首页> 外国专利> Mechanism for allowing access to unsecured resources via a security engine using inverted security policies

Mechanism for allowing access to unsecured resources via a security engine using inverted security policies

机译：使用反向安全策略允许通过安全引擎访问不安全资源的机制

页面导航

摘要
著录项
相似文献

摘要

A system provides a number of resources, some of which are subjected to security policies and some of which are not. For secured resources a policy specifying how the resource may be used and by whom is drawn up as usual B(Fig. 4a)./B The system then creates a complementary policy which specifies that all users can use the resource B(Fig. 4b)./B For unsecured resources no security policies are created. When access to a resource is requested B302/B the normal policy is checked in the normal fashion B304/B and access allowed B306/B or denied as usual. If usual access is denied then the complementary policy is checked B310,/B however the result of this check is inverted. That is, where a policy allows blanket access the access is denied B314/B. Whereas where there is no access policy the access is allowed B312./B In this fashion access to the unsecured resources with no security policies is facilitated B(Fig. 4c)./B

机译：系统提供许多资源，其中一些资源受安全策略的约束，而某些资源则不受安全策略的约束。对于受保护的资源，将照常（图4a）制定一条策略，指定如何使用资源以及由谁使用。然后系统创建一个补充策略，该策略指定所有用户都可以使用资源< B>（图4b）。对于不安全的资源，不会创建安全策略。当请求访问资源 302 时，以常规方式 304 检查常规策略，并允许访问 306 或照常拒绝访问。如果拒绝常规访问，则在 310 中检查补充策略，但是此检查的结果将被反转。也就是说，在策略允许全面访问的情况下， 314 被拒绝。而在没有访问策略的情况下，允许访问 312。这样便可以方便地（图4c）访问没有安全策略的不安全资源。 展开▼

著录项

公开/公告号GB2442273A

专利类型

公开/公告日2008-04-02

原文格式PDF

申请/专利权人 INTERNATIONAL BUSINESS MACHINES CORPORATION;
展开▼

申请/专利号GB20060019203

发明设计人 JAMES RONALD LEWIS ORCHARD;JOHN COLGRAVE;GARY OWEN WHITTINGHAM;
展开▼

申请日2006-09-29

分类号G06F21/60;

国家 GB

入库时间 2022-08-21 19:46:27

相似文献

专利

外文文献

中文文献

1. 从访问检查机制的本机表示中抽象安全策略以及将其变换到该表示 [P] . 中国专利： CN101461177B . 2013.02.13

2. 从访问检查机制的本机表示中抽象安全策略以及将其变换到该表示 [P] . 中国专利： CN101461177A . 2009-06-17

3. Access control policy engine controlling access to resource based on any of multiple received types of security tokens [P] . 美国专利： US7774830B2 . 2010-08-10

机译：访问控制策略引擎基于多种接收到的安全令牌类型中的任何一种来控制对资源的访问

4. Access control policy engine controlling access to resource based on any of multiple received types of security tokens [P] . 美国专利： US2006206931A1 . 2006-09-14

机译：访问控制策略引擎基于多种接收到的安全令牌类型中的任何一种来控制对资源的访问

5. METHOD ENABLING A SECURITY POLICY TO BE APPLIED TO A DOWNLOADABLE APPLICATION ACCESSING RESOURCES OF THE NETWORK [P] . 世界知识产权组织专利： WO2008087332B1 . 2008-12-24

机译：使安全策略适用于可下载的应用程序访问网络资源的方法

1. Comparison of Chinese and Foreign Urban Public Security Treatment Mechanisms and Analysis of Policy References [J] . Li Xuejun, Zhang Mingyu 工程科学（英文版） . 2007,第001期

2. The Discursive Construction of (In)security: The Paradigm “Change” in Security Policies Since the “Chocobar Doctrine1 -Minister of Security of Argentina, Patricia Bullrich ” [J] . Mariana Valdez 新闻与大众传媒：英文版 . 2020,第001期

3. Security Mechanisms of Wired Equivalent Privacy and Wi-Fi Protected Access in WLAN: Review and Analysis [J] . ZHANG Xian-shi, KANG Ge-wen, WANG Xin-heng 现代交通学报（英文版） . 2009,第001期

4. Coordination Mechanism of the Legal Protection of Resource Security with Its Relative Laws [J] . Chen Demin, Wang Huabing 中国人口·资源与环境（英文版） . 2008,第003期

5. A collaborative policy-based security scheme to enforce resource access controlling mechanism [J] . Muthumanickam K., Senthil Mahesh P. C. Wireless Networks . 2020,第4期

6. Assessing Information Security Vulnerabilities and Threats to Implementing Security Mechanism and Security Policy Audit [J] . Mohammed A.M.Afifi Journal of computer sciences . 2020,第3期

7. Assessing Information Security Vulnerabilities and Threats to Implementing Security Mechanism and Security Policy Audit [J] . Mohammed A.M. Afifi Journal of computer sciences . 2020,第3期

8. Knowledge-Based Modeling and Simulation of Network Access Control Mechanisms Representing Security Policies [C] . Jong-Young Koh, Mi-Ra Yi, Tae-Ho Cho, Information and Communications Security . 2002

9. Security Mechanisms and Policy for Mandatory Access Control in Computer Systems. [D] . Wurster, Glenn Daniel. 2010

10. Are social security policies for Chinese landless farmers really effective on health in the process of Chinese rapid urbanization? a study on the effect of social security policies for Chinese landless farmers on their health-related quality of life [O] . Ying Liang, Wanyi Lu, Wei Wu 2014

11. Security mechanisms and policy for mandatory access control in computer systems [O] . Glenn Wurster -1

1. Network Access Mechanisms and Security Issues under the Cloud Service Architecture [J] . Yonghua LIU . International Journal of Technology Management . 2015,第006期

2. 基于多级安全策略的网格强制访问控制模型 [C] . 权义宁 ,西安电子科技大学计算机学院 ,胡予濮 . 2005中国计算机大会 . 2005

3. 基于安全策略的云平台访问控制测试用例生成研究 [A] . 骆珊 . 2018