Methods for restricting resources used by a program based on entitlements
US9280644B2 · kind B2 · utility
Assignee
Inventors
Key dates
| Filing date | Jun 19, 2013 |
| Grant date | Mar 8, 2016 |
| Priority date | — |
| Expiry date | May 16, 2034 |
Classification
- Technology area (CPC G)Physics
- CPC primaryG06F2221/033
- WIPO fieldComputer technology
- WIPO sectorElectrical engineering
Abstract
In response to a request for launching a program, a list of one or more application frameworks to be accessed by the program during execution of the program is determined. Zero or more entitlements representing one or more resources entitled by the program during the execution are determined. A set of one or more rules based on the entitlements of the program is obtained from at least one of the application frameworks. The set of one or more rules specifies one or more constraints of resources associated with the at least one application framework. A security profile is dynamically compiled for the program based on the set of one or more rules associated with the at least one application framework. The compiled security profile is used to restrict the program from accessing at least one resource of the at least one application frameworks during the execution of the program.
Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.