WO2007039865A3 - System and/or method for authentication and/or authorization - Google Patents

System and/or method for authentication and/or authorization Download PDF

Info

Publication number
WO2007039865A3
WO2007039865A3 PCT/IB2006/053586 IB2006053586W WO2007039865A3 WO 2007039865 A3 WO2007039865 A3 WO 2007039865A3 IB 2006053586 W IB2006053586 W IB 2006053586W WO 2007039865 A3 WO2007039865 A3 WO 2007039865A3
Authority
WO
WIPO (PCT)
Prior art keywords
authorization
authentication
application program
access
authenticating
Prior art date
Application number
PCT/IB2006/053586
Other languages
French (fr)
Other versions
WO2007039865A2 (en
Inventor
Doron Grinstein
Original Assignee
Disney Entpr Inc
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Disney Entpr Inc filed Critical Disney Entpr Inc
Publication of WO2007039865A2 publication Critical patent/WO2007039865A2/en
Publication of WO2007039865A3 publication Critical patent/WO2007039865A3/en

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/10Network architectures or network communication protocols for network security for controlling access to devices or network resources
    • H04L63/105Multiple levels of security
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/60Protecting data
    • G06F21/62Protecting access to data via a platform, e.g. using keys or access control rules
    • G06F21/629Protecting access to data via a platform, e.g. using keys or access control rules to features or functions of an application
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L67/00Network arrangements or protocols for supporting network services or applications
    • H04L67/01Protocols
    • H04L67/02Protocols based on web technology, e.g. hypertext transfer protocol [HTTP]

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Security & Cryptography (AREA)
  • General Engineering & Computer Science (AREA)
  • Theoretical Computer Science (AREA)
  • Computer Hardware Design (AREA)
  • Signal Processing (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Software Systems (AREA)
  • Health & Medical Sciences (AREA)
  • General Physics & Mathematics (AREA)
  • Physics & Mathematics (AREA)
  • Computing Systems (AREA)
  • General Health & Medical Sciences (AREA)
  • Bioethics (AREA)
  • Stored Programmes (AREA)
  • Collating Specific Patterns (AREA)
  • Storage Device Security (AREA)

Abstract

The subject matter disclosed herein relates to authenticating (20) an identity of users (54) desiring access to an application program (12) and determining whether an authenticated user is authorized to access one or more aspects of the application program.
PCT/IB2006/053586 2005-10-04 2006-10-02 System and/or method for authentication and/or authorization WO2007039865A2 (en)

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
US11/243,828 2005-10-04
US11/243,828 US8166404B2 (en) 2005-10-04 2005-10-04 System and/or method for authentication and/or authorization

Publications (2)

Publication Number Publication Date
WO2007039865A2 WO2007039865A2 (en) 2007-04-12
WO2007039865A3 true WO2007039865A3 (en) 2009-04-16

Family

ID=37903420

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/IB2006/053586 WO2007039865A2 (en) 2005-10-04 2006-10-02 System and/or method for authentication and/or authorization

Country Status (2)

Country Link
US (2) US8166404B2 (en)
WO (1) WO2007039865A2 (en)

Families Citing this family (41)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US8997246B2 (en) * 2005-10-04 2015-03-31 Disney Enterprises, Inc. System and/or method for authentication and/or authorization via a network
US7877469B2 (en) * 2006-02-01 2011-01-25 Samsung Electronics Co., Ltd. Authentication and authorization for simple network management protocol (SNMP)
US7912922B2 (en) * 2006-07-31 2011-03-22 Oracle International Corporation Globally unique instance identification
CN101187965B (en) * 2006-11-16 2010-12-15 思科技术公司 Filtering of access to data object
US8732800B1 (en) * 2007-03-26 2014-05-20 Jerry Askew Systems and methods for centralized management of policies and access controls
EP1988451A1 (en) * 2007-05-04 2008-11-05 Deutsche Thomson OHG Method for generating a set of machine-interpretable instructions for presenting media content to a user
US8032935B2 (en) * 2007-06-29 2011-10-04 Microsoft Corporation Security synchronization services
US10417586B2 (en) * 2007-08-31 2019-09-17 Red Hat, Inc. Attaching ownership to data
US20090063416A1 (en) * 2007-08-31 2009-03-05 Norman Lee Faus Methods and systems for tagging a variety of applications
WO2009092399A1 (en) * 2008-01-24 2009-07-30 Siemens Aktiengesellschaft Field device and method of operation thereof
US20090282345A1 (en) * 2008-05-07 2009-11-12 Christopher Smith Interaction between web pages and local applications
US9009790B2 (en) * 2010-09-11 2015-04-14 At&T Intellectual Property I, L.P. Association of multiple public user identifiers to disparate applications in an end-user's device
US8819168B2 (en) 2010-12-14 2014-08-26 Microsoft Corporation Link expansion service
US10032164B2 (en) * 2010-12-16 2018-07-24 Paypal, Inc. Systems and methods for authenticating payments over a network
WO2013032426A1 (en) * 2011-08-26 2013-03-07 Hewlett-Packard Development Company, L.P. Managing access to a network
US8214904B1 (en) 2011-12-21 2012-07-03 Kaspersky Lab Zao System and method for detecting computer security threats based on verdicts of computer users
US8209758B1 (en) * 2011-12-21 2012-06-26 Kaspersky Lab Zao System and method for classifying users of antivirus software based on their level of expertise in the field of computer security
US8214905B1 (en) * 2011-12-21 2012-07-03 Kaspersky Lab Zao System and method for dynamically allocating computing resources for processing security information
JP6066586B2 (en) * 2012-05-22 2017-01-25 キヤノン株式会社 Information processing system, control method thereof, and program thereof
US9529629B2 (en) 2012-12-20 2016-12-27 Bank Of America Corporation Computing resource inventory system
US9189644B2 (en) 2012-12-20 2015-11-17 Bank Of America Corporation Access requests at IAM system implementing IAM data model
US9537892B2 (en) * 2012-12-20 2017-01-03 Bank Of America Corporation Facilitating separation-of-duties when provisioning access rights in a computing system
US10204170B2 (en) 2012-12-21 2019-02-12 Highspot, Inc. News feed
US9727618B2 (en) 2012-12-21 2017-08-08 Highspot, Inc. Interest graph-powered feed
US10055418B2 (en) * 2014-03-14 2018-08-21 Highspot, Inc. Narrowing information search results for presentation to a user
US20140298243A1 (en) * 2013-03-29 2014-10-02 Alcatel-Lucent Usa Inc. Adjustable gui for displaying information from a database
US9710434B2 (en) 2013-12-10 2017-07-18 Highspot, Inc. Skim preview
CN103684789B (en) * 2013-12-14 2017-01-04 中国航空工业集团公司第六三一研究所 The identity identifying method based on XML of onboard networks service system application
US9569634B1 (en) * 2013-12-16 2017-02-14 Amazon Technologies, Inc. Fine-grained structured data store access using federated identity management
US9984310B2 (en) 2015-01-23 2018-05-29 Highspot, Inc. Systems and methods for identifying semantically and visually related content
US10936713B2 (en) * 2015-12-17 2021-03-02 The Charles Stark Draper Laboratory, Inc. Techniques for metadata processing
US10235176B2 (en) 2015-12-17 2019-03-19 The Charles Stark Draper Laboratory, Inc. Techniques for metadata processing
US10140443B2 (en) * 2016-04-13 2018-11-27 Vmware, Inc. Authentication source selection
CN107330307A (en) * 2017-07-16 2017-11-07 成都牵牛草信息技术有限公司 A kind of form data operating right authorization method
KR102453740B1 (en) 2018-02-02 2022-10-12 더 차레스 스타크 드레이퍼 래보레이토리, 인코포레이티드 Systems and methods for policy enforcement processing
WO2019152792A1 (en) 2018-02-02 2019-08-08 Dover Microsystems, Inc. Systems and methods for policy linking and/or loading for secure initialization
TW201945971A (en) 2018-04-30 2019-12-01 美商多佛微系統公司 Systems and methods for checking safety properties
WO2020097177A1 (en) 2018-11-06 2020-05-14 Dover Microsystems, Inc. Systems and methods for stalling host processor
WO2020132012A1 (en) 2018-12-18 2020-06-25 Dover Microsystems, Inc. Systems and methods for data lifecycle protection
US11477182B2 (en) * 2019-05-07 2022-10-18 International Business Machines Corporation Creating a credential dynamically for a key management protocol
CN113452687B (en) * 2021-06-24 2022-12-09 中电信量子科技有限公司 Method and system for encrypting sent mail based on quantum security key

Citations (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20040049702A1 (en) * 1999-03-16 2004-03-11 Novell, Inc. Secure intranet access
US6766458B1 (en) * 2000-10-03 2004-07-20 Networks Associates Technology, Inc. Testing a computer system

Family Cites Families (38)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US5991877A (en) * 1997-04-03 1999-11-23 Lockheed Martin Corporation Object-oriented trusted application framework
US6621505B1 (en) * 1997-09-30 2003-09-16 Journee Software Corp. Dynamic process-based enterprise computing system and method
US6014666A (en) * 1997-10-28 2000-01-11 Microsoft Corporation Declarative and programmatic access control of component-based server applications using roles
US6202066B1 (en) * 1997-11-19 2001-03-13 The United States Of America As Represented By The Secretary Of Commerce Implementation of role/group permission association using object access type
US6158010A (en) * 1998-10-28 2000-12-05 Crosslogix, Inc. System and method for maintaining security in a distributed computer network
US6920455B1 (en) * 1999-05-19 2005-07-19 Sun Microsystems, Inc. Mechanism and method for managing service-specified data in a profile service
US6487646B1 (en) * 2000-02-29 2002-11-26 Maxtor Corporation Apparatus and method capable of restricting access to a data storage device
US7185192B1 (en) * 2000-07-07 2007-02-27 Emc Corporation Methods and apparatus for controlling access to a resource
EP1350167A4 (en) * 2000-11-16 2007-10-24 Dlj Long Term Invest Corp System and method for application-level security
JP2005500617A (en) * 2001-08-14 2005-01-06 ヒューマナ インコーポレイテッド Web-based security with access control to data and resources
US20030114175A1 (en) * 2001-12-10 2003-06-19 Exton Glenn Andrew Computing device with functional profiles
EP1333386A1 (en) * 2002-01-08 2003-08-06 Sap Ag Providing web page for executing tasks by user, with data object
US7016919B2 (en) * 2002-03-29 2006-03-21 Agilent Technologies, Inc. Enterprise framework and applications supporting meta-data and data traceability requirements
US7234064B2 (en) * 2002-08-16 2007-06-19 Hx Technologies, Inc. Methods and systems for managing patient authorizations relating to digital medical data
US20040110119A1 (en) * 2002-09-03 2004-06-10 Riconda John R. Web-based knowledge management system and method for education systems
US7310677B1 (en) * 2002-12-20 2007-12-18 Sap Portals Israel Ltd. Resolver service for making decisions at run-time in a componentized system
US7366460B2 (en) * 2003-01-23 2008-04-29 Dexterra, Inc. System and method for mobile data update
US7810036B2 (en) * 2003-02-28 2010-10-05 Bea Systems, Inc. Systems and methods for personalizing a portal
US7237227B2 (en) * 2003-06-30 2007-06-26 Siebel Systems, Inc. Application user interface template with free-form layout
US7908248B2 (en) * 2003-07-22 2011-03-15 Sap Ag Dynamic meta data
US7146482B2 (en) * 2003-11-25 2006-12-05 International Business Machines Corporation Memory mapped input/output emulation
US7546640B2 (en) * 2003-12-10 2009-06-09 International Business Machines Corporation Fine-grained authorization by authorization table associated with a resource
US20050267789A1 (en) * 2004-05-25 2005-12-01 Anthony Satyadas Portal generation for industry specific business roles
US7552420B1 (en) * 2004-09-01 2009-06-23 Intuit Inc. Externally defined application configuration
US20060117388A1 (en) * 2004-11-18 2006-06-01 Nelson Catherine B System and method for modeling information security risk
US7831570B2 (en) * 2004-12-30 2010-11-09 Oracle International Corporation Mandatory access control label security
US7814075B2 (en) * 2004-12-30 2010-10-12 Oracle International Corporation Dynamic auditing
US7814076B2 (en) * 2004-12-30 2010-10-12 Oracle International Corporation Data vault
US7593942B2 (en) * 2004-12-30 2009-09-22 Oracle International Corporation Mandatory access control base
EP1688817A1 (en) * 2005-02-03 2006-08-09 Sun Microsystems France S.A. Method and apparatus for requestor sensitive role membership lookup
US7793284B2 (en) * 2005-03-25 2010-09-07 Microsoft Corporation Role based server installation and configuration
US7877780B2 (en) * 2005-04-01 2011-01-25 Parasoft Corporation System and method for enforcing functionality in computer software through policies
US8635094B2 (en) * 2005-06-03 2014-01-21 International Business Machines Corporation System and method for dynamically configuring user interface components of a collaborative space based on mapping rules and user roles
US7571473B1 (en) * 2005-06-10 2009-08-04 Sprint Communications Company L.P. Identity management system and method
US7676831B2 (en) * 2005-09-08 2010-03-09 International Business Machines Corporation Role-based access control management for multiple heterogeneous application components
US8677329B2 (en) * 2009-06-03 2014-03-18 Apple Inc. Methods and apparatuses for a compiler server
US8402547B2 (en) * 2010-03-14 2013-03-19 Virtual Forge GmbH Apparatus and method for detecting, prioritizing and fixing security defects and compliance violations in SAP® ABAP™ code
US8683430B2 (en) * 2011-01-07 2014-03-25 International Business Machines Corporation Synchronizing development code and deployed executable versioning within distributed systems

Patent Citations (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20040049702A1 (en) * 1999-03-16 2004-03-11 Novell, Inc. Secure intranet access
US6766458B1 (en) * 2000-10-03 2004-07-20 Networks Associates Technology, Inc. Testing a computer system

Also Published As

Publication number Publication date
US8166404B2 (en) 2012-04-24
US20120117612A1 (en) 2012-05-10
US20070079384A1 (en) 2007-04-05
US8910048B2 (en) 2014-12-09
WO2007039865A2 (en) 2007-04-12

Similar Documents

Publication Publication Date Title
WO2007039865A3 (en) System and/or method for authentication and/or authorization
WO2007039874A3 (en) System and/or method for role-based authorization
WO2007039873A3 (en) System and/or method for class-based authorization
WO2007039866A3 (en) System and/or method for authentication and/or authorization via a network
WO2001077792A3 (en) System and method for authenticating a user
WO2003001324A3 (en) Authorization services with external authentication
WO2007092651A3 (en) Trusted host platform
WO2003065169A3 (en) Access system utilizing multiple factor identification and authentication
WO2007118239A3 (en) Authentication service for facilitating access to services
WO2003100544A3 (en) Method for authenticating a user to a service of a service provider
WO2006039365A3 (en) Method and system of authentication on an open network
WO2002039237A3 (en) Method and system for web-based cross-domain single-sign-on authentication
PL363770A1 (en) Method and system designed to authenticate user for sub-location of network location
EP1544780A4 (en) Authentication system
WO2007017878A3 (en) Extended one-time password method and apparatus
MY148705A (en) Method and system for securely provisioning a client device
WO2005096701A3 (en) System and method for enabling authorization of a network device using attribute certificates
EP1691523B8 (en) System and method for user access control to content in a network
PL1810481T3 (en) Improved access to domain
WO2004068283A3 (en) A method and apparatus for biometric authentication
CA2576489A1 (en) System and method for validating a user of an account using a wireless device
EP1847941A3 (en) Method and system afor resetting passwords
WO2006077551A3 (en) Private and controlled ownership sharing
WO2005020002A3 (en) System, method, apparatus and computer program product for facilitating digital communications
AU2003244758A1 (en) Biometric authentication system

Legal Events

Date Code Title Description
121 Ep: the epo has been informed by wipo that ep was designated in this application
NENP Non-entry into the national phase

Ref country code: DE

122 Ep: pct application non-entry in european phase

Ref document number: 06809465

Country of ref document: EP

Kind code of ref document: A2