| US 7,490,347 B1 | ||
| Hierarchical security domain model | ||
| Juergen Schneider, Ludwigshafer (Germany); Hiltrud Jaeschke, Muenster (Germany); Maria Jurova, Sofia (Bulgaria); and Stephan H. Zlatarev, Stara Zagora (Bulgaria) | ||
| Assigned to SAP AG, Walldorf (Germany) | ||
| Filed on Apr. 30, 2004, as Appl. No. 10/837,397. | ||
| Int. Cl. H04L 29/00 (2006.01) | ||
| U.S. Cl. 726—2 [713/157] | 28 Claims |
| 1. A method comprising:
requesting authentication of a user attempting to access a first resource through a session, the first resource being within
a first security domain, the first security domain being within a hierarchy of security domains, the hierarchy defining related
and unrelated security domains and a relative security level of one or more related security domains;
identifying the session as having access to the first security domain;
granting the user access to a second resource without requesting authentication of the user for access to a second security
domain based on said identification, the second resource being within the second security domain, the second security domain
related to the first security domain and having a lower relative security level than the first security domain within the
hierarchy of security domains; and
not granting the user access to the second resource without requesting authentication of the user for access to the second
security domain if the second security domain:
is unrelated to the first security domain, or
is related to the first security domain but has a higher relative security level than first security domain within the hierarchy
of security domains.
|