[go: up one dir, main page]
More Web Proxy on the site http://driver.im/

SG11201900035VA - Authority revoking method and device - Google Patents

Authority revoking method and device

Info

Publication number
SG11201900035VA
SG11201900035VA SG11201900035VA SG11201900035VA SG11201900035VA SG 11201900035V A SG11201900035V A SG 11201900035VA SG 11201900035V A SG11201900035V A SG 11201900035VA SG 11201900035V A SG11201900035V A SG 11201900035VA SG 11201900035V A SG11201900035V A SG 11201900035VA
Authority
SG
Singapore
Prior art keywords
revoking
authority
authorization
moment
present application
Prior art date
Application number
SG11201900035VA
Inventor
Dong Chen
Original Assignee
Alibaba Group Holding Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Alibaba Group Holding Ltd filed Critical Alibaba Group Holding Ltd
Publication of SG11201900035VA publication Critical patent/SG11201900035VA/en

Links

Classifications

    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/30Authentication, i.e. establishing the identity or authorisation of security principals
    • G06F21/31User authentication
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/30Authentication, i.e. establishing the identity or authorisation of security principals
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/10Network architectures or network communication protocols for network security for controlling access to devices or network resources
    • H04L63/108Network architectures or network communication protocols for network security for controlling access to devices or network resources when the policy decisions are valid for a limited amount of time
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/08Key distribution or management, e.g. generation, sharing or updating, of cryptographic keys or passwords
    • H04L9/0891Revocation or update of secret information, e.g. encryption key update or rekeying
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F16/00Information retrieval; Database structures therefor; File system structures therefor
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F16/00Information retrieval; Database structures therefor; File system structures therefor
    • G06F16/20Information retrieval; Database structures therefor; File system structures therefor of structured data, e.g. relational data
    • G06F16/23Updating
    • G06F16/2379Updates performed during online database operations; commit processing
    • G06F16/2386Bulk updating operations
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/60Protecting data
    • G06F21/62Protecting access to data via a platform, e.g. using keys or access control rules
    • G06F21/6218Protecting access to data via a platform, e.g. using keys or access control rules to a system of files or objects, e.g. local or distributed file system or database
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/06Network architectures or network communication protocols for network security for supporting key management in a packet data network
    • H04L63/068Network architectures or network communication protocols for network security for supporting key management in a packet data network using time-dependent keys, e.g. periodically changing keys
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/08Network architectures or network communication protocols for network security for authentication of entities
    • H04L63/0807Network architectures or network communication protocols for network security for authentication of entities using tickets, e.g. Kerberos
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/12Applying verification of the received information
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/08Key distribution or management, e.g. generation, sharing or updating, of cryptographic keys or passwords
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W12/00Security arrangements; Authentication; Protecting privacy or anonymity
    • H04W12/08Access security
    • H04W12/082Access security using revocation of authorisation
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L2463/00Additional details relating to network architectures or network communication protocols for network security covered by H04L63/00
    • H04L2463/121Timestamp

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Security & Cryptography (AREA)
  • Theoretical Computer Science (AREA)
  • General Engineering & Computer Science (AREA)
  • Computer Hardware Design (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Physics & Mathematics (AREA)
  • General Physics & Mathematics (AREA)
  • Software Systems (AREA)
  • Computing Systems (AREA)
  • Databases & Information Systems (AREA)
  • General Health & Medical Sciences (AREA)
  • Bioethics (AREA)
  • Health & Medical Sciences (AREA)
  • Data Mining & Analysis (AREA)
  • Storage Device Security (AREA)
  • Information Retrieval, Db Structures And Fs Structures Therefor (AREA)
  • Management, Administration, Business Operations System, And Electronic Commerce (AREA)

Abstract

The present application discloses an authority revoking method and device. The authority revoking method includes: determining an authorization record set needing revoking; and setting a time validity attribute value for the determined set, and setting the validity value 0 a moment a moment. 5 According to the technical solutions provided in the present application, states of all records the can updated performing modification authorization do need be one one, storage locations of a plurality of authorization records have no impact. Therefore, authority batch-revoking efficiency effectively and 10 implementation difficulty is reduced.
SG11201900035VA 2016-07-05 2017-06-26 Authority revoking method and device SG11201900035VA (en)

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
CN201610523017.4A CN106878002B (en) 2016-07-05 2016-07-05 Permission revocation method and device
PCT/CN2017/089963 WO2018006715A1 (en) 2016-07-05 2017-06-26 Authority revoking method and device

Publications (1)

Publication Number Publication Date
SG11201900035VA true SG11201900035VA (en) 2019-02-27

Family

ID=59238926

Family Applications (1)

Application Number Title Priority Date Filing Date
SG11201900035VA SG11201900035VA (en) 2016-07-05 2017-06-26 Authority revoking method and device

Country Status (9)

Country Link
US (3) US11017063B2 (en)
EP (1) EP3484096B1 (en)
JP (1) JP6733028B2 (en)
KR (1) KR102194061B1 (en)
CN (1) CN106878002B (en)
MY (1) MY196366A (en)
SG (1) SG11201900035VA (en)
TW (1) TWI690819B (en)
WO (1) WO2018006715A1 (en)

Families Citing this family (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN106878002B (en) * 2016-07-05 2020-04-24 阿里巴巴集团控股有限公司 Permission revocation method and device
CN108390876B (en) * 2018-02-13 2021-12-14 西安电子科技大学 Multi-authorization-center access control method capable of supporting outsourcing revocation and verification and cloud server
CN110099043B (en) * 2019-03-24 2021-09-17 西安电子科技大学 Multi-authorization-center access control method supporting policy hiding and cloud storage system
CN112312165A (en) * 2020-10-19 2021-02-02 中移(杭州)信息技术有限公司 Video distribution method and device and computer readable storage medium
JP7180017B1 (en) 2022-01-28 2022-11-29 株式会社オービック UPDATE CONTROL DEVICE, UPDATE CONTROL METHOD, AND UPDATE CONTROL PROGRAM

Family Cites Families (80)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US3931614A (en) * 1973-06-26 1976-01-06 Addressograph Multigraph Corporation Data terminal having improved data output presentation
US3905022A (en) * 1973-06-26 1975-09-09 Addressograph Multigraph Data entry terminal having data correction means
US4031518A (en) * 1973-06-26 1977-06-21 Addressograph Multigraph Corporation Data capture terminal
US7162635B2 (en) * 1995-01-17 2007-01-09 Eoriginal, Inc. System and method for electronic transmission, storage, and retrieval of authenticated electronic original documents
US7337315B2 (en) * 1995-10-02 2008-02-26 Corestreet, Ltd. Efficient certificate revocation
US6766450B2 (en) * 1995-10-24 2004-07-20 Corestreet, Ltd. Certificate revocation system
US6301659B1 (en) * 1995-11-02 2001-10-09 Silvio Micali Tree-based certificate revocation system
US5937159A (en) * 1997-03-28 1999-08-10 Data General Corporation Secure computer system
US6128740A (en) * 1997-12-08 2000-10-03 Entrust Technologies Limited Computer security system and method with on demand publishing of certificate revocation lists
US6898711B1 (en) * 1999-01-13 2005-05-24 International Business Machines Corporation User authentication system and method for multiple process applications
WO2001006701A1 (en) * 1999-07-15 2001-01-25 Sudia Frank W Certificate revocation notification systems
US6948061B1 (en) * 2000-09-20 2005-09-20 Certicom Corp. Method and device for performing secure transactions
US7039803B2 (en) * 2001-01-26 2006-05-02 International Business Machines Corporation Method for broadcast encryption and key revocation of stateless receivers
US7350231B2 (en) * 2001-06-06 2008-03-25 Yahoo ! Inc. System and method for controlling access to digital content, including streaming media
US20030018606A1 (en) * 2001-07-17 2003-01-23 International Business Machines Corporation Revocation of tokens without communication between the token holders and the token server
FI20021738A0 (en) * 2002-09-30 2002-09-30 Ssh Comm Security Oyj Procedure for producing certificate revocation lists
US8010783B1 (en) * 2004-04-15 2011-08-30 Aol Inc. Service provider invocation
US8042163B1 (en) * 2004-05-20 2011-10-18 Symatec Operating Corporation Secure storage access using third party capability tokens
US7614082B2 (en) * 2005-06-29 2009-11-03 Research In Motion Limited System and method for privilege management and revocation
US20070294114A1 (en) * 2005-12-14 2007-12-20 Healthunity Corporation Record sharing privacy system and method
US9195665B2 (en) * 2006-04-28 2015-11-24 Hewlett-Packard Development Company, L.P. Method and system for data retention
US20080109361A1 (en) * 2006-11-08 2008-05-08 Healthunity Corporation Health record access system and method
EP2045767B1 (en) * 2007-10-01 2012-08-29 Accenture Global Services Limited Mobile data collection and validation systems and methods
WO2009070430A2 (en) * 2007-11-08 2009-06-04 Suridx, Inc. Apparatus and methods for providing scalable, dynamic, individualized credential services using mobile telephones
US9286742B2 (en) * 2008-03-31 2016-03-15 Plantronics, Inc. User authentication system and method
US8200655B2 (en) * 2009-01-22 2012-06-12 International Business Machines Corporation Query-based generation of data records
US8893232B2 (en) * 2009-02-06 2014-11-18 Empire Technology Development Llc Media monitoring system
EP2302534B1 (en) * 2009-09-18 2017-12-13 Software AG Method for mass-deleting data records of a database system
WO2011092686A1 (en) * 2010-01-27 2011-08-04 Varonis Systems, Inc. Time dependent access permissions
US8745380B2 (en) * 2010-02-26 2014-06-03 Red Hat, Inc. Pre-encoding a cached certificate revocation list
US8423764B2 (en) * 2010-06-23 2013-04-16 Motorola Solutions, Inc. Method and apparatus for key revocation in an attribute-based encryption scheme
JP5531819B2 (en) 2010-06-28 2014-06-25 株式会社リコー Management device, license management server, electronic device, electronic device management system, management method, program, and recording medium
JP5129313B2 (en) * 2010-10-29 2013-01-30 株式会社東芝 Access authorization device
WO2012059794A1 (en) * 2010-11-05 2012-05-10 Nokia Corporation Method and apparatus for providing efficient management of certificate revocation
US8839381B2 (en) * 2010-12-07 2014-09-16 Microsoft Corporation Revoking delegatable anonymous credentials
US8572730B1 (en) * 2011-02-28 2013-10-29 Symantec Corporation Systems and methods for revoking digital signatures
JP5583630B2 (en) 2011-05-09 2014-09-03 日本電信電話株式会社 Proxy application approval system and proxy application approval method
EP2724332B1 (en) * 2011-06-23 2018-04-18 Covectra, Inc. Systems for tracking and authenticating goods
US10366390B2 (en) * 2011-09-23 2019-07-30 Visa International Service Association Automatic refresh authorization for expired payment transaction authorizations
JP5830362B2 (en) * 2011-11-15 2015-12-09 株式会社インフォクラフト Distributed access control method
US8904494B2 (en) * 2011-12-12 2014-12-02 Avira B.V. System and method to facilitate compliance with COPPA for website registration
US8898743B1 (en) * 2012-02-27 2014-11-25 Google Inc. Personal content control on media device using mobile user device
US9053293B2 (en) * 2012-05-15 2015-06-09 Sap Se Personal authentications on computing devices
JP6006533B2 (en) 2012-05-25 2016-10-12 キヤノン株式会社 Authorization server and client device, server linkage system, and token management method
US9256722B2 (en) * 2012-07-20 2016-02-09 Google Inc. Systems and methods of using a temporary private key between two devices
US9530130B2 (en) * 2012-07-30 2016-12-27 Mastercard International Incorporated Systems and methods for correction of information in card-not-present account-on-file transactions
US8769651B2 (en) * 2012-09-19 2014-07-01 Secureauth Corporation Mobile multifactor single-sign-on authentication
CN103678392A (en) * 2012-09-20 2014-03-26 阿里巴巴集团控股有限公司 Data increment and merging method and device for achieving method
US9076002B2 (en) * 2013-03-07 2015-07-07 Atmel Corporation Stored authorization status for cryptographic operations
US8997187B2 (en) * 2013-03-15 2015-03-31 Airwatch Llc Delegating authorization to applications on a client device in a networked environment
US9098687B2 (en) * 2013-05-03 2015-08-04 Citrix Systems, Inc. User and device authentication in enterprise systems
WO2015027216A1 (en) * 2013-08-23 2015-02-26 Bouse Margaret System and method for identity management
US9407620B2 (en) * 2013-08-23 2016-08-02 Morphotrust Usa, Llc System and method for identity management
US9536065B2 (en) * 2013-08-23 2017-01-03 Morphotrust Usa, Llc System and method for identity management
US9898880B2 (en) * 2013-09-10 2018-02-20 Intel Corporation Authentication system using wearable device
US9412031B2 (en) * 2013-10-16 2016-08-09 Xerox Corporation Delayed vehicle identification for privacy enforcement
CN104639586B (en) * 2013-11-13 2018-06-08 阿里巴巴集团控股有限公司 A kind of data interactive method and system
US9577823B2 (en) * 2014-03-21 2017-02-21 Venafi, Inc. Rule-based validity of cryptographic key material
KR101926052B1 (en) * 2014-05-12 2018-12-06 삼성에스디에스 주식회사 System and method for managing going and coming
US9208284B1 (en) * 2014-06-27 2015-12-08 Practice Fusion, Inc. Medical professional application integration into electronic health record system
US9712635B2 (en) * 2014-07-25 2017-07-18 Accenture Global Services Limited Aggregated data in a mobile device for session object
US9712537B2 (en) * 2014-07-25 2017-07-18 Accenture Global Services Limited Aggregated data in a mobile device for displaying cluster sessions
US10678880B2 (en) * 2014-08-07 2020-06-09 Greenman Gaming Limited Digital key distribution mechanism
US9350726B2 (en) * 2014-09-11 2016-05-24 International Business Machines Corporation Recovery from rolling security token loss
US9361093B2 (en) * 2014-10-01 2016-06-07 Sap Se Revoking a zero downtime upgrade
JP6303979B2 (en) * 2014-10-29 2018-04-04 株式会社リコー Information processing system, information processing apparatus, information processing method, and program
US10356053B1 (en) * 2014-12-12 2019-07-16 Charles Schwab & Co., Inc. System and method for allowing access to an application or features thereof on each of one or more user devices
EP3269081A4 (en) * 2015-04-06 2018-04-25 Hewlett-Packard Enterprise Development LP Certificate generation
US9824351B2 (en) * 2015-05-27 2017-11-21 Bank Of America Corporation Providing access to account information using authentication tokens
US9830591B2 (en) * 2015-05-27 2017-11-28 Bank Of America Corporation Providing access to account information using authentication tokens
CN104980438B (en) * 2015-06-15 2018-07-24 中国科学院信息工程研究所 The method and system of digital certificate revocation status checkout in a kind of virtualized environment
US9853820B2 (en) * 2015-06-30 2017-12-26 Microsoft Technology Licensing, Llc Intelligent deletion of revoked data
CN105072180B (en) * 2015-08-06 2018-02-09 武汉科技大学 A kind of cloud storage data safety sharing method for having permission time control
US20170147808A1 (en) * 2015-11-19 2017-05-25 International Business Machines Corporation Tokens for multi-tenant transaction database identity, attribute and reputation management
CN105553675B (en) * 2016-01-29 2019-05-10 北京小米移动软件有限公司 Log in the method and device of router
US10218701B2 (en) * 2016-03-09 2019-02-26 Avaya Inc. System and method for securing account access by verifying account with email provider
US10469526B2 (en) * 2016-06-06 2019-11-05 Paypal, Inc. Cyberattack prevention system
CN106878002B (en) 2016-07-05 2020-04-24 阿里巴巴集团控股有限公司 Permission revocation method and device
US10735197B2 (en) * 2016-07-29 2020-08-04 Workday, Inc. Blockchain-based secure credential and token management across multiple devices
US11106812B2 (en) * 2019-05-09 2021-08-31 At&T Intellectual Property I, L.P. Controlling access to datasets described in a cryptographically signed record

Also Published As

Publication number Publication date
JP6733028B2 (en) 2020-07-29
CN106878002B (en) 2020-04-24
US11017063B2 (en) 2021-05-25
EP3484096A1 (en) 2019-05-15
TW201802717A (en) 2018-01-16
TWI690819B (en) 2020-04-11
US20190156001A1 (en) 2019-05-23
JP2019525317A (en) 2019-09-05
US11017065B2 (en) 2021-05-25
CN106878002A (en) 2017-06-20
KR20190025981A (en) 2019-03-12
US20200143018A1 (en) 2020-05-07
EP3484096B1 (en) 2021-06-02
US11397797B2 (en) 2022-07-26
KR102194061B1 (en) 2020-12-23
US20210286862A1 (en) 2021-09-16
WO2018006715A1 (en) 2018-01-11
MY196366A (en) 2023-03-27
EP3484096A4 (en) 2019-07-17

Similar Documents

Publication Publication Date Title
SG11201900035VA (en) Authority revoking method and device
PH12017501552A1 (en) Battery, system, battery management method, battery management program, and recording medium
Aad et al. Search for resonances decaying into top-quark pairs using fully hadronic decays in pp collisions with ATLAS at $\sqrt {s}= 7$ TeV
NZ746653A (en) Access control for encrypted data in machine-readable identifiers
PH12019000010A1 (en) Systems and methods for managing batteries based on usgae
MX356939B (en) Method and system for generating an advanced storage key in a mobile device without secure elements.
WO2016200465A3 (en) System and method for hierarchical cryptographic key generation using biometric data
WO2014179145A3 (en) Drive level encryption key management in a distributed storage system
EA201990251A1 (en) SYSTEM OF DISTRIBUTED PROCESSING OF TRANSACTIONS AND AUTHENTICATION
WO2018013431A3 (en) Encryption key exchange process using access device
WO2015112224A3 (en) Memory integrity
MX359182B (en) Video recording method and device.
WO2014151157A3 (en) Secure query processing over encrypted data
SG10201805458PA (en) Methods and apparatus for a distributed database within a network
PH12018501668A1 (en) Electronic payment service processing method and device, and electronic payment method and device
MX2015009172A (en) Systems and methods for identifying and reporting application and file vulnerabilities.
WO2014197300A3 (en) Automated system for organizing presentation slides
EP3621038A3 (en) Methods and devices for replacing expression, and computer readable storage media
WO2016126052A3 (en) Authentication method and system
WO2019141289A3 (en) Methods and devices for data traversal
WO2014036282A3 (en) System and process of associating import and/or export data with a corporate identifier
MX2018013485A (en) System and method for tracking a box and correlating a quality characteristic of the box to an overall equipment effectiveness of a packaging line that manipulates the box during a product packaging process.
GB201217507D0 (en) Database management system
AU2014410705A1 (en) Data processing method and apparatus
GB2553698A (en) Methods, systems and media for generating an advertisement from a video stream