Client based resource isolation with domains
US9189643B2 · kind B2 · utility
Assignee
Inventors
Key dates
| Filing date | Nov 26, 2012 |
| Grant date | Nov 17, 2015 |
| Priority date | — |
| Expiry date | Apr 27, 2033 |
Classification
- Technology area (CPC H)Electricity
- CPC primaryH04L63/0876
- WIPO fieldDigital communication
- WIPO sectorElectrical engineering
Abstract
A method may comprise determining, in an operating system instance, that an access control is being attempted to control an object by a user from a first client of a plurality of clients. Domain and client identifiers associated with the user may be determined. Any domain identifiers from a set and any client identifiers from a set may be accessed that may be associated with the object, where the domain identifiers may uniquely identify one or more domains and the client identifiers may uniquely identify one or more clients. One or more domain and client isolation rules may be evaluated to determine whether access control is permitted on the object based on whether a domain identifier is associated with both the object and the user and whether a client identifier is associated with both the object and the client. A permit or deny indication may be returned based on whether or not access control is permitted on the object.
Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.