Electrical computers and digital processing systems: multicomput – Computer-to-computer session/connection establishing – Network resources access controlling
Reexamination Certificate
2001-10-16
2008-11-04
Flynn, Nathan J. (Department: 2143)
Electrical computers and digital processing systems: multicomput
Computer-to-computer session/connection establishing
Network resources access controlling
C709S228000, C709S225000, C711S163000
Reexamination Certificate
active
07447782
ABSTRACT:
A method and mechanism of enforcing community access control in a computer network, wherein access to objects by users and processes is controlled. A Multi-Community Node (MCN) processes information for users in multiple communities and must enforce a community separation policy. The enforcement method and mechanism use a database of associations of sets of communities corresponding to users, processes, and system objects. Upon receiving a request for access to an object by a user, the MCN permits access if a user community set (UCS) of the user is a superset of an object community set (OCS) of the object; otherwise, access is denied. Upon receiving a request for access to an object by a process, the MCN permits access if an application process community set (ACS) of the process is a superset the OCS of the object; otherwise, access is denied.
REFERENCES:
patent: 5265221 (1993-11-01), Miller
patent: 5335346 (1994-08-01), Fabbio
patent: 5724578 (1998-03-01), Morinaga et al.
patent: 6105027 (2000-08-01), Schneider et al.
patent: 6377994 (2002-04-01), Ault et al.
patent: 6564228 (2003-05-01), O'Connor
patent: 6658415 (2003-12-01), Brown et al.
patent: 6772157 (2004-08-01), Barnett et al.
patent: 6772350 (2004-08-01), Belani et al.
patent: 2002/0078215 (2002-06-01), Tahan
International Search Report, PCT/US 01/49280, Mailed Mar. 4, 2003.
Geihs K et al.: “An Architecture for the Cooperation of Heterogeneous Operating Systems”; Computer Networking Symposium, 1988., Proceedings of the Washington, DC, USA Apr. 11-13, 1988.
“Department of Defense Trusted Computer System Evaluation Criteria,” Dec. 1985, pp. 1-82.
Fithen et al., “Deploying Firewalls,” May 1999, pp. 1-63.
“Trusted Solaris™ 8 Operating Environment,” Nov. 2000, pp. 1-24.
“SunScreen™ Secure Net 3.0,” Jul. 1999, pp. 1-66.
Bilgrami Asghar
Flynn Nathan J.
Meyertons Hood Kivlin Kowert & Goetzel P.C.
Rankin Rory D.
Sun Microsystems Inc.
LandOfFree
Community access control in a multi-community node does not yet have a rating. At this time, there are no reviews or comments for this patent.
If you have personal experience with Community access control in a multi-community node, we encourage you to share that experience with our LandOfFree.com community. Your opinion is very important and Community access control in a multi-community node will most certainly appreciate the feedback.
Profile ID: LFUS-PAI-O-4049282