IDiyas

For the Inventor, By the Inventor

The patent badge is an abbreviated version of the USPTO patent document. The patent badge does contain a link to the full patent document.

The patent badge is an abbreviated version of the USPTO patent document. The patent badge covers the following: Patent number, Date patent was issued, Date patent was filed, Title of the patent, Applicant, Inventor, Assignee, Attorney firm, Primary examiner, Assistant examiner, CPCs, and Abstract. The patent badge does contain a link to the full patent document (in Adobe Acrobat format, aka pdf). To download or print any patent click here.

Patent No.:

US 7085925 B1

PDFFull Text
Date of Patent:
Aug. 01, 2006

Filed:

Apr. 03, 2001

Trust ratings in group credentials

Applicants:

Stephen R. Hanna, Bedford, MA (US);

Anne H. Anderson, Acton, MA (US);

Yassir K. Elley, Waltham, MA (US);

Radia J. Perlman, Acton, MA (US);

Sean J. Mullan, Dublin, IE;

Inventors:

Stephen R. Hanna, Bedford, MA (US);

Anne H. Anderson, Acton, MA (US);

Yassir K. Elley, Waltham, MA (US);

Radia J. Perlman, Acton, MA (US);

Sean J. Mullan, Dublin, IE;

Assignee:

Sun Microsystems, Inc., Santa Clara, CA (US);

Attorney:

Kudirka & Jobse, LLP

Primary Examiner:

Christopher Revak

Assistant Examiner:

Kaveh Abrishamkar

Int. Cl.
CPC ...
H04L 9/00 (2006.01); H04L 9/32 (2006.01);
U.S. Cl.
CPC ...
Abstract

A method and system for evaluating a set of credentials that includes at least one group credential and that may include one or more additional credentials. A trust rating is provided in association with the at least one group credential within the set of credentials and trust ratings may also be provided in other credentials within the set of credentials. Each trust rating provides an indication of the level of confidence in the information being certified in the respective credential. In response to a request for access to a resource or service, an evaluation of the group credentials is performed by an access control program to determine whether access to the requested resource or service should be provided. In one embodiment, within any given certification path a composite trust rating for the respective path is determined. An overall trust rating for the set of credentials is determined based upon the composite trust ratings. Upon a determination that a user requesting access to a resource has an acceptable set of credentials and a satisfactory trust rating, access to the requested resource or service is granted to the user.

Find Patent Forward Citations

Loading…