发明名称 |
Enforcing security rules at runtime |
摘要 |
Various arrangements for implementing a security policy at runtime are presented. A plurality of calls in a syntax tree may be identified. Each call of the plurality of calls may be substituted with a corresponding security-modified call to create a plurality of security-modified methods calls. Each security-modified call may be linked with a security class. Following modification of each call of the plurality of calls, the plurality of security-modified calls may be compiled into bytecode. |
申请公布号 |
US9027075(B2) |
申请公布日期 |
2015.05.05 |
申请号 |
US201113328728 |
申请日期 |
2011.12.16 |
申请人 |
Oracle International Corporation |
发明人 |
Driscoll James;Vinayaka Shailesh;Muench Steven P. |
分类号 |
G06F7/04;G06F21/52;G06F21/54;G06F9/45 |
主分类号 |
G06F7/04 |
代理机构 |
Kilpatrick Townsend & Stockton LLP |
代理人 |
Kilpatrick Townsend & Stockton LLP |
主权项 |
1. A method for implementing a security policy at runtime, the method comprising:
identifying, by a computer system, a plurality of calls; modifying, by the computer system, each call of the plurality of calls with a corresponding security-modified call to create a plurality of security-modified calls, wherein each security-modified call is linked with a security class that causes the plurality of security-modified calls to be compared to a security policy at a time of execution; and following modification of each call of the plurality of calls, compiling, by the computer system, the plurality of security-modified calls. |
地址 |
Redwood Shores CA US |