Patent · US Active

Application security model

US8011008B2 · kind B2 · utility

2Cited by

3References

20Claims

0Family size

Assignee

Microsoft Corporation · US

Inventors

Michael D. Downen · Sammamish, US
Raja Krishnaswamy · Redmond, US
Arun Moorthy · San Jose, US
Charles W. Kaufman · Northborough, US

Key dates

Filing date	Nov 13, 2007
Grant date	Aug 30, 2011
Priority date	—
Expiry date	Jun 28, 2030

Classification

Technology area (CPC G)Physics
CPC primaryG06F21/51
WIPO fieldComputer technology
WIPO sectorElectrical engineering

Abstract

Performing security sensitive operations with an application security model. Security agnostic code is executed. The security agnostic code is identified as not having authorization to perform a security sensitive operation. Executing the security agnostic code includes calling code identified as security safe critical code. In response to the security agnostic code calling the security safe critical code, the security safe critical code is executed. The security safe critical code includes functionality for performing validity checks. Executing the security safe critical code includes performing an validity check for the security agnostic code. When the security agnostic code passes the validity check, code identified as security critical code is called. In response to the security safe critical code calling the security critical code, the security critical code is executed. The security critical code is authorized to perform the security sensitive operation.

Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.