Invention Grant
US08447975B2 Workstation application server programming protection via classloader policy based visibility control
失效
工作站应用服务器编程保护通过基于类加载器策略的可见性控制
- Patent Title: Workstation application server programming protection via classloader policy based visibility control
- Patent Title (中): 工作站应用服务器编程保护通过基于类加载器策略的可见性控制
-
Application No.: US11176813Application Date: 2005-07-07
-
Publication No.: US08447975B2Publication Date: 2013-05-21
- Inventor: Keys D. Botzum , Ching-Yun Chao , Glyn Normington
- Applicant: Keys D. Botzum , Ching-Yun Chao , Glyn Normington
- Applicant Address: US NY Armonk
- Assignee: International Business Machines Corporation
- Current Assignee: International Business Machines Corporation
- Current Assignee Address: US NY Armonk
- Agency: Greg Goshorn, P.C.
- Agent Matthews B. Talpis; Gregory K Goshorn
- Main IPC: G06F21/00
- IPC: G06F21/00
Abstract:
Provided is a method for providing Java modularity class loader protection by controlling the visibility of WebSphere, service provider, library and utility code interfaces. Interface access authorization is checked once, during module and class loading to effectively protect vulnerable programming interfaces, eliminating permission checking during execution. Code in a WebSphere Application server (WAS) computing environment is categorized into a finite number of sets in which one permission type is assigned to each set and the code in each set runs at the same privilege zone. Each set exposes programming interfaces to provide functional service and code in a particular set can only access code in the same or a lower security zone set. Also provided is a technique for explicitly providing to specific modules in lower security zones access to modules or designated interfaces of modules in higher security zones.
Public/Granted literature
- US20070011451A1 Workstation application server programming protection via classloader policy based visibility control Public/Granted day:2007-01-11
Information query
