Browse Prior Art Database

Access Control List View for Objects

IP.com Disclosure Number: IPCOM000110136D
Original Publication Date: 1992-Oct-01
Included in the Prior Art Database: 2005-Mar-25
Document File: 2 page(s) / 73K

Publishing Venue

IBM

Related People

Austen, RF: AUTHOR [+5]

Abstract

Disclosed is a method for graphically viewing the relationship between objects and their access control lists (ACLs) and for manipulating the ACLs. Access control lists are collections of user and group names and associated permissions, used in a secure system to define who may access the object and to what extent (e.g., read or write).

This text was extracted from an ASCII text file.
This is the abbreviated version, containing approximately 52% of the total text.

Access Control List View for Objects

       Disclosed is a method for graphically viewing the
relationship between objects and their access control lists (ACLs)
and for manipulating the ACLs.  Access control lists are collections
of user and group names and associated permissions, used in a secure
system to define who may access the object and to what extent (e.g.,
read or write).

      In past implementations, users could create and update access
control lists, but often had to do so via a separate interface or
through several steps at the command line, without any direct,
graphically demonstration of the relationship between the ACL and the
object to which it applied.  This method provides the information to
the user in a single view, and provides the capability to modify the
ACL (e.g., change permission settings or add users and groups to the
list).  The number of steps required for the user to view or change
the ACL information is reduced significantly by providing this view.

      In today's windowing environments it is possible to have
multiple views of an object.  These views may show the object in
different formats, such as icon or text.  This method suggests
extending the definition of objects to include views which group
related information; specifically, the access control list view is a
list of all the users and groups which have access to the object,
with their associated permissions, shown in a primary window adjacent
to the object.  The user may switch from the object to the ACL view
to other related views; all operations on the object, including
defining it and setting its permissions, are completed from the same
window in a cohesive manner.  The user may manipulate the entries in
the access control list in a familiar way, by accessin...