公开(公告)号：US09135461B1

公开(公告)日：2015-09-15

申请号：US13910472

申请日：2013-06-05

Applicant: Google Inc.

Inventor： Charles Reis ,  Adam Barth

IPC: G06F21/00 ,  G06F21/62

CPC classification number: G06F21/6209 ,  G06F21/62 ,  H04L63/20 ,  H04L67/02 ,  H04L67/40

Abstract: Methods and systems for sharing a security model with heterogeneous virtual machines (VMs) are provided. A method for sharing a security model with heterogeneous VMs may include making a direct function call to an object model from each of two or more heterogeneous VMs using a direct binding generated for the respective VM based on the respective VM and a security policy. The direct bindings of the two or more heterogeneous VMs share the security policy. The method may also include ensuring only one of the two or more heterogeneous VMs interacts with the object model at a time. A system for sharing a security model with heterogeneous VMs may include a heterogeneous VM manager and a heterogeneous VM scheduler. The system may further include a principal tracker and a proxy component.

Abstract translation: 提供了使用异构虚拟机（VM）共享安全模型的方法和系统。 用异构VM共享安全模型的方法可以包括使用针对相应VM和安全策略针对相应VM生成的直接绑定，从两个或多个异构VM中的每一个对对象模型进行直接函数调用。 两个或多个异构VM的直接绑定共享安全策略。 该方法还可以包括确保两个或多个异构VM中的仅一个一次与对象模型交互。 用于与异构VM共享安全模型的系统可以包括异构VM管理器和异构VM调度器。 该系统还可以包括主要跟踪器和代理组件。