Managing security restrictions on a resource in a defined environment
US-9253179-B2 · Feb 2, 2016 · US
Managing security restrictions on a resource in a defined environment
US9781121B2 · US · B2
| Field | Value |
|---|---|
| Publication number | US-9781121-B2 |
| Application number | US-201514950013-A |
| Country | US |
| Kind code | B2 |
| Filing date | Nov 24, 2015 |
| Priority date | Jul 13, 2012 |
| Publication date | Oct 3, 2017 |
| Grant date | Oct 3, 2017 |
How to read this patent
A practical reading order for non-experts. Skip the full description unless you need deep technical detail.
- Title
What the patent document calls the invention.
- Abstract
A short plain-language summary of the technical disclosure.
- Assignees and inventors
Who owns or filed the patent and who is credited as inventor.
- Key dates
Filing, priority, publication, and grant dates set the timeline.
- First independent claim
The legal scope of protection — read this for what is actually claimed.
- CPC / IPC classifications
Technology tags used to group this patent with similar filings.
- Citations and related patents
Prior art links and similar publications in this corpus.
Abstract
Official abstract text for this publication.
Approaches described herein manage security restrictions on a resource in a defined environment to provide authorization and access. Specifically, a security system maintains a security restriction on the resource (e.g., an information technology (IT) account of a user, or an apparatus) in a defined environment. The presence of a plurality of users is continuously monitored throughout the defined environment and, based on a detection of a pre-specified set of users from the plurality of users in the defined environment, the security restriction is managed (e.g., removed or maintained). In one embodiment, the system removes the security restriction from the resource to allow at least one of: access to the IT account of the user, and operation of the apparatus. The security restriction on the resource may be reinstated in the case that the pre-specified set of users from the plurality of users is no longer present in the defined environment.
First claim
Opening claim text (preview).
What is claimed is: 1. A method for managing security restrictions on a resource in a defined environment, the method comprising the computer-implemented steps of: maintaining a security restriction on a resource in a defined environment, the resource comprising at least one of: an information technology (IT) account of a user, and an apparatus; continuously monitoring a presence of a plurality of users in the defined environment; managing the security restriction on the resource based on a detection of a pre-specified set of users from the plurality of users in the defined environment; and reinstating the security restriction on the resource, wherein the security restriction is reinstated when either of: a maximum number of users in the defined environment is attained, or a minimum number of users in the defined environment is not attained. 2. The method according to claim 1 , the managing the security restriction comprising removing the security restriction on the resource to allow at least one of: access to the IT account of the user, and operation of the apparatus. 3. The method according to claim 2 , further comprising reinstating the security restriction on the resource in the case that the pre-specified set of users from the plurality of users is no longer present in the defined environment. 4. The method according to claim 3 , further comprising generating an alert to indicate that the pre-specified set of users from the plurality of users is no longer present in the defined environment. 5. The method according to claim 1 , the monitoring the presence of the plurality of users comprising receiving user credentials from each of the plurality of users. 6. The method according to claim 5 , wherein the user credentials from each of the plurality of users are received via an authentication device at an access control system of an access control point. 7. A system for managing security restrictions on a resource in a defined environment, the system comprising: a memory medium comprising instructions; a bus coupled to the memory medium; and a processor coupled to a security system via the bus that when executing the instructions causes the system to: maintain a security restriction on a resource in a defined environment, the resource comprising at least one of: an information technology (IT) account of a user, and an apparatus; continuously monitor a presence of a plurality of users in the defined environment; manage the security restriction on the resource based on a detection of a pre-specified set of users from the plurality of users in the defined environment; and reinstate the security restriction on the resource, wherein the security restriction is reinstated when either of: a maximum number of users in the defined environment is attained, or a minimum number of users in the defined environment is not attained. 8. The system according to claim 7 , the instructions for managing the security restriction further causing the system to remove the security restriction on the resource to allow at least one of: access to the IT account of the user, and operation of the apparatus. 9. The system according to claim 8 , the instructions further causing the system to reinstate the security restriction on the resource in the case that the pre-specified set of users from the plurality of users is no longer present in the defined environment. 10. The system according to claim 9 , the instructions further causing the system to generate an alert to indicate that the pre-specified set of users from the plurality of users is no longer present in the defined environment. 11. The system according to claim 7 , the instructions for monitoring the presence of the plurality of users further causing the system to receive user credentials from each of the plurality of users. 12. The system according to claim 11 , wherein the user credentials from each of the plurality of users are received via an authentication device at an access control system of an access control point. 13. A computer-readable storage device storing computer instructions, which when executed, enables a computer system to manage security restrictions on a resource in a defined environment, the computer instructions comprising: maintaining a security restriction on a resource in a defined environment, the resource comprising at least one of: an information technology (IT) account of a user, and an apparatus; continuously monitoring a presence of a plurality of users in the defined environment; managing the security restriction on the resource based on a detection of a pre-specified set of users from the plurality of users in the defined environment; and reinstating the security restriction on the resource, wherein the security restriction is reinstated when either of: a maximum number of users in the defined environment is attained, or a minimum number of users in the defined environment is not attained. 14. The computer-readable storage device according to claim 13 , the computer instructions for managing the security restriction further causing the system to remove the security restriction on the resource to allow at least one of: access to the IT account of the user, and operation of the apparatus. 15. The computer-readable storage device according to claim 14 , the computer instructions causing the system to reinstate the security restriction on the resource in the case that the pre-specified set of users from the plurality of users is no longer present in the defined environment. 16. The computer-readable storage device according to claim 15 , the computer instructions causing the system to generate an alert to indicate that the pre-specified set of users from the plurality of users is no longer present in the defined environment. 17. The computer-readable storage device according to claim 13 , the computer instructions for monitoring the presence of the plurality of users further causing the system to receive user credentials from each of the plurality of users. 18. The computer-readable storage device according to claim 17 , wherein the user credentials from each of the plurality of users are received via an authentication device at an access control system of an access control point.
Assignees
Inventors
Classifications
for authentication of entities (cryptographic mechanisms or cryptographic arrangements for entity authentication H04L9/32) · CPC title
- G06F21/62Primary
Protecting access to data via a platform, e.g. using keys or access control rules · CPC title
- H04L63/101Primary
Access control lists [ACL] · CPC title
Patent family
Related publications grouped by family.
External sources
Frequently asked questions
Answers are generated from the same data shown on this page.
- What does patent US9781121B2 cover?
- Approaches described herein manage security restrictions on a resource in a defined environment to provide authorization and access. Specifically, a security system maintains a security restriction on the resource (e.g., an information technology (IT) account of a user, or an apparatus) in a defined environment. The presence of a plurality of users is continuously monitored throughout the defin…
- Who is the assignee on this patent?
- IBM
- What technology area does this patent fall under?
- Primary CPC classification G06F21/62. Mapped technology areas include Physics.
- When was this patent published?
- Publication date Tue Oct 03 2017 00:00:00 GMT+0000 (Coordinated Universal Time) (B2). Legal status and post-grant events are not shown on this page.
- What related patents are in patentsdb?
- We list 1 related publication on this page (citations in our corpus or others sharing the same primary CPC).