/101Access control lists [ACL]

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Security & Cryptography (AREA)
  • Computer Hardware Design (AREA)
  • Theoretical Computer Science (AREA)
  • General Engineering & Computer Science (AREA)
  • Physics & Mathematics (AREA)
  • Signal Processing (AREA)
  • Software Systems (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • General Physics & Mathematics (AREA)
  • Computing Systems (AREA)
  • Databases & Information Systems (AREA)
  • Health & Medical Sciences (AREA)
  • Bioethics (AREA)
  • General Health & Medical Sciences (AREA)
  • Information Transfer Between Computers (AREA)
  • Storage Device Security (AREA)
KR1020147006550A 2011-09-12 2012-09-10 자원 액세스 허가 기법 Active KR101951973B1 (ko)

Applications Claiming Priority (3)

Application Number Priority Date Filing Date Title
US13/230,460 2011-09-12
US13/230,460 US9183361B2 (en) 2011-09-12 2011-09-12 Resource access authorization
PCT/US2012/054387 WO2013039813A1 (en) 2011-09-12 2012-09-10 Resource access authorization

Publications (2)

Publication Number Publication Date
KR20140068964A KR20140068964A (ko) 2014-06-09
KR101951973B1 true KR101951973B1 (ko) 2019-02-25

Family

ID=47831097

Family Applications (1)

Application Number Title Priority Date Filing Date
KR1020147006550A Active KR101951973B1 (ko) 2011-09-12 2012-09-10 자원 액세스 허가 기법

Country Status (6)

Country Link
US (1) US9183361B2 (enExample)
EP (1) EP2756444B1 (enExample)
JP (1) JP5992524B2 (enExample)
KR (1) KR101951973B1 (enExample)
CN (1) CN102984199B (enExample)
WO (1) WO2013039813A1 (enExample)

Families Citing this family (47)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US9635028B2 (en) * 2011-08-31 2017-04-25 Facebook, Inc. Proxy authentication
US9183361B2 (en) * 2011-09-12 2015-11-10 Microsoft Technology Licensing, Llc Resource access authorization
US9407626B2 (en) * 2011-09-29 2016-08-02 Red Hat, Inc. Security token management service hosting in application server
US9787655B2 (en) * 2011-12-09 2017-10-10 Airwatch Llc Controlling access to resources on a network
US9438598B2 (en) * 2013-02-15 2016-09-06 Verizon Patent And Licensing Inc. Securely updating information identifying services accessible via keys
US20140282032A1 (en) * 2013-03-15 2014-09-18 Microsoft Corporation Dynamically configuring user experiences with action uniform resource identifiers
CN103220289A (zh) * 2013-04-15 2013-07-24 北京京东尚科信息技术有限公司 基于web应用的资源验证系统和方法
JP6198477B2 (ja) * 2013-06-21 2017-09-20 キヤノン株式会社 権限移譲システム、認可サーバーシステム、制御方法、およびプログラム
US20150026078A1 (en) * 2013-07-18 2015-01-22 Google Inc. Generating and providing an authorization indication in relation to a media content item
US9160731B2 (en) * 2013-09-06 2015-10-13 International Business Machines Corporation Establishing a trust relationship between two product systems
US9106642B1 (en) * 2013-09-11 2015-08-11 Amazon Technologies, Inc. Synchronizing authentication sessions between applications
KR102165820B1 (ko) * 2013-12-23 2020-10-14 한국전자통신연구원 사물간 웹 네트워크를 통한 자원 접근 제어 방법
US9654461B2 (en) * 2014-04-29 2017-05-16 Twitter, Inc. Inter-application delegated authentication
US9894162B2 (en) * 2014-06-05 2018-02-13 Dropbox, Inc. Communication protocols for an online content management system
JP6428011B2 (ja) * 2014-07-16 2018-11-28 富士ゼロックス株式会社 セキュリティ管理装置及びプログラム
US20160080293A1 (en) * 2014-09-12 2016-03-17 Microsoft Corporation Accounts Control
KR102337990B1 (ko) * 2014-09-18 2021-12-13 삼성전자주식회사 권한 설정 토큰을 이용하는 전자 장치
US9762676B2 (en) * 2014-09-26 2017-09-12 Intel Corporation Hardware resource access systems and techniques
EP3198960B1 (en) 2014-09-26 2020-05-06 Intel Corporation Context-based resource access mediation
CN111030996B (zh) 2014-10-24 2021-10-15 华为技术有限公司 一种访问资源的方法及装置
US9697349B2 (en) 2014-10-26 2017-07-04 Microsoft Technology Licensing, Llc Access blocking for data loss prevention in collaborative environments
KR102297476B1 (ko) * 2014-12-05 2021-09-02 삼성전자주식회사 응용 프로그램의 자원을 보호하는 방법 및 장치
EP3206357A1 (de) * 2016-02-09 2017-08-16 Secunet Security Networks Aktiengesellschaft Einsatz eines nicht lokalen kryptographie-verfahrens nach authentifizierung
KR101718454B1 (ko) * 2016-04-18 2017-03-21 (주)케이사인 캐시를 이용한 사용자 접근 제어 시스템 및 방법
CN107666505B (zh) * 2016-07-29 2020-09-15 京东方科技集团股份有限公司 对资源接入进行控制的方法和装置
US20180091490A1 (en) * 2016-09-23 2018-03-29 Apple Inc. Authentication framework for a client of a remote database
EP3529735B1 (en) * 2016-10-24 2020-10-07 Rovi Guides, Inc. Systems and methods for controlling access to media assets using two-factor authentication
US10924467B2 (en) 2016-11-04 2021-02-16 Microsoft Technology Licensing, Llc Delegated authorization for isolated collections
CN110678892A (zh) * 2017-06-20 2020-01-10 北京嘀嘀无限科技发展有限公司 用于与线上到线下服务相关的数据处理的系统和方法
GB2565270B (en) 2017-07-03 2022-08-31 Arm Ip Ltd Secure server and compute nodes
CN107454086B (zh) * 2017-08-11 2019-11-08 杭州邦睿科技有限公司 一种验证网关的自动化处理方法
US11075925B2 (en) * 2018-01-31 2021-07-27 EMC IP Holding Company LLC System and method to enable component inventory and compliance in the platform
CN109040088B (zh) * 2018-08-16 2022-02-25 腾讯科技(深圳)有限公司 认证信息传输方法、密钥管理客户端及计算机设备
EP3641259A1 (de) * 2018-10-15 2020-04-22 Siemens Aktiengesellschaft Vorrichtung und verfahren zur prüfung von eigenschaften von ressourcen
US11599422B2 (en) 2018-10-16 2023-03-07 EMC IP Holding Company LLC System and method for device independent backup in distributed system
US12299107B2 (en) 2019-06-01 2025-05-13 Apple Inc. Systems and methods for proximity single sign-on
US11582229B2 (en) * 2019-06-01 2023-02-14 Apple Inc. Systems and methods of application single sign on
US11226983B2 (en) * 2019-06-18 2022-01-18 Microsoft Technology Licensing, Llc Sub-scope synchronization
US11783022B2 (en) 2020-06-01 2023-10-10 Apple Inc. Systems and methods of account verification upgrade
US11425125B2 (en) * 2020-06-24 2022-08-23 Google Llc Shared resource identification
US11562052B2 (en) 2020-08-31 2023-01-24 Procore Technologies, Inc. Computing system and method for verification of access permissions
CN112511569B (zh) * 2021-02-07 2021-05-11 杭州筋斗腾云科技有限公司 网络资源访问请求的处理方法、系统及计算机设备
CN114357476A (zh) * 2021-12-17 2022-04-15 深圳市优必选科技股份有限公司 授权方法、装置、电子设备及存储介质
US20240314116A1 (en) * 2023-03-15 2024-09-19 Jpmorgan Chase Bank, N.A. Systems and methods for restricted resource access management
US12189755B2 (en) * 2023-04-24 2025-01-07 Halcyon Tech, Inc. Automated system for program identity-driven program access control
US20240430248A1 (en) * 2023-06-21 2024-12-26 Microsoft Technology Licensing, Llc Secure communication channel injection for authentication across hosts with n-level deep applications
US12126623B1 (en) * 2024-04-30 2024-10-22 Citibank, N.A. Aggregated authorization token

Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
JP2006024205A (ja) 2004-06-23 2006-01-26 Microsoft Corp アプリケーションにセキュリティを提供するシステムおよび方法
US20070186112A1 (en) 2005-01-28 2007-08-09 Microsoft Corporation Controlling execution of computer applications
US20080046983A1 (en) 2006-08-11 2008-02-21 Microsoft Corporation Multiuser Web Service Sign-In Client Side Components

Family Cites Families (38)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US5889952A (en) 1996-08-14 1999-03-30 Microsoft Corporation Access check system utilizing cached access permissions
US5805803A (en) * 1997-05-13 1998-09-08 Digital Equipment Corporation Secure web tunnel
US6275944B1 (en) 1998-04-30 2001-08-14 International Business Machines Corporation Method and system for single sign on using configuration directives with respect to target types
US6205480B1 (en) 1998-08-19 2001-03-20 Computer Associates Think, Inc. System and method for web server user authentication
US7150038B1 (en) 2000-04-06 2006-12-12 Oracle International Corp. Facilitating single sign-on by using authenticated code to access a password store
US7464162B2 (en) 2000-07-10 2008-12-09 Oracle International Corporation Systems and methods for testing whether access to a resource is authorized based on access information
TW561754B (en) 2001-02-23 2003-11-11 Koninkl Philips Electronics Nv Authentication method and data transmission system
US7305701B2 (en) 2001-04-30 2007-12-04 Microsoft Corporation Methods and arrangements for controlling access to resources based on authentication method
US7174383B1 (en) 2001-08-31 2007-02-06 Oracle International Corp. Method and apparatus to facilitate single sign-on services in a hosting environment
US7610390B2 (en) 2001-12-04 2009-10-27 Sun Microsystems, Inc. Distributed network identity
US8544073B2 (en) 2003-07-07 2013-09-24 Progress Software Corporation Multi-platform single sign-on database driver
US20050015490A1 (en) * 2003-07-16 2005-01-20 Saare John E. System and method for single-sign-on access to a resource via a portal server
JP4617763B2 (ja) 2003-09-03 2011-01-26 ソニー株式会社 機器認証システム、機器認証サーバ、端末機器、機器認証方法、および機器認証プログラム
US7191288B2 (en) 2004-02-24 2007-03-13 Sun Microsystems, Inc. Method and apparatus for providing an application on a smart card
CA2574883C (en) 2004-06-25 2013-12-17 Accenture Global Services Gmbh Single sign-on with common access card
WO2006006704A2 (en) 2004-07-09 2006-01-19 Matsushita Electric Industrial Co., Ltd. System and method for managing user authentication and service authorization to achieve single-sign-on to access multiple network interfaces
US7779034B2 (en) 2005-10-07 2010-08-17 Citrix Systems, Inc. Method and system for accessing a remote file in a directory structure associated with an application program executing locally
US7761911B2 (en) 2005-11-21 2010-07-20 Oracle International Corporation Method and apparatus for facilitating single sign-on
US8006289B2 (en) 2005-12-16 2011-08-23 International Business Machines Corporation Method and system for extending authentication methods
US7657639B2 (en) 2006-07-21 2010-02-02 International Business Machines Corporation Method and system for identity provider migration using federated single-sign-on operation
TWI366375B (en) 2006-08-22 2012-06-11 Interdigital Tech Corp Method and apparatus for providing trusted single sign-on access to applications and internet-based services
WO2008111048A2 (en) 2007-03-09 2008-09-18 Ghost, Inc. System and method for browser within a web site and proxy server
US8418238B2 (en) 2008-03-30 2013-04-09 Symplified, Inc. System, method, and apparatus for managing access to resources across a network
US8185646B2 (en) 2008-11-03 2012-05-22 Veritrix, Inc. User authentication for social networks
US8141140B2 (en) 2008-05-23 2012-03-20 Hsbc Technologies Inc. Methods and systems for single sign on with dynamic authentication levels
US8225390B2 (en) * 2008-06-27 2012-07-17 Microsoft Corporation Licensing protected content to application sets
WO2010082095A2 (en) * 2009-01-13 2010-07-22 Human Interface Security Ltd Secure handling of identification tokens
US8838976B2 (en) 2009-02-10 2014-09-16 Uniloc Luxembourg S.A. Web content access using a client device identifier
US20100211772A1 (en) 2009-02-16 2010-08-19 Bjorn Johansson Collaborative Reconciliation of Application Trustworthiness
US8505084B2 (en) 2009-04-06 2013-08-06 Microsoft Corporation Data access programming model for occasionally connected applications
US8312272B1 (en) * 2009-06-26 2012-11-13 Symantec Corporation Secure authentication token management
US9490984B2 (en) 2009-09-14 2016-11-08 Interdigital Patent Holdings, Inc. Method and apparatus for trusted authentication and logon
US9262392B2 (en) 2009-09-29 2016-02-16 Paypal, Inc. User information population
US8898759B2 (en) * 2010-08-24 2014-11-25 Verizon Patent And Licensing Inc. Application registration, authorization, and verification
WO2012109751A1 (en) * 2011-02-15 2012-08-23 Research In Motion Limited System and method for identity management for mobile devices
US20120227098A1 (en) 2011-03-03 2012-09-06 Microsoft Corporation Sharing user id between operating system and application
US9418216B2 (en) 2011-07-21 2016-08-16 Microsoft Technology Licensing, Llc Cloud service authentication
US9183361B2 (en) * 2011-09-12 2015-11-10 Microsoft Technology Licensing, Llc Resource access authorization

Patent Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
JP2006024205A (ja) 2004-06-23 2006-01-26 Microsoft Corp アプリケーションにセキュリティを提供するシステムおよび方法
US20070186112A1 (en) 2005-01-28 2007-08-09 Microsoft Corporation Controlling execution of computer applications
US20080046983A1 (en) 2006-08-11 2008-02-21 Microsoft Corporation Multiuser Web Service Sign-In Client Side Components

Also Published As

Publication number Publication date
US9183361B2 (en) 2015-11-10
KR20140068964A (ko) 2014-06-09
EP2756444A4 (en) 2015-04-22
JP2014526744A (ja) 2014-10-06
CN102984199A (zh) 2013-03-20
CN102984199B (zh) 2016-04-20
WO2013039813A1 (en) 2013-03-21
JP5992524B2 (ja) 2016-09-14
EP2756444A1 (en) 2014-07-23
EP2756444B1 (en) 2020-08-26
US20130067568A1 (en) 2013-03-14

Similar Documents

Publication Publication Date Title
KR101951973B1 (ko) 자원 액세스 허가 기법
US11921839B2 (en) Multiple device credential sharing
US10666643B2 (en) End user initiated access server authenticity check
KR101929598B1 (ko) 운영체제 및 애플리케이션 사이에서 사용자 id의 공유 기법
JP6895431B2 (ja) アクセス管理のためのパスワードレス認証
US9979720B2 (en) Passwordless strong authentication using trusted devices
JP6033990B2 (ja) 単一のフレキシブルかつプラガブルOAuthサーバを備える複数のリソースサーバ、OAuth保護したREST式OAuth許諾管理サービス、およびモバイルアプリケーションシングルサインオンするOAuthサービス
US10491685B2 (en) Session transfer between resources
EP2310977B1 (en) An apparatus for managing user authentication
US20180176203A1 (en) Techniques for providing authentication information to external and embedded web browsers
KR20190091562A (ko) 공유되는 아이템 계정 선택 기법
CN110574350B (zh) 执行优先生成第二因素认证的方法和系统
HK1188502B (en) Sharing user id between operating system and application

Legal Events

Date Code Title Description
PA0105 International application

Patent event date: 20140311

Patent event code: PA01051R01D

Comment text: International Patent Application

PG1501 Laying open of application
N231 Notification of change of applicant
PN2301 Change of applicant

Patent event date: 20150715

Comment text: Notification of Change of Applicant

Patent event code: PN23011R01D

A201 Request for examination
PA0201 Request for examination

Patent event code: PA02012R01D

Patent event date: 20170817

Comment text: Request for Examination of Application

E701 Decision to grant or registration of patent right
PE0701 Decision of registration

Patent event code: PE07011S01D

Comment text: Decision to Grant Registration

Patent event date: 20181119

GRNT Written decision to grant
PR0701 Registration of establishment

Comment text: Registration of Establishment

Patent event date: 20190219

Patent event code: PR07011E01D

PR1002 Payment of registration fee

Payment date: 20190219

End annual number: 3

Start annual number: 1

PG1601 Publication of registration
PR1001 Payment of annual fee

Payment date: 20220118

Start annual number: 4

End annual number: 4

PR1001 Payment of annual fee

Payment date: 20230117

Start annual number: 5

End annual number: 5

PR1001 Payment of annual fee

Payment date: 20240130

Start annual number: 6

End annual number: 6

PR1001 Payment of annual fee

Payment date: 20250210

Start annual number: 7

End annual number: 7