Method and system for providing a user access to multiple secured subsystems

Assignee

• International Business Machines Corporation · US

Inventors

• George Robert Blakley, III · Round Rock, US
• L. Brooks Hickerson · Austin, US
• Ivan M. Milman · Austin, US
• Robert S. Gittins · Westminster, US
• Douglas B. Scheer · Boynton Beach, US
• John H. Wilson · Hillsboro, US

Key dates

Classification

• Technology area (CPC G)Physics
• CPC primaryG06F21/6236
• WIPO fieldComputer technology
• WIPO sectorElectrical engineering

Abstract

An improvement relating to the security of an operating system for either a stand alone computer system or for a networked computer system. The operating system provides improved security for programs available on the computer system having different security protocols. The operating system unifies these security protocols for each user based on unique user credentials. The system operates, upon request to start a program procedure by the user, to authenticate the identity of the user based on information unique to that user. Following which, the system generates a user handle associated with the user. The system then notifies each of the security protocols of the user handle associated with the user. The system then generates new user credentials for each of the security protocols. These user credentials are associated with the user handle and then the user handle is mapped to the unique user's credentials for each program procedure. Once this is accomplished, the system invokes an alternate process and tags the process with the user handle. Once a request from the alternate process for access to an object accessed through the server is requested, the system then grants access to …