-
1.发明授权Workstation application server programming protection via classloader policy based visibility control 失效工作站应用服务器编程保护通过基于类加载器策略的可见性控制公开(公告)号:US08447975B2
公开(公告)日:2013-05-21
申请号:US11176813
申请日:2005-07-07
申请人: Keys D. Botzum , Ching-Yun Chao , Glyn Normington
发明人: Keys D. Botzum , Ching-Yun Chao , Glyn Normington
IPC分类号: G06F21/00
摘要: Provided is a method for providing Java modularity class loader protection by controlling the visibility of WebSphere, service provider, library and utility code interfaces. Interface access authorization is checked once, during module and class loading to effectively protect vulnerable programming interfaces, eliminating permission checking during execution. Code in a WebSphere Application server (WAS) computing environment is categorized into a finite number of sets in which one permission type is assigned to each set and the code in each set runs at the same privilege zone. Each set exposes programming interfaces to provide functional service and code in a particular set can only access code in the same or a lower security zone set. Also provided is a technique for explicitly providing to specific modules in lower security zones access to modules or designated interfaces of modules in higher security zones.
摘要翻译: 提供了一种通过控制WebSphere,服务提供商,库和实用程序代码接口的可见性来提供Java模块化类加载器保护的方法。 接口访问授权在模块和类加载期间被检查一次,以有效保护易受攻击的编程接口,从而消除执行期间的权限检查。 WebSphere Application Server(WAS)计算环境中的代码分为有限数量的集合,其中一个权限类型分配给每个集合,并且每个集合中的代码在相同的权限区域中运行。 每个集合暴露编程接口以提供功能服务,并且特定集合中的代码只能访问相同或较低安全区域集中的代码。 还提供了一种技术,用于向较低安全区域中的特定模块提供访问更高安全区域中的模块或模块的指定接口的技术。
-
2.发明申请公开(公告)号:US20080101610A1
公开(公告)日:2008-05-01
申请号:US11553276
申请日:2006-10-26
申请人: PETER D. BIRK , Keys D. Botzum , Ching-Yun Chao , Hyen V. Chung , Alaine DeMyers , Ut Van Le , James L. Lentz , Mickella A. Rosiles
发明人: PETER D. BIRK , Keys D. Botzum , Ching-Yun Chao , Hyen V. Chung , Alaine DeMyers , Ut Van Le , James L. Lentz , Mickella A. Rosiles
IPC分类号: H04L9/00
CPC分类号: H04L9/0891 , H04L9/16 , H04L2209/24
摘要: Systems, methods and media for managing and generating encryption keys are disclosed. In one embodiment, a processor executes encryption key processing computer code to receive requests for keys from an application program. The processor determines whether the requesting application program executes on a node or server that is within the scope of machines authorized to receive the requested keys. If authorized, the processor produces a key map and sends the key map to the application program, enabling the application program to access one or more keys in the key map. The keys are updated automatically according to a specifiable schedule.
摘要翻译: 公开了用于管理和生成加密密钥的系统,方法和媒体。 在一个实施例中,处理器执行加密密钥处理计算机代码以从应用程序接收对密钥的请求。 处理器确定请求应用程序是否在被授权接收所请求的密钥的机器范围内的节点或服务器上执行。 如果授权,处理器产生一个关键图,并将该关键图发送到该应用程序,使该应用程序能够访问该关键图中的一个或多个键。 按照可指定的时间表自动更新密钥。
-
3.发明授权公开(公告)号:US07822206B2
公开(公告)日:2010-10-26
申请号:US11553276
申请日:2006-10-26
申请人: Peter D. Birk , Keys D. Botzum , Ching-Yun Chao , Hyen V. Chung , Alaine DeMyers , Ut Van Lee , James L. Lentz , Mickella A. Rosiles
发明人: Peter D. Birk , Keys D. Botzum , Ching-Yun Chao , Hyen V. Chung , Alaine DeMyers , Ut Van Lee , James L. Lentz , Mickella A. Rosiles
IPC分类号: H04L9/08
CPC分类号: H04L9/0891 , H04L9/16 , H04L2209/24
摘要: Systems, methods and media for managing and generating encryption keys are disclosed. In one embodiment, a processor executes encryption key processing computer code to receive requests for keys from an application program. The processor determines whether the requesting application program executes on a node or server that is within the scope of machines authorized to receive the requested keys. If authorized, the processor produces a key map and sends the key map to the application program, enabling the application program to access one or more keys in the key map. The keys are updated automatically according to a specifiable schedule.
摘要翻译: 公开了用于管理和生成加密密钥的系统,方法和媒体。 在一个实施例中,处理器执行加密密钥处理计算机代码以从应用程序接收对密钥的请求。 处理器确定请求应用程序是否在被授权接收所请求的密钥的机器范围内的节点或服务器上执行。 如果授权,处理器产生一个关键图,并将该关键图发送到该应用程序,使该应用程序能够访问该关键图中的一个或多个键。 按照可指定的时间表自动更新密钥。
-
公开(公告)号:US08209548B2
公开(公告)日:2012-06-26
申请号:US11347860
申请日:2006-02-06
申请人: Keys D. Botzum , Peter D. Birk
发明人: Keys D. Botzum , Peter D. Birk
IPC分类号: G06F21/00
CPC分类号: G06F12/1408 , G06F12/084 , G06F21/62 , G06F21/6209 , G06F2221/2147
摘要: The present invention relates to a secure caching technique for shared distributed caches. A method in accordance with an embodiment of the present invention includes: encrypting a key K to provide a secure key, the key K corresponding to a value to be stored in a cache; and storing the value in the cache using the secure key.
摘要翻译: 本发明涉及用于共享分布式高速缓存的安全缓存技术。 根据本发明的实施例的方法包括:加密密钥K以提供安全密钥,密钥K对应于要存储在高速缓存中的值; 并使用安全密钥将该值存储在高速缓存中。
-
公开(公告)号:US08146013B2
公开(公告)日:2012-03-27
申请号:US11189889
申请日:2005-07-26
IPC分类号: G06F3/048
CPC分类号: G06F17/30899
摘要: Mechanisms to allow authorized popup windows on a website are provided. With the mechanisms, one or more identifiers of authorized popup window sources are associated with website content. When the website content is downloaded to a client device in response to a request, the one or more identifiers are also provided to the client device. A popup blocker application resident on the client device uses the one or more identifiers to generate a filter list of authorized popup window sources against which the source of popup windows may be compared when the popup window attempts to be loaded into the browser. If the source of the popup window that is attempting to be loaded is not present in the list of authorized sources of popup windows, then the loading and output of the popup window content is blocked.
摘要翻译: 提供允许网站上的授权弹出窗口的机制。 利用这些机制,授权的弹出窗口源的一个或多个标识符与网站内容相关联。 当网站内容响应于请求被下载到客户端设备时,一个或多个标识符也被提供给客户端设备。 驻留在客户机设备上的弹出窗口阻止程序应用程序使用一个或多个标识符来生成授权的弹出窗口源的过滤器列表,当弹出窗口尝试加载到浏览器中时,弹出窗口的源可以与之对比。 如果尝试加载的弹出窗口的源不在弹出窗口的授权源列表中,则会弹出窗口内容的加载和输出被阻止。
-
公开(公告)号:US09678893B2
公开(公告)日:2017-06-13
申请号:US13464338
申请日:2012-05-04
申请人: Keys D. Botzum , Peter D. Birk
发明人: Keys D. Botzum , Peter D. Birk
IPC分类号: G06F12/14 , G06F21/62 , G06F12/084
CPC分类号: G06F12/1408 , G06F12/084 , G06F21/62 , G06F21/6209 , G06F2221/2147
摘要: The present invention relates to a secure caching technique for shared distributed caches. A method in accordance with an embodiment of the present invention includes: encrypting a key K to provide a secure key, the key K corresponding to a value to be stored in a cache; and storing the value in the cache using the secure key.
-
公开(公告)号:US20120221867A1
公开(公告)日:2012-08-30
申请号:US13464338
申请日:2012-05-04
申请人: Keys D. Botzum , Peter D. Birk
发明人: Keys D. Botzum , Peter D. Birk
IPC分类号: G06F12/14
CPC分类号: G06F12/1408 , G06F12/084 , G06F21/62 , G06F21/6209 , G06F2221/2147
摘要: The present invention relates to a secure caching technique for shared distributed caches. A method in accordance with an embodiment of the present invention includes: encrypting a key K to provide a secure key, the key K corresponding to a value to be stored in a cache; and storing the value in the cache using the secure key.
摘要翻译: 本发明涉及用于共享分布式高速缓存的安全缓存技术。 根据本发明的实施例的方法包括:加密密钥K以提供安全密钥,密钥K对应于要存储在高速缓存中的值; 并使用安全密钥将该值存储在高速缓存中。
-
-
-
-
-
-
搜索结果
7 条记录 (耗时 0.019 秒)
