公开(公告)号：US10007515B2

公开(公告)日：2018-06-26

申请号：US15200994

申请日：2016-07-01

Applicant: ORACLE INTERNATIONAL CORPORATION

Inventor： Velmurugan Subramanian ,  Nilesh Junnarkar

IPC: G06F9/45 ,  G06F8/76 ,  G06F8/60 ,  G06F8/41

CPC classification number: G06F8/76 ,  G06F8/41 ,  G06F8/60

Abstract: In accordance with an embodiment, described herein is a system and method for automatic porting of software applications into a cloud computing environment (cloud environment, cloud). A cloud service enables software developers to deploy user applications to run within the cloud environment. When a user application is deployed to the environment, a deployment logic determines those aspects of the application, such as certain service usages, that may be incompatible with features provided by the environment, or that should use a particular cloud service, and automatically ports the application, including the use of one or more handlers or extensions, for use within the environment. For example, a user application may have been originally developed to use JAVAMAIL™, which presents a security risk in a cloud environment. To minimize such risk, the application can instead be ported to use, for example, a REST-based e-mail service supported by the cloud environment.

公开(公告)号：US09160749B2

公开(公告)日：2015-10-13

申请号：US14010846

申请日：2013-08-27

Applicant: Oracle International Corporation

Inventor： Velmurugan Subramanian ,  Nilesh P. Junnarkar ,  Naresh Revanuru

IPC: H04L29/06

CPC classification number: H04L63/101

Abstract: A system and method for providing whitelist functionality for use with a cloud computing environment. In accordance with an embodiment, software applications being deployed to the cloud are restricted from using certain classes or application program interfaces (APIs). During provisioning by, e.g., a Java cloud services (JCS) infrastructure, or another component of the cloud environment, an application's resources, such as its classes or API calls, can be matched against a whitelist of acceptable resources. If the application fails to be validated against the whitelist, it will not be deployed to the cloud, and the customer/user notified accordingly. In accordance with an embodiment, a whitelist functionality can be packaged within a software development kit (SDK), which customers/users can use during development of their applications, to verify that the applications will comply with, or successfully validate against the whitelist, prior to attempting to deploy the applications to the cloud.

Abstract translation: 用于提供与云计算环境一起使用的白名单功能的系统和方法。 根据实施例，部署到云的软件应用程序被限制在使用某些类或应用程序接口（API）。 在通过例如Java云服务（JCS）基础设施或云环境的另一个组件的供应期间，应用程序的资源（例如其类或API调用）可以与可接受的资源的白名单进行匹配。 如果应用程序无法针对白名单进行验证，则不会将其部署到云端，并且相应地通知客户/用户。 根据一个实施例，白名单功能可以被封装在软件开发工具包（SDK）中，客户/用户可以在开发应用程序期间使用该软件开发工具包来验证应用程序是否将符合或成功地验证白名单 尝试将应用程序部署到云端。

公开(公告)号：US09871800B2

公开(公告)日：2018-01-16

申请号：US14610524

申请日：2015-01-30

Applicant: ORACLE INTERNATIONAL CORPORATION

Inventor： Velmurugan Subramanian ,  Nilesh Junnarkar

IPC: G06F21/00 ,  H04L29/06

CPC classification number: H04L63/102

Abstract: In accordance with an embodiment, described herein is a system and method for providing application security in a cloud computing or other environment. A plurality of hot-spot configurations define API usages which, for security reasons, are of interest to be monitored at runtime, such as invocations of particular methods that are likely to be used to attempt unauthorized access. Upon a user application being received for deployment to the cloud environment, an application compiler determines, for API usages expressed as method invocations within the source code of the application, one or more hot-spot configurations and associated policies or actions. The application compiler can then inject the user application to provide a security manager that, during runtime, monitors the methods and values invoked, and communicates with one or more security extensions to grant or deny access.

公开(公告)号：US20170003960A1

公开(公告)日：2017-01-05

申请号：US15200994

申请日：2016-07-01

Applicant: ORACLE INTERNATIONAL CORPORATION

Inventor： Velmurugan Subramanian ,  Nilesh Junnarkar

IPC: G06F9/44 ,  G06F9/45 ,  G06F9/445

CPC classification number: G06F8/76 ,  G06F8/41 ,  G06F8/60

Abstract: In accordance with an embodiment, described herein is a system and method for automatic porting of software applications into a cloud computing environment (cloud environment, cloud). A cloud service enables software developers to deploy user applications to run within the cloud environment. When a user application is deployed to the environment, a deployment logic determines those aspects of the application, such as certain service usages, that may be incompatible with features provided by the environment, or that should use a particular cloud service, and automatically ports the application, including the use of one or more handlers or extensions, for use within the environment. For example, a user application may have been originally developed to use JavaMail, which presents a security risk in a cloud environment. To minimize such risk, the application can instead be ported to use, for example, a REST-based e-mail service supported by the cloud environment.

Abstract translation: 根据本文所述的实施例，是将软件应用程序自动移植到云计算环境（云环境，云）中的系统和方法。 云服务使软件开发人员可以部署用户应用程序以在云环境中运行。 当用户应用程序部署到环境中时，部署逻辑将确定应用程序的某些方面，例如某些服务使用，可能与环境提供的功能不兼容，或者应该使用特定的云服务，并自动将 应用程序，包括使用一个或多个处理程序或扩展名，以在环境中使用。 例如，用户应用程序可能最初被开发用于使用JavaMail，这在云环境中呈现安全风险。 为了最小化这种风险，应用程序可以替代地移植使用，例如，云环境支持的基于REST的电子邮件服务。