	US 12,069,100 B2
	Systems and methods for graph-based access control
Angelo Kastroulis, Jacksonville Beach, FL (US)
Assigned to CARRERA GROUP, INC., Jacksonville Beach, FL (US)
Filed by CARRERA GROUP, INC., Jacksonville Beach, FL (US)
Filed on Dec. 31, 2021, as Appl. No. 17/566,881.
Claims priority of provisional application 63/133,050, filed on Dec. 31, 2020.
Prior Publication US 2022/0210201 A1, Jun. 30, 2022
Int. Cl. H04L 9/40 (2022.01); G06F 21/62 (2013.01)

CPC H04L 63/20 (2013.01) [G06F 21/6218 (2013.01); H04L 63/10 (2013.01)]

19 Claims

1. A system for graph-based access control, comprising:

a computing device comprising a processor and a memory device;

wherein the processor is configured to:

receive a request to access a data element of a resource,

identify a target corresponding to the requested data value in an access control graph stored in the memory device comprising a plurality of sub-graphs, each sub-graph comprising a root node corresponding to a different resource of a corresponding plurality of resources, including a first sub-graph comprising a root node corresponding to the resource, one or more additional nodes corresponding to data elements of the resource, and one or more edges identifying a parent-child relationship between the root node and an additional node or between additional nodes,

analyze a path from a node corresponding to a source of the request to the target, the path comprising an edge indicating an access policy, and

responsive to the analysis, allow or disallow access in accordance with the indicated access policy to the data element of the resource.