专利快速检索-快速检索全球专利，免费商用专利数据库-IPRDB

1. 发明授权

US07926105B2 Using security-related attributes 有权
标题翻译：使用与安全相关的属性
公开(公告)号：US07926105B2
公开(公告)日：2011-04-12
申请号：US11364359
申请日：2006-02-28
申请人： Karen Elizabeth Corby , Mark Alcazar , Viresh Ramdatmisier , Ariel Jorge Kirsman , Andre A. Needham , Akhilesh Kaza , Raja Krishnaswamy , Jeff Cooperstein , Charles W Kaufman , Chris Anderson , Venkata Rama Prasad Tammana , Aaron R Goldfeder , John Hawkins
发明人： Karen Elizabeth Corby , Mark Alcazar , Viresh Ramdatmisier , Ariel Jorge Kirsman , Andre A. Needham , Akhilesh Kaza , Raja Krishnaswamy , Jeff Cooperstein , Charles W Kaufman , Chris Anderson , Venkata Rama Prasad Tammana , Aaron R Goldfeder , John Hawkins
IPC分类号： G06F11/00 , G06F12/14 , G06F12/16 , G08B23/00
CPC分类号： G06F21/62 , G06F21/51 , G06F21/53 , G06F21/577
摘要： Described is a technology including an evaluation methodology by which a set of privileged code such as a platform's API method may be marked as being security critical and/or safe for being called by untrusted code. The set of code is evaluated to determine whether the code is security critical code, and if so, it is identified as security critical. Such code is further evaluated to determine whether the code is safe with respect to being called by untrusted code, and if so, is marked as safe. To determine whether the code is safe, a determination is made as to whether the first set of code leaks criticality, including by evaluating one or more code paths corresponding to one or more callers of the first set of code, and by evaluating one or more code paths corresponding to one or more callees of the first set of code.
摘要翻译：描述了一种技术，其包括评估方法，通过该评估方法，可以将一组特权代码（例如平台的API方法）标记为由不受信任的代码调用的安全关键和/或安全。评估代码集以确定代码是否是安全关键代码，如果是，则将其标识为安全关键。进一步评估这些代码以确定代码是否对于被不受信任的代码调用是安全的，如果是，则将其标记为安全的。为了确定代码是否安全，确定第一组代码是否泄漏关键性，包括通过评估与第一组代码的一个或多个调用者相对应的一个或多个代码路径，以及通过评估一个或多个对应于第一组代码的一个或多个被调用者的代码路径。

2. 发明申请

US20070209073A1 Using security-related attributes 有权
标题翻译：使用与安全相关的属性
公开(公告)号：US20070209073A1
公开(公告)日：2007-09-06
申请号：US11364359
申请日：2006-02-28
申请人： Karen Corby , Mark Alcazar , Viresh Ramdatmisier , Ariel Kirsman , Andre Needham , Akhilesh Kaza , Raja Krishnaswamy , Jeff Cooperstein , Charles Kaufman , Chris Anderson , Venkata Prasad , Aaron Goldfeder , John Hawkins
发明人： Karen Corby , Mark Alcazar , Viresh Ramdatmisier , Ariel Kirsman , Andre Needham , Akhilesh Kaza , Raja Krishnaswamy , Jeff Cooperstein , Charles Kaufman , Chris Anderson , Venkata Prasad , Aaron Goldfeder , John Hawkins
IPC分类号： G06F12/14
CPC分类号： G06F21/62 , G06F21/51 , G06F21/53 , G06F21/577
摘要： Described is a technology including an evaluation methodology by which a set of privileged code such as a platform's API method may be marked as being security critical and/or safe for being called by untrusted code. The set of code is evaluated to determine whether the code is security critical code, and if so, it is identified as security critical. Such code is further evaluated to determine whether the code is safe with respect to being called by untrusted code, and if so, is marked as safe. To determine whether the code is safe, a determination is made as to whether the first set of code leaks criticality, including by evaluating one or more code paths corresponding to one or more callers of the first set of code, and by evaluating one or more code paths corresponding to one or more callees of the first set of code.
摘要翻译：描述了一种技术，其包括评估方法，通过该评估方法，可以将一组特权代码（例如平台的API方法）标记为由不受信任的代码调用的安全关键和/或安全。评估代码集以确定代码是否是安全关键代码，如果是，则将其标识为安全关键。进一步评估这些代码以确定代码是否对于被不受信任的代码调用是安全的，如果是，则将其标记为安全的。为了确定代码是否安全，确定第一组代码是否泄漏关键性，包括通过评估与第一组代码的一个或多个调用者相对应的一个或多个代码路径，以及通过评估一个或多个对应于第一组代码的一个或多个被调用者的代码路径。

3. 发明授权

US08555061B2 Transparent code 有权
标题翻译：透明代码
公开(公告)号：US08555061B2
公开(公告)日：2013-10-08
申请号：US11129718
申请日：2005-05-13
申请人： Jeffrey M. Cooperstein , Charles W. Kaufman , Raja Krishnaswamy
发明人： Jeffrey M. Cooperstein , Charles W. Kaufman , Raja Krishnaswamy
IPC分类号： G06F21/00
CPC分类号： G06F21/53
摘要： Assertions for elevated privilege associated with transparent code may be ignored, prohibited, or modified.
摘要翻译：与透明代码关联的提升权限的断言可能被忽略，禁止或修改。

4. 发明授权

US08011008B2 Application security model 有权
标题翻译：应用安全模型
公开(公告)号：US08011008B2
公开(公告)日：2011-08-30
申请号：US11939383
申请日：2007-11-13
申请人： Michael D. Downen , Raja Krishnaswamy , Arun Moorthy , Charles W. Kaufman
发明人： Michael D. Downen , Raja Krishnaswamy , Arun Moorthy , Charles W. Kaufman
IPC分类号： G06F17/30
CPC分类号： G06F21/563 , G06F21/51
摘要： Performing security sensitive operations with an application security model. Security agnostic code is executed. The security agnostic code is identified as not having authorization to perform a security sensitive operation. Executing the security agnostic code includes calling code identified as security safe critical code. In response to the security agnostic code calling the security safe critical code, the security safe critical code is executed. The security safe critical code includes functionality for performing validity checks. Executing the security safe critical code includes performing an validity check for the security agnostic code. When the security agnostic code passes the validity check, code identified as security critical code is called. In response to the security safe critical code calling the security critical code, the security critical code is executed. The security critical code is authorized to perform the security sensitive operation.
摘要翻译：使用应用程序安全模型执行安全敏感操作。执行安全不可知代码。安全性不可知代码被识别为没有执行安全敏感操作的授权。执行安全性不可知代码包括调用被标识为安全关键代码的代码。响应安全隐私代码调用安全安全关键代码，执行安全安全关键代码。安全关键代码包括执行有效性检查的功能。执行安全安全关键代码包括对安全性不可知代码执行有效性检查。当安全不可知代码通过有效性检查时，称为安全关键代码的代码。响应安全关键代码调用安全关键代码，执行安全关键代码。授权安全关键代码执行安全敏感操作。

5. 发明申请

US20090126011A1 APPLICATION SECURITY MODEL 有权
标题翻译：应用安全模型
公开(公告)号：US20090126011A1
公开(公告)日：2009-05-14
申请号：US11939383
申请日：2007-11-13
申请人： Michael D. Downen , Raja Krishnaswamy , Arun Moorthy , Charles W. Kaufman
发明人： Michael D. Downen , Raja Krishnaswamy , Arun Moorthy , Charles W. Kaufman
IPC分类号： G06F21/00
CPC分类号： G06F21/563 , G06F21/51
摘要： Performing security sensitive operations with an application security model. Security agnostic code is executed. The security agnostic code is identified as not having authorization to perform a security sensitive operation. Executing the security agnostic code includes calling code identified as security safe critical code. In response to the security agnostic code calling the security safe critical code, the security safe critical code is executed. The security safe critical code includes functionality for performing validity checks. Executing the security safe critical code includes performing an validity check for the security agnostic code. When the security agnostic code passes the validity check, code identified as security critical code is called. In response to the security safe critical code calling the security critical code, the security critical code is executed. The security critical code is authorized to perform the security sensitive operation.
摘要翻译：使用应用程序安全模型执行安全敏感操作。执行安全不可知代码。安全性不可知代码被识别为没有执行安全敏感操作的授权。执行安全性不可知代码包括调用被标识为安全关键代码的代码。响应安全隐私代码调用安全安全关键代码，执行安全安全关键代码。安全关键代码包括执行有效性检查的功能。执行安全安全关键代码包括对安全性不可知代码执行有效性检查。当安全不可知代码通过有效性检查时，称为安全关键代码的代码。响应安全关键代码调用安全关键代码，执行安全关键代码。授权安全关键代码执行安全敏感操作。

6. 发明授权

US09417931B2 Unified metadata for external components 有权
标题翻译：外部组件的统一元数据
公开(公告)号：US09417931B2
公开(公告)日：2016-08-16
申请号：US12144724
申请日：2008-06-24
申请人： Raja Krishnaswamy , Shrikrishna V. Borde , Michael Shneerson , Samuel Ng , Timothy Ng
发明人： Raja Krishnaswamy , Shrikrishna V. Borde , Michael Shneerson , Samuel Ng , Timothy Ng
IPC分类号： G06F17/30 , G06F9/54 , G06F9/44
CPC分类号： G06F9/541 , G06F9/449
摘要： A system and method for facilitating execution of multiple assemblies in a framework, in which the assemblies use a component external to the framework, is provided. A runtime manager may retrieve metadata from each of the assemblies, and selectively insert the metadata into a unified types object, so that metadata corresponding to equivalent type definitions is shared. When each assembly is executed, the combined metadata may be used to invoke or otherwise interact with the external component.
摘要翻译：提供了一种用于在框架中执行多个组件的系统和方法，其中组件使用框架外部的组件。运行时管理器可以从每个组件中检索元数据，并且有选择地将元数据插入到统一类型对象中，从而共享与等效类型定义相对应的元数据。当执行每个程序集时，可以使用组合的元数据来调用或以其他方式与外部组件交互。

7. 发明授权

US09053017B2 Managing object lifetime in a cyclic graph 有权
标题翻译：在循环图中管理对象生命周期
公开(公告)号：US09053017B2
公开(公告)日：2015-06-09
申请号：US13598247
申请日：2012-08-29
申请人： Michael John Hillberg , Raja Krishnaswamy
发明人： Michael John Hillberg , Raja Krishnaswamy
IPC分类号： G06F12/00 , G06F17/30 , G06F12/02
CPC分类号： G06F17/30303 , G06F12/0261 , G06F17/30324
摘要： The present invention extends to methods, systems, and computer program products for managing object lifetime in a cyclic graph. Embodiments of the invention include reclaiming allocated system resources, for example, from a graph of objects that mixes different resource reclamation techniques (such as reference counting and garbage collection). In response to determining that garbage collection is to be performed, references between GC objects and Ref. Counted objects are detected. A reference type (e.g., direct, indirect, standard, tracked, weakened, etc.) for any detected references is also determined. Garbage collection is performed to determine if any allocated system resources can be reclaimed. Garbage collection considers references and references types between GC objects and Ref. Counted objects when determining if objects are to be reclaimed.
摘要翻译：本发明扩展到用于在循环图中管理对象寿命的方法，系统和计算机程序产品。本发明的实施例包括例如从混合不同的资源回收技术（例如引用计数和垃圾回收）的对象的图形中回收所分配的系统资源。响应确定要执行垃圾收集，GC对象和参考文献之间的引用。检测到计数对象。还确定了任何检测到的参考的参考类型（例如，直接，间接，标准，跟踪，削弱等）。执行垃圾收集以确定是否可以回收任何已分配的系统资源。垃圾收集考虑GC对象和Ref之间的引用和引用类型。确定对象是否要回收时的计数对象。

8. 发明授权

US08443188B2 Using code access security for runtime accessibility checks 有权
标题翻译：使用代码访问安全性进行运行时辅助检查
公开(公告)号：US08443188B2
公开(公告)日：2013-05-14
申请号：US11606671
申请日：2006-11-30
申请人： Shrikrishna V. Borde , Shawn Farkas , Haibo Luo , Michael D. Downen , Raja Krishnaswamy , Thottam R. Sriram , Chris King
发明人： Shrikrishna V. Borde , Shawn Farkas , Haibo Luo , Michael D. Downen , Raja Krishnaswamy , Thottam R. Sriram , Chris King
IPC分类号： H04L29/06 , G06F12/14 , G06F7/04 , G06F9/44
CPC分类号： G06F21/53 , G06F21/629 , H04L63/10
摘要： Various technologies and techniques are disclosed that use code access security for providing runtime accessibility checks. A request is received from a first program to access at least one private member of a second program at runtime. If the first program has a greater than or equal security context than the second program, then the first program is granted access to the at least one private member of the second program. This code access security check can be provided in a framework environment that is responsible for managing programs that are from unknown or untrusted sources.
摘要翻译：公开了使用代码访问安全性来提供运行时可访问性检查的各种技术和技术。从第一程序接收到在运行时访问第二程序的至少一个专用成员的请求。如果第一程序具有比第二程序大的或相等的安全上下文，则允许第一程序访问第二程序的至少一个私有成员。该代码访问安全检查可以在负责管理来自未知或不可信源的程序的框架环境中提供。

9. 发明授权

US08402532B2 Host control of partial trust accessibility 有权
标题翻译：主机控制部分信任可访问性
公开(公告)号：US08402532B2
公开(公告)日：2013-03-19
申请号：US11801714
申请日：2007-05-10
申请人： Michael D. Downen , Raja Krishnaswamy , Charles William Kaufman , James S. Miller , Stephen Fisher
发明人： Michael D. Downen , Raja Krishnaswamy , Charles William Kaufman , James S. Miller , Stephen Fisher
IPC分类号： G06F12/14 , G06F7/04 , G06F11/30 , G06F9/44 , H04L29/06
CPC分类号： G06F21/52
摘要： Various technologies and techniques are disclosed for providing host control of partial trust accessibility. A framework allows libraries to be identified as partial trust callers allowed to indicate that the libraries are allowed to be called from partially trusted code by default. The framework allows libraries to be identified as partial trust callers enabled to indicate the libraries could be called from partially trusted code, but not by default. A hosting application is notified that a particular library has been loaded. If the particular library has been identified as partial trust callers allowed, then a determination is received from the hosting application on whether to remove or keep partial trust accessibility for the particular library. If the particular library has been identified as partial trust callers enabled, then a determination is received from the hosting application on whether or not to enable partial trust accessibility for the particular library.
摘要翻译：公开了各种技术和技术，用于提供部分信任可访问性的主机控制。框架允许将库识别为部分信任调用者，以允许默认情况下允许从部分受信任的代码调用库。框架允许将库识别为启用的部分信任调用者，以指示可以从部分受信任的代码调用库，但不会默认。通知托管应用程序已加载特定的库。如果特定图书馆已经被识别为允许的部分信任来电者，则从主机应用程序接收到是否删除或保留特定图书馆的部分信任可访问性的确定。如果特定库被识别为启用的部分信任调用者，则从托管应用程序接收是否启用特定库的部分信任可访问性的确定。

10. 发明申请

US20130042258A1 RUNTIME SYSTEM 有权
标题翻译：运行系统
公开(公告)号：US20130042258A1
公开(公告)日：2013-02-14
申请号：US13207806
申请日：2011-08-11
申请人： Brent E. Rector , Elliot H. Omiya , Jerry J. Dunietz , Martyn S. Lovell , Ales Holecek , Mahesh Prakriya , Stephen C. Rowe , James F. Springfield , Noel R. Cross , Tassaduq H. Basu , Patrick H. Dussud , Raja Krishnaswamy , Steven Edward Lucco
发明人： Brent E. Rector , Elliot H. Omiya , Jerry J. Dunietz , Martyn S. Lovell , Ales Holecek , Mahesh Prakriya , Stephen C. Rowe , James F. Springfield , Noel R. Cross , Tassaduq H. Basu , Patrick H. Dussud , Raja Krishnaswamy , Steven Edward Lucco
IPC分类号： G06F9/46
CPC分类号： G06F9/541 , G06F8/51 , G06F8/73 , G06F8/76
摘要： Various embodiments provide an ability to describe, independent of a programming language, one or more interfaces associated with an operating system. Alternately or additionally, a compiler associated with a specific programming language can be configured to map the independent interface description(s) to the specific programming language. In some embodiments, an application can be configured to programmatically determine one or more interfaces of the operating system.
摘要翻译：各种实施例提供了独立于编程语言来描述与操作系统相关联的一个或多个接口的能力。或者或另外，与特定编程语言相关联的编译器可以被配置为将独立接口描述映射到特定编程语言。在一些实施例中，应用可以被配置为以编程方式确定操作系统的一个或多个接口。

你已经成功收藏专利！

检索式保存成功!

IPRDB

热门服务

关于我们

友情链接

联系方式