摘要 |
The present invention describes a privilege transfer method between programs in a computing system. This transfer method allows a resource manager such as a security manager to be initially started on the system by the system's native privileged user. This user has the needed native privilege to add it to the system. Subsequently the privilege to administer the security manager is transferred from the native privileged identity to a designated user identity. Once transferred, the initial privileged identity, the system's native privileged user, losses privilege with respect to the security manager and the new registered identity gains administrative control over the security manager. Since the new registered identity is not the native root identity, the security of the native system is not compromised.
|