US 12,341,783 B2
Access control enforcement architectures for dynamic manufacturing systems
Björn Leander, Västerås (SE); and Tomas Lindstrom, Västerås (SE)
Assigned to ABB Schweiz AG, Baden (CH)
Filed by ABB Schweiz AG, Baden (CH)
Filed on Jan. 31, 2023, as Appl. No. 18/162,683.
Claims priority of application No. 22155487 (EP), filed on Feb. 7, 2022.
Prior Publication US 2023/0254320 A1, Aug. 10, 2023
Int. Cl. H04L 9/40 (2022.01)
CPC H04L 63/105 (2013.01) [H04L 63/20 (2013.01)] 19 Claims
OG exemplary drawing
 
1. A computer system comprising:
one or more resource servers with resources to which access is controlled in accordance with an access-control policy specified in a computer-readable access-control language; and
a centralized authorization server, which is common to the one or more resource servers:
the computer system further comprising:
a first-type policy decision point, PDP, implemented by the centralized authorization server and configured to decide on dynamic policy privileges in accordance with the access-control policy; and
one or more second-type PDPs implemented by respective ones of the one or more resource servers and configured to decide on static policy privileges in accordance with the access-control policy.