Invention Grant
US09165134B2 Method for providing authorized access to a service application in order to use a protected resource of an end user
有权
提供对服务应用程序的授权访问以便使用最终用户的受保护资源的方法
- Patent Title: Method for providing authorized access to a service application in order to use a protected resource of an end user
- Patent Title (中): 提供对服务应用程序的授权访问以便使用最终用户的受保护资源的方法
-
Application No.: US14003616Application Date: 2011-11-04
-
Publication No.: US09165134B2Publication Date: 2015-10-20
- Inventor: Jorge Lorenzo , David Lozano , Diego Gonzalez , David Vicente
- Applicant: Jorge Lorenzo , David Lozano , Diego Gonzalez , David Vicente
- Applicant Address: ES Madrid
- Assignee: Telefonica, S.A.
- Current Assignee: Telefonica, S.A.
- Current Assignee Address: ES Madrid
- Agency: Sughrue Mion, PLLC
- International Application: PCT/EP2011/005569 WO 20111104
- International Announcement: WO2012/119620 WO 20120913
- Main IPC: G06F7/04
- IPC: G06F7/04 ; G06F15/16 ; G06F21/45 ; G06F21/41 ; G06F21/62 ; H04L29/06
Abstract:
The protected resource, typically an API, is exposed by endpoints of a plurality of administrative domains. The endpoints are previously unknown by said service application and the method further comprises: i. using an intermediate or global entity for: a) selecting one of said administrative domains based on flexible criteria (i.e. at least on the identity of said end user but also considering varying user or service preferences); and b) performing, said selected administrative domain, a secure authorization to grant access to said end user by means of an open protocol; and ii. providing, said selected administrative domain to said service application, once performed said secure authorization, direct or proxy access to said user's protected resource via the endpoint established by said intermediate entity.
Public/Granted literature
Information query
