What technology area does this patent fall under?

Primary CPC classification G06F21/62. Mapped technology areas include Physics.

When was this patent published?

Publication date Tue Feb 02 2016 00:00:00 GMT+0000 (Coordinated Universal Time) (B2). Legal status and post-grant events are not shown on this page.

What related patents are in patentsdb?

We list 8 related publications on this page (citations in our corpus or others sharing the same primary CPC).

Managing security restrictions on a resource in a defined environment

US9253179B2 · US · B2

Patent metadata
Field	Value
Publication number	US-9253179-B2
Application number	US-201314091730-A
Country	US
Kind code	B2
Filing date	Nov 27, 2013
Priority date	Jul 13, 2012
Publication date	Feb 2, 2016
Grant date	Feb 2, 2016

How to read this patent

A practical reading order for non-experts. Skip the full description unless you need deep technical detail.

Title
What the patent document calls the invention.
Abstract
A short plain-language summary of the technical disclosure.
Assignees and inventors
Who owns or filed the patent and who is credited as inventor.
Key dates
Filing, priority, publication, and grant dates set the timeline.
First independent claim
The legal scope of protection — read this for what is actually claimed.
CPC / IPC classifications
Technology tags used to group this patent with similar filings.
Citations and related patents
Prior art links and similar publications in this corpus.

Abstract

Official abstract text for this publication.

Approaches described herein manage security restrictions on a resource in a defined environment to provide authorization and access. Specifically, a security system maintains a security restriction on the resource (e.g., an information technology (IT) account of a user, or an apparatus) in a defined environment. The presence of a plurality of users is continuously monitored throughout the defined environment and, based on a detection of a pre-specified set of users from the plurality of users in the defined environment, the security restriction is managed (e.g., removed or maintained). In one embodiment, the system removes the security restriction from the resource to allow at least one of: access to the IT account of the user, and operation of the apparatus. The security restriction on the resource may then be reinstated in the case that the pre-specified set of users from the plurality of users is no longer present in the defined environment.

First claim

Opening claim text (preview).

What is claimed is: 1. A method for managing security restrictions on a resource in a defined environment, the method comprising the computer-implemented steps of: maintaining a security restriction on a resource in a defined environment, the resource comprising at least one of: an information technology (IT) account of a user, and an apparatus; continuously monitoring a presence of a plurality of users in the defined environment; managing the security restriction on the resource based on a detection of a pre-specified set of users from the plurality of users in the defined environment, the managing the security restriction comprising removing the security restriction on the resource to allow at least one of: access to the IT account of the user, and operation of the apparatus; and reinstating the security restriction on the resource in the case that the pre-specified set of users from the plurality of users is no longer present in the defined environment, wherein the security restriction is reinstated when either of: a maximum number of users in the defined environment is attained, and a minimum number of users in the defined environment is not attained. 2. The method according to claim 1 , the monitoring the presence of the plurality of users comprising receiving user credentials from each of the plurality of users. 3. The method according to claim 2 , wherein the user credentials from each of the plurality of users is received via an authentication device at an access control system of an access control point. 4. The method according to claim 1 , further comprising generating an alert to indicate that the pre-specified set of users from the plurality of users is no longer present in the defined environment. 5. A system for managing security restrictions on a resource in a defined environment, the system comprising: a memory medium comprising instructions; a bus coupled to the memory medium; and a processor coupled to a security system via the bus that when executing the instructions causes the system to: maintain a security restriction on a resource in a defined environment, the resource comprising at least one of: an information technology (IT) account of a user, and an apparatus; continuously monitor a presence of a plurality of users in the defined environment; manage the security restriction on the resource based on a detection of a pre-specified set of users from the plurality of users in the defined environment, the managing the security restriction comprising removing the security restriction on the resource to allow at least one of: access to the IT account of the user, and operation of the apparatus; and reinstate the security restriction on the resource in the case that the pre-specified set of users from the plurality of users is no longer present in the defined environment, wherein the security restriction is reinstated when either of: a maximum number of users in the defined environment is attained, and a minimum number of users in the defined environment is not attained. 6. The system according to claim 5 , the instructions causing the system to monitor the presence of the plurality of users comprising instructions causing the system to receive user credentials from each of the plurality of users. 7. The system according to claim 6 , wherein the user credentials from each of the plurality of users is received via an authentication device at an access control system of an access control point. 8. The system according to claim 5 , further comprising instructions causing the system to generate an alert to indicate that the pre-specified set of users from the plurality of users is no longer present in the defined environment. 9. A computer-readable storage device storing computer instructions, which when executed, enables a computer system to manage security restrictions on a resource in a defined environment, the computer instructions comprising: maintaining a security restriction on a resource in a defined environment, the resource comprising at least one of: an information technology (IT) account of a user, and an apparatus; continuously monitoring a presence of a plurality of users in the defined environment; managing the security restriction on the resource based on a detection of a pre-specified set of users from the plurality of users in the defined environment, the managing the security restriction comprising removing the security restriction on the resource to allow at least one of: access to the IT account of the user, and operation of the apparatus; and reinstating the security restriction on the resource in the case that the pre-specified set of users from the plurality of users is no longer present in the defined environment, wherein the security restriction is reinstated in the case that either of: a maximum number of users in the defined environment is attained, and a minimum number of users in the defined environment is not attained. 10. The computer-readable storage device according to claim 9 , the computer instructions causing the system to monitor the presence of the plurality of users comprising receiving user credentials from each of the plurality of users. 11. The computer-readable storage device according to claim 10 , wherein the user credentials from each of the plurality of users is received via an authentication device at an access control system of an access control point. 12. The computer-readable storage device according to claim 9 , further comprising computer instructions causing the system to generate an alert to indicate that the pre-specified set of users from the plurality of users is no longer present in the defined environment.

Assignees

Inventors

Hoesl Mark J

Classifications

G06F21/62Primary
Protecting access to data via a platform, e.g. using keys or access control rules · CPC title
H04L63/08Primary
for authentication of entities (cryptographic mechanisms or cryptographic arrangements for entity authentication H04L9/32) · CPC title
H04L63/101Primary
Access control lists [ACL] · CPC title

Patent family

Related publications grouped by family.

View patent family 50386589

External sources

Frequently asked questions

Answers are generated from the same data shown on this page.

What does patent US9253179B2 cover?: Approaches described herein manage security restrictions on a resource in a defined environment to provide authorization and access. Specifically, a security system maintains a security restriction on the resource (e.g., an information technology (IT) account of a user, or an apparatus) in a defined environment. The presence of a plurality of users is continuously monitored throughout the defin…
Who is the assignee on this patent?: IBM
What technology area does this patent fall under?: Primary CPC classification G06F21/62. Mapped technology areas include Physics.
When was this patent published?: Publication date Tue Feb 02 2016 00:00:00 GMT+0000 (Coordinated Universal Time) (B2). Legal status and post-grant events are not shown on this page.
What related patents are in patentsdb?: We list 8 related publications on this page (citations in our corpus or others sharing the same primary CPC).