公开(公告)号：US09584489B2

公开(公告)日：2017-02-28

申请号：US14725818

申请日：2015-05-29

Applicant: GOOGLE INC.

Inventor： Roger Trias Sanz ,  Erwin Aitenbichler

IPC: H04L29/06

CPC classification number: H04L63/0428 ,  G06Q20/401 ,  G06Q2220/12 ,  H04L9/3231 ,  H04L63/0861 ,  H04L2209/56 ,  H04L2209/80 ,  H04W12/06 ,  H04W12/08

Abstract: Controlling access resource functions. Establishing, by a resource access manager, enrollment information (e) for each of a plurality of users. Encrypting, by the access manager, each received (e) in an authorization data item for the corresponding user. Transmitting, by the access manager, each authorization data item to a corresponding user device. Receiving, by a resource control point, from a user device, a request for access to a function of the resource, the request for access comprising the received authorization data item and verification information (v). Decrypting, by the control point, the received authorization data item to extract (e). Determining, by the control point, a similarity measure between (v) and (e). For a determined similarity measure greater than or equal to a threshold, authorizing, by the control point, the request for access. For a determined similarity measure less than the threshold, denying, by control point, the request for access.

Abstract translation: 控制访问资源功能。 由资源访问管理器建立用于多个用户中的每一个的登记信息（e）。 由访问管理器加密，每个在相应用户的授权数据项中接收（e）。 由访问管理器将每个授权数据项发送给相应的用户设备。 由资源控制点从用户设备接收访问资源的功能的请求，包括接收的授权数据项的验证请求和验证信息（v）。 通过控制点解密接收到的授权数据项以提取（e）。 通过控制点确定（v）和（e）之间的相似性度量。 对于大于或等于阈值的确定的相似性度量，由控制点授权访问请求。 对于小于阈值的确定的相似性度量，通过控制点拒绝访问请求。

公开(公告)号：US20160255055A1

公开(公告)日：2016-09-01

申请号：US14725818

申请日：2015-05-29

Applicant: GOOGLE INC.

Inventor： Roger Trias Sanz ,  Erwin Aitenbichler

IPC: H04L29/06

CPC classification number: H04L63/0428 ,  G06Q20/401 ,  G06Q2220/12 ,  H04L9/3231 ,  H04L63/0861 ,  H04L2209/56 ,  H04L2209/80 ,  H04W12/06 ,  H04W12/08

Abstract: Controlling access resource functions. Establishing, by a resource access manager, enrollment information (e) for each of a plurality of users. Encrypting, by the access manager, each received (e) in an authorization data item for the corresponding user. Transmitting, by the access manager, each authorization data item to a corresponding user device. Receiving, by a resource control point, from a user device, a request for access to a function of the resource, the request for access comprising the received authorization data item and verification information (v). Decrypting, by the control point, the received authorization data item to extract (e). Determining, by the control point, a similarity measure between (v) and (e). For a determined similarity measure greater than or equal to a threshold, authorizing, by the control point, the request for access. For a determined similarity measure less than the threshold, denying, by control point, the request for access.

Abstract translation: 控制访问资源功能。 由资源访问管理器建立用于多个用户中的每一个的登记信息（e）。 由访问管理器加密，每个在相应用户的授权数据项中接收（e）。 由访问管理器将每个授权数据项发送给相应的用户设备。 由资源控制点从用户设备接收访问资源的功能的请求，包括接收的授权数据项的验证请求和验证信息（v）。 通过控制点解密接收到的授权数据项以提取（e）。 通过控制点确定（v）和（e）之间的相似性度量。 对于大于或等于阈值的确定的相似性度量，由控制点授权访问请求。 对于小于阈值的确定的相似性度量，通过控制点拒绝访问请求。

公开(公告)号：US20170126635A1

公开(公告)日：2017-05-04

申请号：US15408348

申请日：2017-01-17

Applicant: GOOGLE INC.

Inventor： Roger Trias Sanz ,  Erwin Aitenbichler

IPC: H04L29/06 ,  H04W12/06 ,  G06Q20/40 ,  H04L9/32

Abstract: Controlling access resource functions. Establishing, by a resource access manager, enrollment information (e) for each of a plurality of users. Encrypting, by the access manager, each received (e) in an authorization data item for the corresponding user. Transmitting, by the access manager, each authorization data item to a corresponding user device. Receiving, by a resource control point, from a user device, a request for access to a function of the resource, the request for access comprising the received authorization data item and verification information (v). Decrypting, by the control point, the received authorization data item to extract (e). Determining, by the control point, a similarity measure between (v) and (e). For a determined similarity measure greater than or equal to a threshold, authorizing, by the control point, the request for access. For a determined similarity measure less than the threshold, denying, by control point, the request for access.