DESC:FIELD OF THE INVENTION

The present disclosure relates to permission management techniques and more particularly, to a system and a method for managing access permissions to multiple entities for controlling electronic devices.

BACKGROUND

As organizations strive to improve their operations and enhance security, there is an increasing need for an effective and efficient system for managing permissions for devices/appliances which are part of the organization’s infrastructure. Such devices/appliances also include Internet of Things (IoT) devices which are remotely monitored and/or controlled by different users or a group of users as authorized by the organization. Further, designing an authentication and authorization service for such IoT devices can be extremely complex for organizations.

Firstly, a flexible identity lifecycle for such IoT devices is required. Such designing includes determining a process for registering devices, onboarding users, and creating a well-defined authentication and authorization process for all kinds of connected devices and users. Secondly, the organizations are required to establish a well-defined procedure for access control including a preference and consent management system for users to control the ecosystem including the IoT devices is required. Lastly, organizations need to outline policies for protecting Personally Identifiable Information (PII) and set up security safeguards.

Further, in a commercial space, the users are provided permission to manage spaces including the devices/appliances in a hierarchical manner. The number of devices/appliances in such commercial space is extensively large and also such devices/appliances may have varying capabilities. Therefore, managing permissions and associated authorization processes for such devices/appliances involve complexity which is difficult to overcome.

Moreover, such complexity increases in multi-tenanted spaces as designing a generic authorization and permission management system for such spaces becomes more daunting when every tenant of a multi-tenanted space management system provides different requirements on the nature and complexity of managed devices/appliances around which permissions are designed and managed.

Therefore, there exists a need to overcome the drawbacks in managing permission for devices/appliances in a hierarchical manner.

SUMMARY

This summary is provided to introduce a selection of concepts, in a simplified format, that are further described in the detailed description of the invention. This summary is neither intended to identify key or essential inventive concepts of the invention and nor is it intended for determining the scope of the invention.

In an embodiment of the present invention, a system for managing an access control of a plurality of electronic devices on premises is disclosed. The system includes a remote server comprising an identifying module adapted to identify one or more users requiring authorization for the access control of the plurality of electronic devices on the premises. The remote server comprises a receiving module adapted to receive a location-map for each of the plurality of electronic devices on the premises. The location-map indicates spaces having the plurality of electronic devices installed, within the premises. The remote server comprises a generating module adapted to generate an association of the one or more users with the plurality of electronic devices based on the location-map. The association indicates a relationship between the one or more users and the plurality of electronic devices. The generating module is adapted to generate a schema of the access control of the plurality of electronic devices for the one or more users such that the schema provides scope for authorization for the access control of each of the electronic devices to each of the associated one or more users.

In another embodiment of the present invention, a method for managing an access control of a plurality of electronic devices in premises is disclosed. The method includes identifying, by a remote server, one or more users requiring authorization for the access control of the plurality of electronic devices on the premises. The method includes receiving, by the remote server, a location-map for each of the plurality of electronic devices on the premises. The location-map indicates spaces having the plurality of electronic devices installed, within the premises. The method includes generating, by the remote server, an association of the one or more users with the plurality of electronic devices based on the location-map. The association indicates a relationship between the one or more users and the plurality of electronic devices. The method includes generating, by the remote server, a schema of the access control of the plurality of electronic devices for the one or more users such that the schema provides scope for authorization for the access control of each of the electronic device to each of the associated one or more users.

To further clarify the advantages and features of the present invention, a more particular description of the invention will be rendered by reference to specific embodiments thereof, which is illustrated in the appended drawings. It is appreciated that these drawings depict only typical embodiments of the invention and are therefore not to be considered limiting of its scope. The invention will be described and explained with additional specificity and detail with the accompanying drawings.

BRIEF DESCRIPTION OF THE DRAWINGS

These and other features, aspects, and advantages of the present invention will become better understood when the following detailed description is read with reference to the accompanying drawings in which like characters represent like parts throughout the drawings, wherein:

Figure 1 illustrates a block diagram depicting an environment of implementation of a system for managing an access control of an electronic device installed on the premises, according to an embodiment of the present disclosure;

Figure 2 illustrates a block diagram of a server for managing the access control of the electronic device installed on the premises, according to an embodiment of the present disclosure;

Figures 3a-3b illustrate a use-case depicting management of the access control of the electronic device in the premises, defined using a dot notation technique, according to an embodiment of the present disclosure; and

Figure 4 illustrates a flowchart depicting a method for managing the access control of the electronic device installed on the premises, according to an embodiment of the present disclosure.

Further, skilled artisans will appreciate that elements in the drawings are illustrated for simplicity and may not have necessarily been drawn to scale. For example, the flow charts illustrate the method in terms of the most prominent steps involved to help to improve understanding of aspects of the present invention. Furthermore, in terms of the construction of the device, one or more components of the device may have been represented in the drawings by conventional symbols, and the drawings may show only those specific details that are pertinent to understanding the embodiments of the present invention so as not to obscure the drawings with details that will be readily apparent to those of ordinary skill in the art having benefit of the description herein.

DETAILED DESCRIPTION OF FIGURES

For the purpose of promoting an understanding of the principles of the invention, reference will now be made to the embodiment illustrated in the drawings and specific language will be used to describe the same. It will nevertheless be understood that no limitation of the scope of the invention is thereby intended, such alterations and further modifications in the illustrated system, and such further applications of the principles of the invention as illustrated therein being contemplated as would normally occur to one skilled in the art to which the invention relates. Unless otherwise defined, all technical and scientific terms used herein have the same meaning as commonly understood by one of ordinary skilled in the art to which this invention belongs. The system, methods, and examples provided herein are illustrative only and not intended to be limiting.

For example, the term “some” as used herein may be understood as “none” or “one” or “more than one” or “all.” Therefore, the terms “none,” “one,” “more than one,” “more than one, but not all” or “all” would fall under the definition of “some.” It should be appreciated by a person skilled in the art that the terminology and structure employed herein is for describing, teaching, and illuminating some embodiments and their specific features and elements and therefore, should not be construed to limit, restrict, or reduce the spirit and scope of the present disclosure in any way.

For example, any terms used herein such as, “includes,” “comprises,” “has,” “consists,” and similar grammatical variants do not specify an exact limitation or restriction, and certainly do not exclude the possible addition of one or more features or elements, unless otherwise stated. Further, such terms must not be taken to exclude the possible removal of one or more of the listed features and elements, unless otherwise stated, for example, by using the limiting language including, but not limited to, “must comprise” or “needs to include.”

Whether or not a certain feature or element was limited to being used only once, it may still be referred to as “one or more features” or “one or more elements” or “at least one feature” or “at least one element.” Furthermore, the use of the terms “one or more” or “at least one” feature or element do not preclude there being none of that feature or element, unless otherwise specified by limiting language including, but not limited to, “there needs to be one or more...” or “one or more element is required.”

Unless otherwise defined, all terms and especially any technical and/or scientific terms, used herein may be taken to have the same meaning as commonly understood by a person ordinarily skilled in the art.

Reference is made herein to some “embodiments.” It should be understood that an embodiment is an example of a possible implementation of any features and/or elements of the present disclosure. Some embodiments have been described for the purpose of explaining one or more of the potential ways in which the specific features and/or elements of the proposed disclosure fulfil the requirements of uniqueness, utility, and non-obviousness.

Use of the phrases and/or terms including, but not limited to, “a first embodiment,” “a further embodiment,” “an alternate embodiment,” “one embodiment,” “an embodiment,” “multiple embodiments,” “some embodiments,” “other embodiments,” “further embodiment”, “furthermore embodiment”, “additional embodiment” or other variants thereof do not necessarily refer to the same embodiments. Unless otherwise specified, one or more particular features and/or elements described in connection with one or more embodiments may be found in one embodiment, or may be found in more than one embodiment, or may be found in all embodiments, or may be found in no embodiments. Although one or more features and/or elements may be described herein in the context of only a single embodiment, or in the context of more than one embodiment, or in the context of all embodiments, the features and/or elements may instead be provided separately or in any appropriate combination or not at all. Conversely, any features and/or elements described in the context of separate embodiments may alternatively be realized as existing together in the context of a single embodiment.

Any particular and all details set forth herein are used in the context of some embodiments and therefore should not necessarily be taken as limiting factors to the proposed disclosure.

Embodiments of the present invention will be described below in detail with reference to the accompanying drawings.

Figure 1 illustrates a block diagram depicting an environment of implementation of a system 100 for managing an access control of an electronic device installed on the premises, according to an embodiment of the present disclosure. In an embodiment of the invention, the system 100 includes a remote server 102, for example, to store hierarchy and to manage the access control relating to a user 104 and the electronic device 108. Referring to Figure 1, the system 100 may be implemented between the user 104 and the electronic device 108. The electronic device 108 may include but is not limited to, a fan, an air conditioning system, a television, a light, an elevator, an escalator, a fire alarm, and an electronic door lock, without departing from the scope of the present disclosure.

In an embodiment, the system 100 includes the remote server 102 adapted to manage the access control of the electronic device 108 installed in the premises. In an example, the remote server 102 may indicate any machine controllable through a wireless network and capable of executing a set of instructions (sequential or otherwise) that specify actions to be taken by that machine. The system 100 may also include a memory unit (not shown) adapted to store the access control of the electronic device 108. The memory unit may include any non-transitory computer-readable medium known in the art including, for example, volatile memory, such as static random-access memory (SRAM) and dynamic random access memory (DRAM), and/or non-volatile memory, such as read-only memory (ROM), erasable programmable ROM, flash memories, hard disks, optical disks, and magnetic tapes.

In one or more embodiments, the premises may include residential premises or commercial premises, including space for the installation of the electronic device 108. In an example, the premises may be differentiated into multiple locations such as multiple floors, multiple buildings, sections, or compartments on the floor. In an example, a location-map 106 provided as an input to the system 100 may indicate spaces or locations in the premises having the electronic device 108 installed in said spaces or locations. The server 102 may be adapted to receive the location-map 106 and store information of the electronic device 108 installed within the premises based on the location-map 106.

In one or more embodiments of the present disclosure, the electronic device 108 may be installed on the premises. The server 102 may be adapted to manage the access control of the electronic device 108. In an example, the access control may indicate selective restriction or permission to interact with the electronic device 108 granted to the user 104. The server 102, by managing the access control, regulates which of the electronic devices may be used. Further, it may be apparent that there may be a plurality of the electronic devices 108 such as fan 108a, the air conditioner 108b, the lights 108c, and a camera 108d, as shown in Figure 1.

In an example, the electronic device 108 may include a feature. The feature may be indicated as attributes of the electronic device 108. In the example, the features associated with the fan 108a may include, but not limited to, speed control and directional control. Similarly, the features associated with the air conditioner 108b may include, but not limited to, an increase/a decrease in temperature, modes, and air direction. Thus, the feature of the electronic device 108 may be a pre-defined user input in the system 100 depending on the nature of the electronic device 108. Further, an activity may be associated with the feature. The activity may indicate an action to be performed with respect to the feature of the electronic device 108 for example, the user may be allowed to turn ON and turn OFF the light however, the user may not be allowed to reset the parameters of the light. Further, in the instance of multiple electronic devices, a group comprising of multiple electronic devices may be determined based on the feature similar in each of the electronic devices. In an example, the fan and the air conditioner may be categorized into the group or a category representing cooling electronic devices. Similarly, the light and the camera may be categorized into the group or the category representing monitoring devices. Thus, the groups may represent a hierarchy of multiple electronic devices across a plurality of categories of electronic devices.

The system 100 includes the user 104. It may be apparent that there may be a plurality of user s 104 such as a user 104a, a user 104b, and a user 104c. In an example, the user 104 may be an end user accessing the electronic device 108 via a user terminal. The user terminal may be embodied as a communication device that may be operated by the end user to access the electronic device 108. The user terminal 104 may include, but is not limited to, a tablet PC, a Personal Digital Assistant (PDA), a mobile device, a palmtop computer, a laptop computer, a desktop computer, a server, a cloud server, a remote server, a communications device, a wireless telephone, and any other machine controllable through the wireless-network and capable of executing a set of instructions (sequential or otherwise) that specify actions to be taken by that machine.

In one or more embodiments, the user 104 may be associated with a user-role 110. The user-role 110 may indicate a capacity or function of the user 104 based on the end user operating the user terminal. In an example, in the premises, say, the commercial premises includes multiple end users, such as a manager, a technician, a supervisor, or a tenant. Each of the end users may have the user-role 110 pre-defined via the user input and accordingly, the user terminal may be operated by the user 104 based on the associated user-role 110. Further, in an example, the manager may represent a different user-role 110 in comparison to the tenant and thus may require different access control to the electronic device 108. Thus, to determine the access control of the electronic device 108, the user-role 110 of the user 104 may be determined by the server 102 based on the pre-defined user input.

Now referring to Figure 1, the user 104a may be operated by the manager acting as the end-user. Thus, the user role 110 may be predefined for the user 104a as the manager and accordingly, the user 104a may receive permission to interact with the electronic device 108.

Further, referring to Figure 1, the remote server 102 may associate the electronic device 108 with the user 104a. As noted above, the user 104a being the manager may require to operate multiple electronic devices. Thus, the remote server 102 associates the electronic device 108a, 108b, 108c, and 108d with the user 104a. Thus, with the association, the user 104a receives permission to interact with the electronic device 108.

In one or more embodiments of the present disclosure, the remote server 102 may be adapted to generate the association of the user 104 with the electronic device 108 based on the location-map 106. In an example, the user 104a may be granted permission to access control of the electronic device 108 installed in the premises based on the location-map 106. Thus, the association of the user 104 with the electronic device 108 is generated based on the location-map 106 and indicates management of the access control of the electronic device 108.

In some embodiments of the present disclosure, the remote server 102 may be adapted to generate a schema 112 of the access control of the electronic device 108 for the user 104. In an example, the schema 112 provides authorization for the access control of the electronic device 108 to the user 104. In another example, the schema 112 may also provide authorization for the access control of the premises. The premises may be differentiated into multiple locations such as multiple floors, multiple buildings, sections, or compartments on the floor.

Figure 2 illustrates a block diagram of the remote server 102 for managing the access control of the electronic device 108 in the premises, according to an embodiment of the present disclosure. The remote server 102 may include but not limited to, a processor 202, a memory 204, modules 206, and data 208. The modules 206 and the memory 204 may be coupled to the processor 202.

The processor 202 can be a single processing unit or several units, all of which could include multiple computing units. The processor 202 may be implemented as one or more microprocessors, microcomputers, microcontrollers, digital signal processors, central processing units, state machines, logic circuitries, and/or any devices that manipulate signals based on operational instructions. Among other capabilities, the processor 202 is adapted to fetch and execute computer-readable instructions and data stored in the memory 204.

The memory 204 may include any non-transitory computer-readable medium known in the art including, for example, volatile memory, such as static random access memory (SRAM) and dynamic random access memory (DRAM), and/or non-volatile memory, such as read-only memory (ROM), erasable programmable ROM, flash memories, hard disks, optical disks, and magnetic tapes.

The modules 206, amongst other things, include routines, programs, objects, components, data structures, etc., which perform particular tasks or implement data types. The modules 206 may also be implemented as, signal processor(s), state machine(s), logic circuitries, and/or any other device or component that manipulates signals based on operational instructions.

Further, the modules 206 can be implemented in hardware, instructions executed by a processing unit, or by a combination thereof. The processing unit can comprise a computer, a processor, such as the processor 202, a state machine, a logic array, or any other suitable devices capable of processing instructions. The processing unit can be a general-purpose processor which executes instructions to cause the general-purpose processor to perform the required tasks or, the processing unit can be dedicated to performing the required functions. In another embodiment of the present disclosure, the modules 206 may be machine-readable instructions (software) which, when executed by a processor/processing unit, perform any of the described functionalities.

In an embodiment, the modules 206 may include an identifying module 210, a receiving module 212, and a generating module 214. The identifying module 210, the receiving module 212, and the generating module 214 may be in communication with each other. The data 208 serves, amongst other things, as a repository for storing data processed, received, and generated by one or more of the modules 206.

Referring to Figure 1 and Figure 2, the identifying module 210 may be adapted to identify the user 104 requiring authorization for the access control of the electronic device 108 installed on the premises. In an example, the identifying module 210 may be adapted to identify the user 104 based on a credential associated with the users. The user via a user terminal may input the credentials thus validating identity of the user. The identifying module 210 may be in communication with the receiving module 212.

In an embodiment, the receiving module 212 may be adapted to receive the location-map 106 for the electronic device 108 installed on the premises. Thus, the location-map 106 may include spaces or locations having the electronic device 108 installed within the premises. Thus, the remote server 102 may successfully identify the location of the electronic device 108 within the premises. The identifying module 210 and the receiving module 212 may be in communication with the generating module 214.

In an embodiment, the generating module 214 may be adapted to generate the association of the user 104 with the electronic device 108 based on the location-map 106. In an example, the association between the user 104 and the electronic device 108 may indicate the relationship between the user 104 and the electronic device 108.

In an example, the generating module 214 may be adapted to determine the user-role 110 of the user 104. As illustrated in Figure 1, the user-role 110 may be based on the pre-defined user input. Further, the generating module 214 may be adapted to correlate the user 104 and the location-map 106 based on the determined user-role 110. In the example, the user 104 operated by the end-user may have the user-role 110 pre-defined such that, based on the user-role 110, the access spaces or the locations in the premises may be decided.

Referring to Figure 1, for example, the user 104a representing the user-role 110 as the manager, may be allowed to access multiple spaces or locations in the premises. Thus, the location-map 106 may be correlated with the user- 104. Further, the generating module 214 may be adapted to determine the generated association for the user 104 with the electronic device 108 based on the correlation such that the user 104 receives permission to interact with the electronic device 108 installed in the location-map 106.

In an embodiment, the generating module 214 may be adapted to generate the schema 112 of the access control of the electronic device 108 for the user 104 such that the schema 112 provides authorization for the access control of the electronic device 108 associated with the user 104.

In an example, the generating module 214 may be adapted to determine the feature of the electronic device 108 based on the pre-defined user input. The feature may be indicated as attributes of the electronic device 108. Referring to Figure 1, the features associated with the fan 108a may include, but not limited to, a speed change, and a direction change. Similarly, the features associated with the air conditioner 108b may include, but not limited to, an increase/a decrease in temperature, modes, and air direction. Thus, the feature of the electronic device 108 may be a pre-defined user input in the system 100 depending on the nature of the electronic device 108. Further, the generating module 214 may be adapted to correlate the user 104 with the electronic device 108 based on the user-role 110 and the feature of the electronic device 108. Thus, the generating module 214 may be adapted to generate the schema 112 of the access control of the electronic device 108 for the user 14 based on the correlation. Thus, the schema 112 provides the user 104 a scope for authorization to access control of the electronic device 108 based on the feature correlated with the user- 104. In the example, the features associated with the fan such as the speed change and the direction change of the fan based on the user-role 110 of the user- 104 may be assigned to the user 104 by the remote server 102. Such that the user 104 is associated with the fan (the electronic device) and in accordance with the schema 112, the user 104 may be having the scope to change the speed, and change the direction of the fan. Thus, the generating module 214 may be adapted to authorize the access control of the electronic device 108 to the user 104.

In some embodiments of the present disclosure, the generating module 214 may be adapted to generate the schema 112 via a dot notation technique.

Figure 3a illustrates a use-case depicting the management of the access control of the electronic device 108 in the premises, defined using the dot notation technique, according to an embodiment of the present disclosure.

As depicted in Figure 3a, at block 302a, the dot notation technique is applied to manage the access control of the electronic device 108 for the user 104.

At block 304a, the user- 104 is identified.

At block 306a, the association between the user- 104 and the location-map 106 is generated or defined using the dot notation.

At block 308a, the schema 112 of the access control of the electronic device 108 for the user 104 is defined using the dot notation. The schema 112 thus provides scope for authorization for the access control of the electronic device 108 to the associated user 104.

Figure 3b illustrates another use-case depicting the management of the access control of the electronic device 108 in the premises, defined using the dot notation technique, according to an embodiment of the present disclosure.
In an example, as depicted in Figure 3b, at block 302b, the dot notation technique is applied to manage the access control of the electronic device 108 for the user 104.

At block 304b the user 104 is identified.

At block 306b, the schema 112 of the access control of the electronic device 108 for the user 104 is defined using the dot notation. The schema 112 thus provides scope for authorization for the access control of the electronic device 108 to the associated user 104. In the example, the schema 112 generated at the block 306b is not restricted to any specific electronic device 108 within the premises rather the schema 112 may be used associated with any available electronic device.

Figure 4 illustrates a flow chart depicting a method 400 for managing the access control of the electronic device 108 in the premises, according to an embodiment of the present disclosure. The method 400 may be a computer-implemented method executed, for example, by the remote server 102. For the sake of brevity, the constructional and operational features of the system 100 that are already explained in the description of Figure 1, Figure 2, and Figure 3, are not explained in detail in the description of Figure 4.

At block 402, the method 400 may include identifying the user 104 requiring authorization for the access control of the electronic device 108 in the premises. In an example, the user may be identified based on a credentials input by the user via a user terminal. The credentials may be associated with the user.

At block 404, the method 400 may include receiving the location-map 106 for electronic device 108 installed on the premises. The location-map 106 may indicate spaces or locations having the electronic device 108 installed, within the premises.

At block 406, the method 400 may include generating the association of the user 104 with the electronic device 108 based on the location-map 106. The association indicates relationship between the user 104 and electronic device 108. The method 400 may include determining the user-role 110 of the user 104 based on the pre-defined user input. Further, the method may include correlating the user 104 and the location map 106 based on the identified user-role 110. The method 400 may include generating the association for the user 104 with the electronic device 108 based on the correlation.

At block 408, the method 400 may include generating the schema 112 of the access control of the electronic device 108 for the user 104 such that the schema 112 provides scope for authorization for the access control of the electronic device 108 to each of the associated user 104.

Further, the method 400 may include determining the user-role 110 of the user 104 based on the pre-defined user input. The method 400 may include determining the feature of the electronic device 108 based on the pre-defined user input. The method 400 may include correlating the user 104 and the electronic device 108 based on the user-role 110 and the feature. Thus, generating the schema 112 of the access control of the electronic device 108 for the user 104 based on the correlation.

In an example, the schema 112 is generated via the dot notation technique.

While specific language has been used to describe the present subject matter, any limitations arising on account thereto, are not intended. As would be apparent to a person in the art, various working modifications may be made to the method in order to implement the inventive concept as taught herein. The drawings and the foregoing description give examples of embodiments. Those skilled in the art will appreciate that one or more of the described elements may well be combined into a single functional element. Alternatively, certain elements may be split into multiple functional elements. Elements from one embodiment may be added to another embodiment. ,CLAIMS:1. A method (400) for managing an access control of a plurality of electronic devices (108) installed on a premises, the method (400) comprising:
identifying (402), by a remote server (102), one or more users requiring authorization for the access control of the plurality of electronic devices (108) in the premises;
receiving (404), by the remote server (102), a location-map (106) for each of the plurality of electronic devices (108) in the premises, wherein the location-map (106) indicates spaces having the plurality of electronic devices (108) installed, within the premises;
generating (406), by the remote server (102), an association of the one or more users with the plurality of electronic devices (108) based on the location-map (106), wherein the association indicates a relationship between the one or more users and the plurality of electronic devices (108); and
generating (408), by the remote server (102), a schema of the access control of the plurality of electronic devices (108) for the one or more users such that the schema provides scope for authorization for the access control of each of the electronic devices (108) to each of the associated one or more users.
2. The method (400) as claimed in claim 1 wherein, identifying the one or more users based on a credentials associated with the one or more users.

3. The method (400) as claimed in claim 1 wherein, generating the association of the one or more users with the plurality of electronic devices (108), comprises:
determining a user-role of each of the one or more users based on a pre-defined user input;
correlating each of the one or more users and the location map (106) based on the identified user-role; and
generating the association for each of the one or more users with each of the plurality of electronic devices (108) based on the correlation.
4. The method (400) as claimed in claim 1 wherein, generating the schema of the access control of the plurality of electronic devices (108) for the one or more users, further comprises:
determining the user-role of each of the one or more users based on a pre-defined user input;
determining at least one feature and an activity associated with at least one feature of each of the plurality of electronic devices based on the pre-defined user input;
correlating each of the one or more users and each of the plurality of electronic devices based on the user-role and the at least one feature; and
generating the schema of the access control of the plurality of electronic devices (108) for each of the one or more users based on the correlation.
5. The method as claimed in claim 4 wherein, generating the schema via a separator demarked fields technique.

6. The method as claimed in claim 4, further comprises:
determining at least one group of the plurality of electronic devices based on the at least one feature;
correlating each of the one or more users and the determined at least one group; and
generating the schema of the access control of the plurality of electronic devices (108) for each of the one or more users based on the correlation.
7. A system (100) for managing an access control of a plurality of electronic devices (108) installed on a premises, the system (100) comprises:
a remote server (102) comprising:
an identifying module (210) adapted to identify one or more users requiring authorization for the access control of the plurality of electronic devices (108) in the premises;
a receiving module (212) adapted to receive a location-map (106) for each of the plurality of electronic devices (108) in the premises, wherein the location-map (106) indicates spaces having the plurality of electronic devices (108) installed, within the premises;
a generating module (214) adapted to generate an association of the one or more users with the plurality of electronic devices (108) based on the location-map, wherein the association indicates a relationship between the one or more user s and the plurality of electronic devices; and
wherein the generating module (214) is adapted to generate a schema of the access control of the plurality of electronic devices (108) for the one or more users such that the schema provides scope for authorization for the access control of each of the electronic devices to each of the associated one or more users.
8. The system (100) as claimed in claim 7 wherein, the identifying module (210) is adapted to:
identify the one or more users based on a credentials associated with the one or more users..
9. The system (100) as claimed in claim 7 wherein, the generating module is adapted to:
determine a user-role of each of the one or more users based on a pre-defined user input;
correlate each of the one or more users and the location map (106) based on the determined user-role; and
generate association for each of the one or more users with each of the plurality of electronic devices based on the correlation such that the one or more users receive permission to interact with at least one electronic device among the plurality of electronic devices (108).
10. The system (100) as claimed in claim 7 wherein, the generating module (214) is adapted to:
determine the user-role of each of the one or more users based on the pre-defined user input;
determine at least one feature and an activity associated with at least one feature of each of the plurality of electronic devices based on the pre-defined user input;
correlate each of the one or more users and each of the plurality of electronic devices based on the user-role and the at least one feature; and
generate the schema of the access control of the plurality of electronic devices (108) for each of the one or more users based on the correlation.
11. The system (100) as claimed in claim 10 wherein, the generating module (214) is adapted to define the schema via a separator demarked fields technique.

12. The system (100) as claimed in claim 10, further the generating module (214) is adapted to:
determine at least one group of the plurality of electronic devices (108) based on the at least one feature;
correlate each of the one or more users and the determined at least one group; and
generate the schema of the access control of the plurality of electronic devices (108) for each of the one or more users based on the correlation.