07124192 is referenced by 48 patents and cites 9 patents.

Methods, systems, and computer program products are disclosed for protecting the security of resources in distributed computing environments. The disclosed techniques improve administration and enforcement of security policies. Allowed actions on resources, also called permissions, (such as invocations of particular methods, read or write access of a particular row or perhaps a particular column in a database table, and so forth) are grouped, and each group of permissions is associated with a role name. A particular action on a particular resource may be specified in more than one group, and therefore may be associated with more than one role. Each role is administered as a security object. Users and/or user groups may be associated with one or more roles. At run-time, access to a resource is protected by determining whether the invoking user has been associated with (granted) at least one of the roles required for this type of access on this resource.

Title
Role-permission model for security policy administration and enforcement
Application Number
9/943618
Publication Number
7124192 (B2)
Application Date
August 30, 2001
Publication Date
October 17, 2006
Inventor
Nataraj Nagaratnam
Morrisville
NC, US
Anthony Joseph Nadalin
Austin
TX, US
Robert Howard High Jr
Round Rock
TX, US
Agent
Marcia L Doubet
A Bruce Clay
Assignee
International Business Machines Corporation
NY, US
IPC
G06F 17/30
G06F 7/00
G06F 15/16
View Original Source