公开(公告)号：US20240179181A1

公开(公告)日：2024-05-30

申请号：US18070321

申请日：2022-11-28

Applicant: Amazon Technologies, Inc.

Inventor： Emina TORLAK ,  Darin MCADAMS ,  Neha RUNGTA ,  Michael W. HICKS ,  Craig Ryan DISSELKOEN ,  Aaron Joseph ELINE ,  John Holman KASTNER ,  Kyle HEADLEY ,  Anwar MAMAT ,  Richard Matthew MCCUTCHEN ,  Andrew Marshall WELLS ,  Kesha Hanne HIETALA ,  Shaobo HE ,  Mark Edward STALZER ,  Julian LOVELOCK

IPC: H04L9/40

CPC classification number: H04L63/20 ,  H04L63/104

Abstract: A system and method for authorization policy evaluation. Authorization policies are authored in a general-purpose authorization language. An evaluation engine is used in a provider network by application developers to manage access within their applications based on fine-grained permissions. The policy language combines elements of role-based and attributed-based access control within an intuitive syntax and efficient evaluation strategy. The policy syntax separates role-based expressions of a policy from attribute-based expressions of the policy.