公开(公告)号：US09436943B1

公开(公告)日：2016-09-06

申请号：US13793097

申请日：2013-03-11

Applicant: Google Inc.

Inventor： Umesh Shankar ,  Glenn Edward Durfee ,  Darrell Kindred

IPC: G06F5/00 ,  G06Q20/38

CPC classification number: G06Q20/3821 ,  G06Q20/401

Abstract: A method of authorizing a transaction may include receiving, by a hosted service from a client device, a request to access an account and determining whether a user of the client device is permitted to access the account. The method may include, in response to determining that the user is permitted to access the account, receiving, from the client device, a request to initiate a transaction, determining whether the transaction is a long-lived transaction, in response to determining that the transaction is a long-lived transaction, creating a transaction credential associated with the long-lived transaction, and determining, based at least in part on the transaction credential, whether the execution of the long-lived transaction is authorized.

Abstract translation: 授权交易的方法可以包括通过托管服务从客户端设备接收访问帐户的请求并确定客户端设备的用户是否被允许访问帐户。 该方法可以响应于确定用户被允许访问帐户，响应于确定所述交易是否是长寿命交易，从客户端设备接收到发起交易的请求，确定该交易是否是长寿命交易 交易是一种长寿命的交易，创建与长期交易相关联的交易凭证，以及至少部分地基于交易凭证来确定长期交易的执行是否被授权。

公开(公告)号：US09245105B1

公开(公告)日：2016-01-26

申请号：US13772943

申请日：2013-02-21

Applicant: Google Inc.

Inventor： Umesh Shankar ,  Glenn Edward Durfee ,  William Gary Conner, II ,  Scott Thomas Garriss

IPC: G06F21/44

CPC classification number: G06F21/44 ,  G06F21/6218

Abstract: A method of controlling access to one or more data resources may include receiving, from a client device by an authentication server device, a request to access a data resource. The request may include a job identifier associated with a job. The method may include transmitting, by the authentication server device to a scheduling server device, the job identifier, receiving, by the authentication server device from the scheduling server device, job information associated with the job, determining, by the authentication server device, whether at least a portion of the job information satisfies an access policy associated with the data resource, and granting the job access to the data resource in response to the at least a portion of the job information satisfying the access policy.

Abstract translation: 控制对一个或多个数据资源的访问的方法可以包括：通过认证服务器设备从客户端设备接收访问数据资源的请求。 请求可以包括与作业相关联的作业标识符。 该方法可以包括由认证服务器设备向调度服务器设备发送作业标识符，由认证服务器设备从调度服务器设备接收与作业相关联的作业信息，由认证服务器设备确定是否 作业信息的至少一部分满足与数据资源相关联的访问策略，并且响应于满足访问策略的作业信息的至少一部分，授权对数据资源的作业访问。