IDiyas

For the Inventor, By the Inventor

The patent badge is an abbreviated version of the USPTO patent document. The patent badge does contain a link to the full patent document.

The patent badge is an abbreviated version of the USPTO patent document. The patent badge covers the following: Patent number, Date patent was issued, Date patent was filed, Title of the patent, Applicant, Inventor, Assignee, Attorney firm, Primary examiner, Assistant examiner, CPCs, and Abstract. The patent badge does contain a link to the full patent document (in Adobe Acrobat format, aka pdf). To download or print any patent click here.

Patent No.:

US 7669238 B1

PDFFull Text
Date of Patent:
Feb. 23, 2010

Filed:

Nov. 10, 2003

Evidence-based application security

Applicants:

Gregory D. Fee, Seattle, WA (US);

Aaron Goldfeder, Seattle, WA (US);

John M. Hawkins, Duvall, WA (US);

Jamie L. Cool, Redmond, WA (US);

Sebastian Lange, Seattle, WA (US);

Sergey Khorun, Redmond, WA (US);

Inventors:

Gregory D. Fee, Seattle, WA (US);

Aaron Goldfeder, Seattle, WA (US);

John M. Hawkins, Duvall, WA (US);

Jamie L. Cool, Redmond, WA (US);

Sebastian Lange, Seattle, WA (US);

Sergey Khorun, Redmond, WA (US);

Assignee:

Microsoft Corporation, Redmond, WA (US);

Attorney:

Lee & Hayes, PLLC

Primary Examiner:

Kambiz Zand

Assistant Examiner:

Yonas Bayou

Int. Cl.
CPC ...
H04L 9/00 (2006.01);
U.S. Cl.
CPC ...
Abstract

Evidence-based application security may be implemented at the application and/or application group levels. A manifest may be provided defining at least one trust condition for the application or application group. A policy manager evaluates application evidence (e.g., an XrML license) for an application or group of applications relative to the manifest. The application is only granted permissions on the computer system if the application evidence indicates that the application is trusted. Similarly, a group of applications are only granted permissions on the computer system if the evidence indicates that the group of applications is trusted. If the application evidence satisfies the at least one trust condition defined by the manifest, the policy manager generates a permission grant set for each code assembly that is a member of the at least one application. Evidence may be further evaluated for code assemblies that are members of the trusted application or application group.

Find Patent Forward Citations

Loading…