Entity authentication for pre-authenticated links
US-2024396898-A1 · Nov 28, 2024 · US
Authenticated component permissions framework
US2020074067A1 · US · A1
| Field | Value |
|---|---|
| Publication number | US-2020074067-A1 |
| Application number | US-201916548771-A |
| Country | US |
| Kind code | A1 |
| Filing date | Aug 22, 2019 |
| Priority date | Aug 31, 2018 |
| Publication date | Mar 5, 2020 |
| Grant date | — |
How to read this patent
A practical reading order for non-experts. Skip the full description unless you need deep technical detail.
- Title
What the patent document calls the invention.
- Abstract
A short plain-language summary of the technical disclosure.
- Assignees and inventors
Who owns or filed the patent and who is credited as inventor.
- Key dates
Filing, priority, publication, and grant dates set the timeline.
- First independent claim
The legal scope of protection — read this for what is actually claimed.
- CPC / IPC classifications
Technology tags used to group this patent with similar filings.
- Citations and related patents
Prior art links and similar publications in this corpus.
Abstract
Official abstract text for this publication.
Various embodiments set forth techniques for managing access to a resource at a device. In one aspect, a method includes receiving a request by an application to access a resource, determining that an application permission associated with the application and the resource grants the application access to the resource, where the application permission includes a signature of a permission review entity associated with the resource, and granting the request to access the resource based on the application permission. The permission review entity associated with the resource may be authorized through device permissions specified by an implementer or provider of the device.
First claim
Opening claim text (preview).
What is claimed is: 1 . A computer-implemented method for managing access to a resource at a device, comprising: receiving a first request by a first application to access a resource; determining that a first application permission associated with the first application and the resource grants the first application access to the resource, wherein the first application permission includes a first signature of a first permission review entity associated with the resource; and granting the first request to access the resource based on the first application permission. 2 . The method of claim 1 , further comprising: receiving a second request by a second application to access the resource; determining that a second application permission associated with the second application and the resource denies the second application access to the resource; and rejecting the second request to access the resource based on the second application permission. 3 . The method of claim 2 , wherein the second application permission includes a second signature of the first permission review entity. 4 . The method of claim 2 , wherein the second application permission includes a second signature of a second permission review entity associated with the resource, wherein the second permission review entity is distinct from the first permission review entity. 5 . The method of claim 1 , wherein the first application permission is associated with one or more access conditions, and wherein determining that the first application permission grants the first application access to the resource comprises determining that the one or more access conditions are satisfied. 6 . The method of claim 1 , further comprising: obtaining first device permission information; and based on determining that the first device permission information includes a signature of a system provider entity associated with the device: determining that the first device permission information is valid, and storing the first device permission information in a memory of the device. 7 . The method of claim 6 , further comprising: obtaining second device permission information; and based on determining that the second device permission information does not include a signature of the system provider entity associated with the device, determining that the second device permission information is invalid. 8 . The method of claim 6 , wherein the first device permission information specifies a set of one or more permission review entities associated with the resource. 9 . The method of claim 8 , further comprising, based on determining that the first permission review entity is included in the set of one or more permission review entities, determining that the first application permission is valid. 10 . One or more non-transitory computer-readable storage media storing instructions, that, when executed by one or more processors, cause the one or more processors to perform the steps of: obtaining a first application permission associated with a first application and a first resource; based on determining that the first application permission includes a signature of a first permission review entity included in a set of one or more permission review entities associated with the first resource, determining that the first application permission is valid; and granting the first application access to the first resource based on the first application permission. 11 . The one or more computer-readable storage media of claim 10 , wherein the first application permission is associated with one or more access conditions, and wherein granting the first application access to the resource comprises granting the first application access based on determining that the one or more access conditions are satisfied. 12 . The one or more computer-readable storage media of claim 10 , wherein the instructions, when executed by the one or more processors, further cause the one or more processors to perform the steps of: obtaining a second application permission associated with the first application and a second resource; and based on determining that the second application permission includes a signature of a second permission review entity not included in a set of one or more permission review entities associated with the second resource, determining that the second application permission is invalid. 13 . The one or more computer-readable storage media of claim 10 , wherein the instructions, when executed by the one or more processors, further cause the one or more processors to perform the steps of: obtaining device permission information; determining that the device permission information includes a signature of a system provider entity associated with the device; and based on the determination that the device permission information includes the signature of the system provider entity: determining that the device permission information is valid, and storing the device permission information in a memory of the device. 14 . The one or more computer-readable storage media of claim 13 , wherein the set of one or more permission review entities associated with the first resource are included in the device permission information. 15 . The one or more computer-readable storage media of claim 13 , wherein the device permission information is obtained via the system provider entity. 16 . The one or more computer-readable storage media of claim 10 , wherein the first application permission is obtained via an application provider entity associated with the first application. 17 . The one or more computer-readable storage media of claim 10 , wherein the first application permission is obtained via the first permission review entity. 18 . A system, comprising: a memory storing instructions; and at least one processor coupled to the memory and, when executing the instructions, is configured to: receive a first request by a first application to access a resource; determine that a first application permission associated with the first application and the resource grants the first application access to the resource, wherein the first application permission includes a first signature of a first permission review entity associated with the resource; and grant the first request to access the resource based on the first application permission. 19 . The system of claim 18 , wherein the at least one processor, when executing the instructions, is further configured to: obtain device permission information; and based on determining that the device permission information includes a signature of a system provider entity associated with the device: determine that the device permission information is valid, and store the device permission information in the memory; wherein the set of one or more permission review entities associated with the first resource are included in the device permission information. 20 . The system of claim 18 , wherein the at least one processor, when executing the instructions, is further configured to determine that the first application permission is valid based on the first signature of the first permission review entity.
Assignees
Inventors
Classifications
using certificates (cryptographic mechanisms or cryptographic arrangements for entity authentication involving certificates H04L9/3263) · CPC title
- G06F21/6218Primary
to a system of files or objects, e.g. local or distributed file system or database · CPC title
Access rights, e.g. capability lists, access control lists, access tables, access matrices · CPC title
using a third party · CPC title
for controlling access to devices or network resources · CPC title
Patent family
Related publications grouped by family.
External sources
Frequently asked questions
Answers are generated from the same data shown on this page.
- What does patent US2020074067A1 cover?
- Various embodiments set forth techniques for managing access to a resource at a device. In one aspect, a method includes receiving a request by an application to access a resource, determining that an application permission associated with the application and the resource grants the application access to the resource, where the application permission includes a signature of a permission review …
- Who is the assignee on this patent?
- Harman Int Ind
- What technology area does this patent fall under?
- Primary CPC classification G06F21/6218. Mapped technology areas include Physics.
- When was this patent published?
- Publication date Thu Mar 05 2020 00:00:00 GMT+0000 (Coordinated Universal Time) (A1). Legal status and post-grant events are not shown on this page.
- What related patents are in patentsdb?
- We list 8 related publications on this page (citations in our corpus or others sharing the same primary CPC).