Multi-Level Authentication Security Service
US-2023179998-A1 · Jun 8, 2023 · US
Systems and methods for providing secure access to a private multiaccess edge computing device via a multi-tenancy environment
US12170663B2 · US · B2
| Field | Value |
|---|---|
| Publication number | US-12170663-B2 |
| Application number | US-202217648072-A |
| Country | US |
| Kind code | B2 |
| Filing date | Jan 14, 2022 |
| Priority date | Jan 14, 2022 |
| Publication date | Dec 17, 2024 |
| Grant date | Dec 17, 2024 |
How to read this patent
A practical reading order for non-experts. Skip the full description unless you need deep technical detail.
- Title
What the patent document calls the invention.
- Abstract
A short plain-language summary of the technical disclosure.
- Assignees and inventors
Who owns or filed the patent and who is credited as inventor.
- Key dates
Filing, priority, publication, and grant dates set the timeline.
- First independent claim
The legal scope of protection — read this for what is actually claimed.
- CPC / IPC classifications
Technology tags used to group this patent with similar filings.
- Citations and related patents
Prior art links and similar publications in this corpus.
Abstract
Official abstract text for this publication.
A device may receive and store credentials identifying security levels of users for access to functionalities of an on-premises device, and may receive a credential of a user and a request to access a functionality of the on-premises device. The device may determine whether a security level of the credential matches a first security level of the credentials, and may reject the request when the security level fails to match the first security level. The device may determine, when the security level matches the first security level, whether a computing resource of the on-premises device matches a computing resource of the first security level, and may provide the user with access to the computing resource when the computing resource matches the computing resource of the first security level. The device may reject the request when the computing resource fails to match the computing resource of the first security level.
First claim
Opening claim text (preview).
What is claimed is: 1. A method, comprising: receiving, by a device, credentials identifying different security levels of users for access to functionalities of an on-premises device, wherein the different security levels include: a first security level associated with accessing computing resources of the on-premises device, a second security level associated with, when a user is authorized to access one or more of the computing resources, whether the user is authorized to access one or more operating systems, of a plurality of operating systems of the on-premises device, wherein the user is not authorized to access the plurality of operating systems when the user is not authorized to access the one or more of the computing resources, a third security level associated with, when the user is authorized to access the one or more operating systems, whether the user is authorized to access one or more virtual machine (VM) instances of a plurality of VM instances of the on-premises device, wherein the user is not authorized to access the one or more VM instances when the user is not authorized to access the operating system, and a fourth security level associated with, when the user is authorized to access the one or more VM instances, whether the user is authorized to access one or more applications of a plurality of applications of the on-premises device, wherein the user is not authorized to access the one or more applications when the user is not authorized to access the one or more VM instances; storing, by the device, the credentials in a data structure; receiving, by the device, a credential of the user and a request of the user to access a functionality of the functionalities of the on-premises device, wherein the credential of the user comprises a single credential of the user that is generated by the on-premises device for the user, wherein the credential is generated based on one of the credentials stored in the data structure; determining, by the device, that a security level of the credential matches the first security level of the one of the credentials stored in the data structure, wherein the request is rejected when the security level of the credential fails to match the first security level of the one of the credentials; determining, by the device and based on the security level of the credential matching the first security level, that a computing resource of the on-premises device, requested by the request, matches a computing resource of the first security level of the one of the credentials; and providing, by the device, the user with access to the computing resource of the on-premises device based on the computing resource of the on-premises device matching the computing resource of the first security level of the one of the credentials, wherein the request is rejected when the computing resource of the on-premises device fails to match the computing resource of the first security level of the one of the credentials, and wherein the user is not provided access a remaining set of computing resources of the computing resources of the on-premises device based on the remaining set of computing resources not being indicated by the first security level of the one of the credentials. 2. The method of claim 1 , further comprising: determining that the security level of the credential matches a second security level of the one of the credentials, wherein the user is prevented from accessing additional functionalities of the on-premises device when the security level of the credential fails to match the second security level of the one of the credentials; determining, based on the security level of the credential matching the second security level, that an operating system of the on-premises device, requested by the request, matches an operating system of the second security level of the one of the credentials; and providing the user with access to the operating system based on the operating system matching the operating system of the second security level of the one of the credentials, wherein the user is prevented from accessing the plurality of operating systems when the operating system fails to match the operating system of the second security level of the one of the credentials. 3. The method of claim 2 , wherein the request requests access to another operating system of the plurality of operating systems of the on-premises device, the method further comprising: preventing the user from accessing additional functionalities of the on-premises device based on the other operating system failing to match the operating system of the second security level of the one of the credentials. 4. The method of claim 2 , further comprising: determining that the security level matches the third security level of the one of the credentials, wherein the user is prevented from accessing additional functionalities of the on-premises device when the security level fails to match the third security level of the one of the credentials; determining, based on the security level of the credential matching the third security level of the one of the credentials, that a VM instance of the on-premises device, requested by the request, matches a VM instance of the third security level of the one of the credentials; and providing the user with access to the VM instance based on the VM instance matching the VM instance of the third security level of the one of the credentials. 5. The method of claim 4 , wherein the user is prevented from accessing additional functionalities of the on-premises device when the VM instance fails to match the VM instance of the third security level of the one of the credentials. 6. The method of claim 4 , further comprising: determining that the security level of the credential matches the fourth security level of the one of the credentials, wherein the user is prevented from accessing additional functionalities of the on-premises device when the security level of the credential fails to match the fourth security level of the one of the credentials; determining, based on the security level of the credential matching the fourth security level, that an application of the on-premises device, requested by the request, matches an application of the fourth security level of the one of the credentials; and providing the user with access to the application based on the application matching the application of the fourth security level of the one of the credentials. 7. The method of claim 6 , wherein the user is prevented from accessing additional functionalities of the on-premises device when the application fails to match the application of the fourth security level of the one of the credentials. 8. A device, comprising: one or more processors configured to: receive credentials identifying different security levels of users for access to functionalities of an on-premises device, wherein the different security levels include: a first security level associated with accessing computing resources of the on-premises device, a second security level associated with, when a user is authorized to access one or more of the computing resources, whether the user is authorized to access one or more operating systems, of a plurality of operating systems of the on-premises device, wherein the user is not authorized to access the plurality of operating systems when the user is not authorized to access the one or more of the computing resources, a third security level associated with, when the user is authorized to access the one or more operating systems, whether the user is authorized to access one or more virtual machine (VM) instances of a plurality of VM instances of the on-premises device, wherein the user
Assignees
Inventors
Classifications
Access security · CPC title
Entity profiles · CPC title
- H04L63/105Primary
Multiple levels of security · CPC title
for managing network security; network security policies in general (filtering policies H04L63/0227) · CPC title
- H04L63/0876Primary
based on the identity of the terminal or configuration, e.g. MAC address, hardware or software configuration or device fingerprint · CPC title
Patent family
Related publications grouped by family.
External sources
Frequently asked questions
Answers are generated from the same data shown on this page.
- What does patent US12170663B2 cover?
- A device may receive and store credentials identifying security levels of users for access to functionalities of an on-premises device, and may receive a credential of a user and a request to access a functionality of the on-premises device. The device may determine whether a security level of the credential matches a first security level of the credentials, and may reject the request when the …
- Who is the assignee on this patent?
- Verizon Patent & Licensing Inc
- What technology area does this patent fall under?
- Primary CPC classification H04L63/105. Mapped technology areas include Electricity.
- When was this patent published?
- Publication date Tue Dec 17 2024 00:00:00 GMT+0000 (Coordinated Universal Time) (B2). Legal status and post-grant events are not shown on this page.
- What related patents are in patentsdb?
- We list 9 related publications on this page (citations in our corpus or others sharing the same primary CPC).