公开(公告)号：US20250023878A1

公开(公告)日：2025-01-16

申请号：US18220629

申请日：2023-07-11

Applicant: Dell Products L.P.

Inventor： Sumedh Wasudeo Sathaye ,  Yi Fang ,  Yidong Wang ,  Ranjit Kollu ,  Murali Kadala Keloth ,  David Scott Thompson ,  Ching-Yun Chao

IPC: H04L9/40 ,  G06F9/54

Abstract: A system, method, and computer-readable medium for performing a data center monitoring and management operation. The data center monitoring and management operation includes: generating a request for a client identifier or an access token for access to a target application programming interface (API); obtaining an access policy associated with the target API; determining a least privileged API access permission based upon the access policy associated with the target API; and, using the client identifier or access token to access the target API when the least privileged API access permission allows access to the target API.

公开(公告)号：US12225019B2

公开(公告)日：2025-02-11

申请号：US18220629

申请日：2023-07-11

Applicant: Dell Products L.P.

Inventor： Sumedh Wasudeo Sathaye ,  Yi Fang ,  Yidong Wang ,  Ranjit Kollu ,  Murali Kadala Keloth ,  David Scott Thompson ,  Ching-Yun Chao

IPC: H04L9/40 ,  G06F9/54

Abstract: A system, method, and computer-readable medium for performing a data center monitoring and management operation. The data center monitoring and management operation includes: generating a request for a client identifier or an access token for access to a target application programming interface (API); obtaining an access policy associated with the target API; determining a least privileged API access permission based upon the access policy associated with the target API; and, using the client identifier or access token to access the target API when the least privileged API access permission allows access to the target API.

公开(公告)号：US20240414169A1

公开(公告)日：2024-12-12

申请号：US18331770

申请日：2023-06-08

Applicant: Dell Products L.P.

Inventor： Yi Fang ,  David Scott Thompson ,  Yidong Wang ,  Ranjit Kollu ,  Jennifer Minarik ,  Reut Kovetz ,  Ching-Yun Chao ,  Qi Jin ,  Jonathon Cwik

IPC: H04L9/40

Abstract: A system can identify an attribute-based access control policy that comprises a pair comprising a permission policy and a condition policy that is associated with performing an operation on a computing resource. The system can identify that the attribute-based access control policy corresponds to a role policy that is associated with the account. The system can determine whether the account and the role policy satisfy the attribute-based access control policy with respect to the operation, wherein the determining comprises evaluating whether the computing resource and a required permission of the permission policy is declared in the role policy, and evaluating whether the account and the role policy satisfy the condition policy evaluates to true based on attributes of the account and attributes of the computing resource. The system can, in response to determining that the account satisfy the permission policy and the condition policy, perform the operation on the computing resource.

公开(公告)号：US20250094590A1

公开(公告)日：2025-03-20

申请号：US18466907

申请日：2023-09-14

Applicant: Dell Products L.P.

Inventor： Ameer M. Jabbar ,  Yidong Wang ,  Qi Jin ,  Ching-Yun Chao

IPC: G06F21/57 ,  H04L9/32

Abstract: One example method includes receiving, at a multi cloud service orchestration platform from a client, a request for performance of a workflow, authenticating and authorizing the client, invoking orchestration of the workflow, invoking the workflow, validating a workflow definition associated with the workflow, and on successful validation, initializing execution of the workflow, and executing, at an activity container, the workflow. The method may be performed in the multi cloud service orchestration platform.