| 发明名称 |
Rule-based application access management |
| 摘要 |
A container that manages access to protected resources using rules to intelligently manage them includes an environment having a set of software and configurations that are to be managed. A rule engine, which executes the rules, may be called reactively when software accesses protected resources. The engine uses a combination of embedded and configurable rules. It may be desirable to assign and manage rules per process, per resource (e.g. file, registry, etc.), and per user. Access rules may be altitude-specific access rules. |
| 申请公布号 |
US8752128(B2) |
申请公布日期 |
2014.06.10 |
| 申请号 |
US201213594546 |
申请日期 |
2012.08.24 |
| 申请人 |
Numecent Holdings, Inc. |
发明人 |
Hitomi Arthur Shingen;Tran Robert;Kammer Peter Joseph;Pfiffner Doug;Nguyen Huy |
| 分类号 |
G06F21/00;H04L29/06 |
主分类号 |
G06F21/00 |
| 代理机构 |
|
代理人 |
|
| 主权项 |
1. A method comprising:
displaying resources; providing altitude stored in a table for a set of the resources; providing access control rules stored in the table for the set of resources at the altitude; providing a file object and a path in a table entry of the table associated with a resource of the set of resources, wherein the table entry further includes the altitude and an access control rule of the access control rules; receiving at runtime a request for the resource from an application having a process ID; determining whether the process ID is associated with the file object and the path; if it is determined that the process ID is associated with the file object and the path:
populating a runtime table with the altitude, the access control rule, and the process ID; if it is determined that the process ID is not associated with the file object and the path:
setting the access control rule to a Pass Through access control rule;populating the runtime table with the altitude, the Pass Through access control rule, and the process ID; providing security settings for the set of resources at the altitude.
|
| 地址 |
Irvine CA US |
