公开(公告)号：US20230254321A1

公开(公告)日：2023-08-10

申请号：US17668367

申请日：2022-02-09

Applicant: Microsoft Technology Licensing, LLC

Inventor： Abhijeet KUMAR SINHA ,  Caleb Geoffrey BAKER ,  Stuart KWAN ,  Zhifeng WANG ,  Adam EDWARDS ,  William Bruce BARR, III ,  Arturo Huato LUCATERO ,  Christopher Adam BROOKS ,  Carlos Adrian LOPEZ CASTRO

IPC: H04L9/40

CPC classification number: H04L63/107 ,  H04L63/20 ,  H04L63/0272

Abstract: Generally discussed herein are devices, systems, and methods for adaptive authorization using a local route as a named location. A method can include defining a local route and a corresponding local route endpoint, associating a compute resource as a destination of the local route endpoint, defining an adaptive authorization policy that limits access to the compute resource to be through the local route endpoint, and enforcing access to the compute resource based on the defined adaptive authorization policy.

公开(公告)号：US20210136114A1

公开(公告)日：2021-05-06

申请号：US16670864

申请日：2019-10-31

Applicant: MICROSOFT TECHNOLOGY LICENSING, LLC

Inventor： Violet Anna BARHUDARIAN ,  Jiangfeng LU ,  Caleb Geoffrey BAKER ,  Oren Jordan MELZER ,  Anirban BASU ,  Carlos Adrian LOPEZ CASTRO

IPC: H04L29/06 ,  H04L9/32

Abstract: Implementing policy at a resource provider computer system. The method includes a resource provider computer system receiving policy from an identity provider system, the policy being related to an entity that authenticates using the identity provider computer system. The resource provider computer system receives a request for resources from the entity and an access token from the entity. The access token was obtained by the entity from the identity provider computer system as a result of the entity authenticating with the identity provider computer system. The resource provider computer system evaluates the request with respect to the policy. The resource provider computer system responds to the request based on evaluating the request with respect to the policy.

公开(公告)号：US20210136113A1

公开(公告)日：2021-05-06

申请号：US16670863

申请日：2019-10-31

Applicant: MICROSOFT TECHNOLOGY LICENSING, LLC

Inventor： Violet Anna BARHUDARIAN ,  Jiangfeng LU ,  Caleb Geoffrey BAKER ,  Oren Jordan MELZER ,  Anirban BASU ,  Yordan Ivanov ROUSKOV ,  William Bruce BARR, III ,  Radhika KASHYAP ,  Carlos Adrian LOPEZ CASTRO ,  Pui-Yin Winfred WONG

IPC: H04L29/06 ,  H04L9/32

Abstract: Authenticating computing entities. A method includes at an identity provider, providing a first access token to an entity for use by the entity in obtaining resources from a resource provider. The method further includes, at the identity provider, receiving response information from the entity. The response information from the entity is provided to the entity from the resource provider as a result of the resource provider enforcing policy at the resource provider. At the identity provider, a second access token is provided to the entity. The second access token is provided based on the response information, such that the second access token can be used by the entity to obtain the resources from the resource provider.