Home Patent Forecast® Sectors Log In   Contact  
How it works Patent Forecast® Sectors Insights
Menu
Enjoy your FREE PREVIEW which shows only 2022 data and 25 documents. Contact Patent Forecast for full access.        

Energy Financial Settlements


  1. Home
  2. News and Insights
  3. Companies
  4. Patents
  5. Applications
  6. Visualization
  7. Download
  8. Subscribe
  9. History
  1. Home
  2. Menu
  3. Applications

Search All Applications in Energy Financial Settlements


Application US20190028512


Published 2019-01-24

Open Authorization Claim Scheme To Secure Resources

A device secures open authorization (OAuth) resources according to systems described herein. In some instances, a resource server is configured for receiving a request for authorization from a client device. The request, for authorization to use a requested resource, may include a token having at least one claim. The resource server may interpret data of the token according to a domain specific language. The interpreting may obtain at least one rule associated with the at least one claim from among a range of resource access control rules. The rule may be compared against a resource request and operation. Based on the comparison, the request may be allowed or rejected. In one example, interpretation of the token may decode resources including quantities and combinations of uniform resource identifiers (URIs) claimed by the token using a domain specific language defined by a context-free grammar.



Much More than Average Length Specification


View the Patent Matrix® Diagram to Explore the Claim Relationships

USPTO Full Text Publication >

4 Independent Claims

  • 1. A method, comprising: requesting by a client, authorization from an authorization server, to obtain a resource from a resource server; sending by the authorization server, a token indicating authorization to obtain the resource, wherein the token is configured in a domain specific language which, when parsed, expresses authorization claim values at least in part as one or more hypertext transfer protocol (HTTP) methods and a pattern of uniform resource identifiers (URIs), and wherein resource access control rules are represented using the domain specific language defined by a context-free grammar that expresses the one or more hypertext transfer protocol (HTTP) methods; receiving the token, at the client and from the authorization server; passing, by the client, the token to the resource server; requesting, by the client, the resource from the resource server, the resource comprising activation of one or more smart grid functions configured to turn electrical power to a customer on or off at a meter of the customer; responsive to passing the token to the resource server and requesting the resource from the resource server, turning the electrical power to the customer on or off at the meter of the customer; and receiving, from the resource server, an acknowledgement indicating that the resource has been received by the client.

  • 2. A method, comprising: under control of one or more processors configured with executable instructions: requesting authorization, from an authorization server, to obtain a resource from a resource server; receiving a token, from the authorization server, indicating authorization to obtain the resource, wherein the token is configured in a domain specific language which, when parsed, expresses authorization claim values at least in part as one or more hypertext transfer protocol (HTTP) methods and a pattern of uniform resource identifiers (URIs); passing the token to the resource server; and requesting the resource from the resource server.

  • 8. A method, comprising: under control of one or more processors configured with executable instructions: receiving, from a client device, a request to authorize the client device to obtain a resource from a resource server; configuring a token in according to a domain specific language that defines and expresses authorization claim values at least in part as one or more of hypertext transfer protocol (HTTP) methods and a pattern of uniform resource identifiers (URIs), wherein the claim values comprise an authorization scheme for the client device to receive and/or benefit from the resource from the resource server; and sending the token to the client device.

  • 13. A method, comprising: under control of one or more processors of a resource server configured with executable instructions: receiving, from a client device: a request to authorize the client device to obtain a requested resource from the resource server; and a token having at least one claim; interpreting data of the token according to a domain specific language, wherein the interpreting derives at least one rule associated with the at least one claim from among a range of resource access control rules; comparing the at least one rule against the request; and allowing or rejecting the request based at least in part on the comparing.