US 11,961,011 B2
Securing computing resources through entity aggregation
Dennis Paul Ackerman, Chesapeake, VA (US); and Stephen Francis Taylor, Virginia Beach, VA (US)
Filed by Go Logic Decision Time, LLC, Chesapeake, VA (US)
Filed on Jun. 28, 2023, as Appl. No. 18/215,384.
Application 18/215,384 is a continuation of application No. 18/110,189, filed on Feb. 15, 2023, granted, now 11,710,052.
Application 18/110,189 is a continuation of application No. 18/094,002, filed on Jan. 6, 2023, granted, now 11,710,051.
Application 18/094,002 is a continuation of application No. 17/989,514, filed on Nov. 17, 2022, granted, now 11,710,050.
Application 17/989,514 is a continuation of application No. 17/939,766, filed on Sep. 7, 2022.
Application 17/939,766 is a continuation of application No. 17/743,132, filed on May 12, 2022, granted, now 11,481,643, issued on Oct. 25, 2022.
Application 17/743,132 is a continuation of application No. 17/524,202, filed on Nov. 11, 2021, granted, now 11,361,228, issued on Jun. 14, 2022.
Application 17/524,202 is a continuation of application No. 17/157,496, filed on Jan. 25, 2021, granted, now 11,200,499, issued on Dec. 14, 2021.
Application 17/157,496 is a continuation of application No. 16/841,990, filed on Apr. 7, 2020, granted, now 10,936,957, issued on Mar. 2, 2021.
Application 16/841,990 is a continuation of application No. 16/238,122, filed on Jan. 2, 2019, granted, now 10,650,313, issued on May 12, 2020.
Application 16/238,122 is a continuation in part of application No. PCT/US2017/040252, filed on Jun. 30, 2017.
Prior Publication US 2023/0351219 A1, Nov. 2, 2023
Int. Cl. G06F 16/00 (2019.01); G06F 16/21 (2019.01); G06F 16/28 (2019.01); G06F 30/20 (2020.01); G06N 5/02 (2023.01); G06N 5/022 (2023.01); G06Q 10/00 (2023.01); G06Q 10/067 (2023.01); G06F 9/54 (2006.01)
CPC G06N 5/022 (2013.01) [G06F 16/212 (2019.01); G06F 16/288 (2019.01); G06F 30/20 (2020.01); G06N 5/027 (2013.01); G06Q 10/00 (2013.01); G06Q 10/067 (2013.01); G06F 9/541 (2013.01)] 73 Claims
OG exemplary drawing
 
1. A system for securing resources in a computing system through entity aggregation, the system comprising:
a plurality of entities including a user-type entity or user aggregation, a data-type entity or data aggregation, and a process-type entity or process aggregation, wherein each entity of the plurality of entities is associated with a corresponding entity-specific set of access and privilege information that is indicative of computing environment capabilities of the entity and that is derived from a corresponding root certificate of the entity;
an aggregation covenant defining an aggregation-specific set of computing environment capabilities, wherein at least one capability in the aggregation-specific set corresponds to a capability in the entity-specific set;
an aggregation rule configuration module that when executed on at least one processor is adapted to configure at least one rule by which entities of the plurality of entities are aggregated as members of an aggregation associated with the aggregation covenant;
an aggregation configuration module that when executed on at least one processor is adapted to define an instance of at least one of the plurality of entities as a member of the aggregation based on the at least one rule, wherein each member of the aggregation is bound by a combination of capabilities including capabilities of the aggregation-specific set of capabilities and capabilities of the entity-specific set of capabilities for which there are no corresponding capabilities in the aggregation-specific set of capabilities; and
the at least one processor adapted to control operation of at least one member of the aggregation by overriding the capability in the entity-specific set for the at least one member with the corresponding at least one capability in the aggregation-specific set.