发明名称 |
Protection of interpreted source code in virtual appliances |
摘要 |
Protection of interpreted programming language code filesystem files from access and alteration may be provided by encrypting a file to be protected in a boot sequence. Run-time examination of a virtual appliance may be deterred by hiding the boot sequence in a restricted virtual appliance platform. No shell or filesystem access may be provided. Thus, permissions on a read-only filesystem (for example) may be kept from being altered. The permissions may be set along with filesystem access control lists to prevent unauthorized examination of the source files. |
申请公布号 |
US8918653(B2) |
申请公布日期 |
2014.12.23 |
申请号 |
US201213572402 |
申请日期 |
2012.08.10 |
申请人 |
International Business Machines Corporation |
发明人 |
Buswell John I. |
分类号 |
G06F21/00;G06F21/62;G06F21/57 |
主分类号 |
G06F21/00 |
代理机构 |
Shimokaji & Associates, P.C. |
代理人 |
Shimokaji & Associates, P.C. |
主权项 |
1. A computer program product for protecting interpreted code in a virtual appliance, the computer program product comprising a non-transitory computer readable storage medium having computer readable program code embodied therewith, the computer readable program code being configured to:
compress a file to be protected into a compressed filesystem file; encrypt an interpreted programming language code filesystem file prior to execution in a startup script, wherein the encrypted interpreted programming language code filesystem file includes the file to be protected; initiate the startup script employing the encrypted interpreted programming language code filesystem file with the compressed filesystem file; decrypt, via the startup script, the encrypted interpreted programming language code filesystem file; and run in the startup script the decrypted interpreted programming language code filesystem file. |
地址 |
Armonk NY US |