Inventors:
- Schenectady NY, US
Dariush Amiri - San..Ramon CA, US
International Classification:
H04L 29/06
H04L 29/08
Abstract:
A system and method for access control services are disclosed. In some example embodiments, the method includes storing a user attribute of a user, a resource attribute of a resource of a web service, and an access control policy for accessing the resource, with the access control policy comprising one or more policy conditions to be satisfied in order to permit an action. In some example embodiments, a web service request for accessing the resource of the web service is received, with the web service request corresponding to the user and comprising an access token for the user, action data, and resource data. In some example embodiments, a decision to either permit or deny the web service request is generated based on the access control policy, the user attribute, and the resource attribute, and the decision is transmitted to the web service.