| 发明名称 | Data security in a multi-nodal environment | ||
| 摘要 | A data security manager in a multi-nodal environment enforces processing constraints stored as security relationships that control how different pieces of a multi-nodal application (called execution units) are allowed to execute to insure data security. The security manager preferably checks the security relationships for security violations when new execution units start execution, when data moves to or from an execution unit, and when an execution unit requests external services. Where the security manager determines there is a security violation based on the security relationships, the security manager may move, delay or kill an execution unit to maintain data security. | ||
| 申请公布号 | US8756701(B2) | 申请公布日期 | 2014.06.17 |
| 申请号 | US201313771446 | 申请日期 | 2013.02.20 |
| 申请人 | International Business Machines Corporation | 发明人 | Branson Michael J.;Santosuosso John M. |
| 分类号 | H04L29/06 | 主分类号 | H04L29/06 |
| 代理机构 | Martin & Associates, LLC | 代理人 | Martin & Associates, LLC ;Petersen Bret J. |
| 主权项 | 1. An apparatus comprising: a computer system comprising a plurality of compute nodes, each with a processor and a memory coupled to the processor; a plurality of running execution units in the memory of the compute nodes and executed by the processors of the compute nodes; a security manager that enforces security of data on the plurality of execution units of the computer system by managing the execution of an execution unit of the plurality of execution units depending on relationship records; and wherein the relationship records include a time relationship to indicate whether the execution unit can execute within a given time period with another execution unit of the plurality of execution units. | ||
| 地址 | Armonk NY US | ||