Network security path identification and validation
US-12170668-B2 · Dec 17, 2024 · US
Method and apparatus for authenticating access authority for specific resource in wireless communication system
US9654971B2 · US · B2
| Field | Value |
|---|---|
| Publication number | US-9654971-B2 |
| Application number | US-201314377997-A |
| Country | US |
| Kind code | B2 |
| Filing date | Oct 30, 2013 |
| Priority date | Oct 30, 2012 |
| Publication date | May 16, 2017 |
| Grant date | May 16, 2017 |
How to read this patent
A practical reading order for non-experts. Skip the full description unless you need deep technical detail.
- Title
What the patent document calls the invention.
- Abstract
A short plain-language summary of the technical disclosure.
- Assignees and inventors
Who owns or filed the patent and who is credited as inventor.
- Key dates
Filing, priority, publication, and grant dates set the timeline.
- First independent claim
The legal scope of protection — read this for what is actually claimed.
- CPC / IPC classifications
Technology tags used to group this patent with similar filings.
- Citations and related patents
Prior art links and similar publications in this corpus.
Abstract
Official abstract text for this publication.
According to one embodiment of the present invention, a method for authenticating access authority for a specific resource in a wireless communication system is provided. The method is performed by a terminal and includes the steps of: receiving from a server, an operation for a specific object of a terminal, a specific object instance, or a resource (hereinafter referred to as “operation target”) belonging to the specific object instance; and checking whether an access authority for the operation target is granted for a server based on access authority information associated with the operation target. The method further includes a step of determining whether at least one resource belonging to the operation target supports the operation based on one or both of the operation and the operation target when the access authority for the operation target is granted, and the access authority information associated with the operation target can be specified for a specific object instance to which the one or more resources belong.
First claim
Opening claim text (preview).
The invention claimed is: 1. A method for authorizing, by a terminal, an access right for a resource in a wireless communication system, the method comprising: receiving, from a server, an operation for an operation target, the operation target being an object instance or the operation target being a resource belonging to the object instance; and authorizing the server to perform the received operation for the operation target by: checking whether to perform the received operation based on access right information associated with the operation target is granted for the server, determining, based on the access right information, whether the operation target supports the received operation when the terminal determines that the server is granted authorization to perform the received operation, and performing the received operation based on at least one of a type of the received operation and a type of the operation target when the terminal determines that the operation target supports the received operation, wherein the access right information associated with the operation target is specified for the object instance to which the resource belongs when the operation target is the resource. 2. The method according to claim 1 , wherein the received operation is performed only when the received operation and/or the operation target corresponds to a predetermined operation and/or a predetermined operation target, respectively. 3. The method according to claim 1 , wherein a supportable operation is defined according to the type of the operation target. 4. The method according to claim 3 , further comprising: when the received operation is not supported for the operation target, transmitting, to the server, a response for notifying the server that the received operation is not supported. 5. The method according to claim 1 , wherein, when the terminal has only a single server account, the terminal checks that the server is granted for performing the received operation if the server corresponds to the single server account. 6. The method according to claim 5 , wherein the server has an access right for all operations. 7. The method according to claim 1 , wherein the method further comprises: when the access right for the operation target is not granted, transmitting, to the server, a response for notifying the server that access is rejected is transmitted. 8. The method according to claim 1 , further comprising: when the terminal checks that the server is granted for performing the received operation, the received operation is a predetermined type of operation and the operation target is a specific object instance, performing the received operation for the specific object instance without determining whether the at least one resource belonging to the operation target supports the received operation. 9. The method according to claim 1 , wherein the access right information associated with the operation target for the server is obtained from an access control object instance associated with the operation target. 10. The method according to claim 7 , wherein the transmitting of the response comprises notifying the server of an operation target causing an access rejection. 11. The method according to claim 1 , further comprising: checking access right information for the specific object instance to which the resource belongs if the operation target is the resource.
Assignees
Inventors
Classifications
- H04L63/101Primary
Access control lists [ACL] · CPC title
User group management · CPC title
Services for machine-to-machine communication [M2M] or machine type communication [MTC] · CPC title
Access security · CPC title
Electricity · mapped topic
Patent family
Related publications grouped by family.
External sources
Frequently asked questions
Answers are generated from the same data shown on this page.
- What does patent US9654971B2 cover?
- According to one embodiment of the present invention, a method for authenticating access authority for a specific resource in a wireless communication system is provided. The method is performed by a terminal and includes the steps of: receiving from a server, an operation for a specific object of a terminal, a specific object instance, or a resource (hereinafter referred to as “operation targe…
- Who is the assignee on this patent?
- Lg Electronics Inc
- What technology area does this patent fall under?
- Primary CPC classification H04L63/101. Mapped technology areas include Electricity.
- When was this patent published?
- Publication date Tue May 16 2017 00:00:00 GMT+0000 (Coordinated Universal Time) (B2). Legal status and post-grant events are not shown on this page.
- What related patents are in patentsdb?
- We list 8 related publications on this page (citations in our corpus or others sharing the same primary CPC).