-
公开(公告)号:US20080134310A1
公开(公告)日:2008-06-05
申请号:US11606671
申请日:2006-11-30
申请人: Shrikrishna V. Borde , Shawn Farkas , Haibo Luo , Michael D. Downen , Raja Krishnaswamy , Thottam R. Sriram , Chris King
发明人: Shrikrishna V. Borde , Shawn Farkas , Haibo Luo , Michael D. Downen , Raja Krishnaswamy , Thottam R. Sriram , Chris King
CPC分类号: G06F21/53 , G06F21/629 , H04L63/10
摘要: Various technologies and techniques are disclosed that use code access security for providing runtime accessibility checks. A request is received from a first program to access at least one private member of a second program at runtime. If the first program has a greater than or equal security context than the second program, then the first program is granted access to the at least one private member of the second program. This code access security check can be provided in a framework environment that is responsible for managing programs that are from unknown or untrusted sources.
摘要翻译: 公开了使用代码访问安全性来提供运行时可访问性检查的各种技术和技术。 从第一程序接收到在运行时访问第二程序的至少一个专用成员的请求。 如果第一程序具有比第二程序大的或相等的安全上下文,则允许第一程序访问第二程序的至少一个私有成员。 该代码访问安全检查可以在负责管理来自未知或不可信源的程序的框架环境中提供。
-
公开(公告)号:US08443188B2
公开(公告)日:2013-05-14
申请号:US11606671
申请日:2006-11-30
申请人: Shrikrishna V. Borde , Shawn Farkas , Haibo Luo , Michael D. Downen , Raja Krishnaswamy , Thottam R. Sriram , Chris King
发明人: Shrikrishna V. Borde , Shawn Farkas , Haibo Luo , Michael D. Downen , Raja Krishnaswamy , Thottam R. Sriram , Chris King
CPC分类号: G06F21/53 , G06F21/629 , H04L63/10
摘要: Various technologies and techniques are disclosed that use code access security for providing runtime accessibility checks. A request is received from a first program to access at least one private member of a second program at runtime. If the first program has a greater than or equal security context than the second program, then the first program is granted access to the at least one private member of the second program. This code access security check can be provided in a framework environment that is responsible for managing programs that are from unknown or untrusted sources.
摘要翻译: 公开了使用代码访问安全性来提供运行时可访问性检查的各种技术和技术。 从第一程序接收到在运行时访问第二程序的至少一个专用成员的请求。 如果第一程序具有比第二程序大的或相等的安全上下文,则允许第一程序访问第二程序的至少一个私有成员。 该代码访问安全检查可以在负责管理来自未知或不可信源的程序的框架环境中提供。
-
公开(公告)号:US20100023767A1
公开(公告)日:2010-01-28
申请号:US11804357
申请日:2007-05-18
IPC分类号: H04L9/32
CPC分类号: H04L9/0841
摘要: Various technologies and techniques are disclosed for implementing a Diffie-Hellman secret agreement. An application programming interface is provided that is operable to allow a first computer to generate a Diffie-Hellman secret agreement for communicating securely with a second computer over an insecure channel. A get public key operation is performed upon receiving a request to perform the get public key operation. The get public key operation gets a public key of the first computer. A retrieval operation is performed upon receiving a request to perform the retrieval operation. The retrieval operation retrieves the Diffie-Hellman secret agreement upon supplying a public key of the second computer.
摘要翻译: 披露了实施Diffie-Hellman秘密协议的各种技术和技术。 提供了一种应用编程接口,其可操作以允许第一计算机生成用于通过不安全信道与第二计算机进行安全通信的Diffie-Hellman秘密协议。 在接收到执行获取公共密钥操作的请求时执行获取公钥操作。 获取公钥操作获得第一台计算机的公钥。 在接收到执行检索操作的请求时执行检索操作。 检索操作在提供第二台计算机的公钥时检索Diffie-Hellman秘密协议。
-
4.发明申请公开(公告)号:US20080201759A1
公开(公告)日:2008-08-21
申请号:US11675611
申请日:2007-02-15
申请人: Michael D. Downen , Darryn O. Lavery , Adriaan W. Canter , Sameer V. Bhangar , Thomas E. Quinn , Justin Kwak , David A. Whitechapel , Jeff Young , Shawn Farkas
发明人: Michael D. Downen , Darryn O. Lavery , Adriaan W. Canter , Sameer V. Bhangar , Thomas E. Quinn , Justin Kwak , David A. Whitechapel , Jeff Young , Shawn Farkas
IPC分类号: G06F17/00
CPC分类号: G06F21/53
摘要: A method and system for enforcing a security policy that is version-independent of a managed environment when loading custom code for a host application is provided. A security system of the managed environment receives an identifier of custom code to be loaded by the host application. Before loading the identified custom code, the managed environment enforces the security policy using the security system. The security system applies the security policy expressed using a version-independent indication of identifiers of untrusted custom code. If the security system determines that the trust of the custom code is unknown, then the security system requests a trust manager associated with the host application to enforce a host application-specific security policy. When the custom code is trusted, the managed environment loads the custom code.
摘要翻译: 提供了一种方法和系统,用于在加载主机应用程序的自定义代码时,执行与受管环境版本无关的安全策略。 受管环境的安全系统接收要由主机应用程序加载的自定义代码的标识符。 在加载标识的自定义代码之前,受管环境使用安全系统强制执行安全策略。 安全系统应用使用与版本无关的不可信定制代码标识符表示的安全策略。 如果安全系统确定自定义代码的信任是未知的,则安全系统请求与主机应用程序相关联的信任管理器来强制执行主机特定于应用程序的安全策略。 当自定义代码被信任时,受管环境加载自定义代码。
-
5.发明授权公开(公告)号:US08849996B2
公开(公告)日:2014-09-30
申请号:US13350604
申请日:2012-01-13
CPC分类号: G06F17/30569 , G06F3/04842 , G06F17/301 , G06F17/3092
摘要: Embodiments are directed to dynamically adapting metadata for use with a native data encoding and to efficiently modifying object model type references. In one scenario, a computer system instantiates a metadata reader over an object model description to access various portions of metadata in the object model description. The metadata reader is configured to read native metadata, where native metadata is metadata represented in an encoding that is expected by the metadata reader. The metadata reader determines that the accessed metadata is encoded in a non-native encoding and then determines which metadata modifications are to be performed to transform the non-native encoding into a native encoding. The computer system then dynamically adapts the metadata of the object model from a non-native encoding to a native encoding according to the determined modifications. As such, the object model is readable by a native runtime.
摘要翻译: 实施例旨在动态地适应用于本地数据编码的元数据并且有效地修改对象模型类型引用。 在一种情况下,计算机系统通过对象模型描述实例化元数据读取器以访问对象模型描述中的元数据的各个部分。 元数据读取器被配置为读取本机元数据,其中原始元数据是以元数据读取器预期的编码表示的元数据。 元数据读取器确定所访问的元数据以非本地编码进行编码,然后确定要执行哪些元数据修改以将非本地编码转换为本地编码。 然后,计算机系统根据所确定的修改,将对象模型的元数据从非本地编码动态地适应到本地编码。 因此,对象模型可以由本机运行时读取。
-
6.发明申请公开(公告)号:US20130067053A1
公开(公告)日:2013-03-14
申请号:US13350604
申请日:2012-01-13
IPC分类号: G06F11/00
CPC分类号: G06F17/30569 , G06F3/04842 , G06F17/301 , G06F17/3092
摘要: Embodiments are directed to dynamically adapting metadata for use with a native data encoding and to efficiently modifying object model type references. In one scenario, a computer system instantiates a metadata reader over an object model description to access various portions of metadata in the object model description. The metadata reader is configured to read native metadata, where native metadata is metadata represented in an encoding that is expected by the metadata reader. The metadata reader determines that the accessed metadata is encoded in a non-native encoding and then determines which metadata modifications are to be performed to transform the non-native encoding into a native encoding. The computer system then dynamically adapts the metadata of the object model from a non-native encoding to a native encoding according to the determined modifications. As such, the object model is readable by a native runtime.
摘要翻译: 实施例旨在动态地适应用于本地数据编码的元数据并且有效地修改对象模型类型引用。 在一种情况下,计算机系统通过对象模型描述实例化元数据读取器以访问对象模型描述中的元数据的各个部分。 元数据读取器被配置为读取本机元数据,其中原始元数据是以元数据读取器预期的编码表示的元数据。 元数据读取器确定所访问的元数据以非本地编码进行编码,然后确定要执行哪些元数据修改以将非本地编码变换为本地编码。 然后,计算机系统根据所确定的修改,将对象模型的元数据从非本地编码动态地适应到本地编码。 因此,对象模型可以由本机运行时读取。
-
公开(公告)号:US20130159718A1
公开(公告)日:2013-06-20
申请号:US13330260
申请日:2011-12-19
申请人: Shawn Farkas , Mueez Siddiqui , Reid Martin Borsuk , Andrew Dai , Arun Moorthy
发明人: Shawn Farkas , Mueez Siddiqui , Reid Martin Borsuk , Andrew Dai , Arun Moorthy
IPC分类号: H04L9/32
CPC分类号: H04L9/3247 , G06F21/51 , H04L9/3268
摘要: The present invention extends to methods, systems, and computer program products for updating signature algorithms used for signing an assembly with a strong name without changing the identity of the assembly. The present invention enables an assembly that has already been given an identity (via strong name signing with an identity public/private key pair) to be resigned with a different public/private key pair without changing the original identity that was based on the identity public/private key pair. This is accomplished by including a counter signature within the assembly that links the original identity of the assembly to the new signature key pair.
摘要翻译: 本发明扩展到用于更新用于以强名称签名组件的签名算法的方法,系统和计算机程序产品,而不改变组件的标识。 本发明使得已经被赋予身份的组件(通过具有身份公钥/私钥对的强名称签名)被使用不同的公钥/私钥对来辞职,而不改变基于身份公开的原始身份 /私钥对。 这通过在组件内包括将组件的原始标识链接到新的签名密钥对的计数器签名来实现。
-
公开(公告)号:US08683207B2
公开(公告)日:2014-03-25
申请号:US13330260
申请日:2011-12-19
申请人: Shawn Farkas , Mueez Siddiqui , Reid Martin Borsuk , Andrew Dai , Arun Moorthy
发明人: Shawn Farkas , Mueez Siddiqui , Reid Martin Borsuk , Andrew Dai , Arun Moorthy
IPC分类号: H04L9/32
CPC分类号: H04L9/3247 , G06F21/51 , H04L9/3268
摘要: The present invention extends to methods, systems, and computer program products for updating signature algorithms used for signing an assembly with a strong name without changing the identity of the assembly. The present invention enables an assembly that has already been given an identity (via strong name signing with an identity public/private key pair) to be resigned with a different public/private key pair without changing the original identity that was based on the identity public/private key pair. This is accomplished by including a counter signature within the assembly that links the original identity of the assembly to the new signature key pair.
摘要翻译: 本发明扩展到用于更新用于以强名称签名组件的签名算法的方法,系统和计算机程序产品,而不改变组件的标识。 本发明使得已经被赋予身份的组件(通过具有身份公钥/私钥对的强名称签名)被使用不同的公钥/私钥对来辞职,而不改变基于身份公开的原始身份 /私钥对。 这通过在组件内包括将组件的原始标识链接到新的签名密钥对的计数器签名来实现。
-
9.发明申请SIMULATION OF STATIC MEMBERS AND PARAMETERIZED CONSTRUCTORS ON AN INTERFACE-BASED API 有权基于界面的API模拟静态成员和参数化构造器公开(公告)号:US20130066622A1
公开(公告)日:2013-03-14
申请号:US13350552
申请日:2012-01-13
摘要: Embodiments are directed to providing a simulation of a type-level construct on an interface instance and to maintaining a token-based event handling system. In one scenario, a computer system instantiates an interface instance that includes an instance object and multiple instance members. The computer system also instantiates a separate typed object which is configured to maintain one or more simulated type-level parameterized constructors. The computer system then associates the instantiated interface instance with the separate typed object. The typed object routes method invocations from the interface instance to various simulated type-level parameterized constructors and static members of the type.
摘要翻译: 实施例旨在提供在接口实例上的类型级结构的模拟并且维护基于令牌的事件处理系统。 在一种情况下,计算机系统实例化包含实例对象和多个实例成员的接口实例。 计算机系统还实例化一个单独的类型对象,该对象被配置为维护一个或多个模拟类型级参数化构造函数。 然后,计算机系统将实例化的接口实例与单独的类型对象相关联。 类型化对象将接口实例的方法调用到各种模拟类型级参数化构造函数和类型的静态成员。
-
10.发明授权Simulation of static members and parameterized constructors on an interface-based API 有权在基于接口的API上模拟静态成员和参数化构造函数公开(公告)号:US09183001B2
公开(公告)日:2015-11-10
申请号:US13350552
申请日:2012-01-13
摘要: Embodiments are directed to providing a simulation of a type-level construct on an interface instance and to maintaining a token-based event handling system. In one scenario, a computer system instantiates an interface instance that includes an instance object and multiple instance members. The computer system also instantiates a separate typed object which is configured to maintain one or more simulated type-level parameterized constructors. The computer system then associates the instantiated interface instance with the separate typed object. The typed object routes method invocations from the interface instance to various simulated type-level parameterized constructors and static members of the type.
摘要翻译: 实施例旨在提供在接口实例上的类型级结构的模拟并且维护基于令牌的事件处理系统。 在一种情况下,计算机系统实例化包含实例对象和多个实例成员的接口实例。 计算机系统还实例化一个单独的类型对象,该对象被配置为维护一个或多个模拟类型级参数化构造函数。 然后,计算机系统将实例化的接口实例与单独的类型对象相关联。 类型化对象将接口实例的方法调用到各种模拟类型级参数化构造函数和类型的静态成员。
-
-
-
-
-
-
-
-
-
搜索结果
10 条记录 (耗时 0.027 秒)
