-
公开(公告)号:US11381571B2
公开(公告)日:2022-07-05
申请号:US16773526
申请日:2020-01-27
Applicant: Microsoft Technology Licensing, LLC
Inventor: Anshul Dube , Parul Manek , Steven Mark Silverberg , Shankaranand Arunachalam , Jason Craig Nelson , Andrew Burke Ryan , Robert A. Lowe , Ganesh Pandey
IPC: H04L9/40
Abstract: A client application is specified by a target tenant and represented in an OAuth provider, along with a corresponding secret. A source tenant consents to permissions to be executed by the client application on a resource of the source tenant. A target service uses the secret to obtain an access token from an authorization server coupled to the source tenant and uses the access token to obtain access, specified by the permissions, to the resource served by a source service acting on behalf of the source tenant.
-
公开(公告)号:US11930016B2
公开(公告)日:2024-03-12
申请号:US17749761
申请日:2022-05-20
Applicant: Microsoft Technology Licensing, LLC
Inventor: Anshul Dube , Parul Manek , Steven Mark Silverberg , Shankaranand Arunachalam , Jason Craig Nelson , Andrew Burke Ryan , Robert A. Lowe , Ganesh Pandey
IPC: H04L9/40
CPC classification number: H04L63/102 , H04L63/0884
Abstract: A client application is specified by a target tenant and represented in an OAuth provider, along with a corresponding secret. A source tenant consents to permissions to be executed by the client application on a resource of the source tenant. A target service uses the secret to obtain an access token from an authorization server coupled to the source tenant and uses the access token to obtain access, specified by the permissions, to the resource served by a source service acting on behalf of the source tenant.
-
公开(公告)号:US11580239B2
公开(公告)日:2023-02-14
申请号:US16660275
申请日:2019-10-22
Applicant: Microsoft Technology Licensing, LLC
Inventor: Daniel John Carroll, Jr. , Kameshwar Jayaraman , Stuart Kwan , Kartik Tirunelveli Kanakasabesan , Shefali Gulati , Charles Glenn Jeffries , Ganesh Pandey , Roberto Carlos Taboada , Parul Manek , Steven Mark Silverberg
Abstract: Access to data and resources in a multi-tenant computing system is managed by tagging the data and resources with attributes, as well as by tagging users with attributes. Tenant-specific access policies are configured. When an access request is received from a workload, a policy decision engine processes the attributes that are tagged to the requesting workload (e.g., user, application, etc.) as well as those tagged to the requested data or resource, given a relevant tenant-specific policy. An access decision is provided in response to the access request, and the access decision can be enforced by a tenant-specific enforcement system.
-
公开(公告)号:US20210117561A1
公开(公告)日:2021-04-22
申请号:US16660275
申请日:2019-10-22
Applicant: Microsoft Technology Licensing, LLC
Inventor: Daniel John CARROLL, JR. , Kameshwar Jayaraman , Stuart Kwan , Kartik Tirunelveli Kanakasabesan , Shefali Gulati , Charles Glenn Jeffries , Ganesh Pandey , Roberto Carlos Taboada , Parul Manek , Steven Mark Silverberg
Abstract: Access to data and resources in a multi-tenant computing system is managed by tagging the data and resources with attributes, as well as by tagging users with attributes. Tenant-specific access policies are configured. When an access request is received from a workload, a policy decision engine processes the attributes that are tagged to the requesting workload (e.g., user, application, etc.) as well as those tagged to the requested data or resource, given a relevant tenant-specific policy. An access decision is provided in response to the access request, and the access decision can be enforced by a tenant-specific enforcement system.
-
-
-
Search Results
4
records
(took 0.014 seconds)
