| 发明名称 | Protection of interpreted source code in virtual appliances | ||
| 摘要 | Protection of interpreted programming language code filesystem files from access and alteration may be provided by encrypting a file to be protected in a boot sequence. Run-time examination of a virtual appliance may be deterred by hiding the boot sequence in a restricted virtual appliance platform. No shell or filesystem access may be provided. Thus, permissions on a read-only filesystem (for example) may be kept from being altered. The permissions may be set along with filesystem access control lists to prevent unauthorized examination of the source files. | ||
| 申请公布号 | US8918653(B2) | 申请公布日期 | 2014.12.23 |
| 申请号 | US201213572402 | 申请日期 | 2012.08.10 |
| 申请人 | International Business Machines Corporation | 发明人 | Buswell John I. |
| 分类号 | G06F21/00;G06F21/62;G06F21/57 | 主分类号 | G06F21/00 |
| 代理机构 | Shimokaji & Associates, P.C. | 代理人 | Shimokaji & Associates, P.C. |
| 主权项 | 1. A computer program product for protecting interpreted code in a virtual appliance, the computer program product comprising a non-transitory computer readable storage medium having computer readable program code embodied therewith, the computer readable program code being configured to: compress a file to be protected into a compressed filesystem file; encrypt an interpreted programming language code filesystem file prior to execution in a startup script, wherein the encrypted interpreted programming language code filesystem file includes the file to be protected; initiate the startup script employing the encrypted interpreted programming language code filesystem file with the compressed filesystem file; decrypt, via the startup script, the encrypted interpreted programming language code filesystem file; and run in the startup script the decrypted interpreted programming language code filesystem file. | ||
| 地址 | Armonk NY US | ||