Information security – Monitoring or scanning of software or data including attack...
Reexamination Certificate
2003-11-10
2010-02-23
Zand, Kambiz (Department: 2434)
Information security
Monitoring or scanning of software or data including attack...
C726S027000, C726S030000, C726S001000, C726S004000, C380S029000, C713S190000, C713S156000, C713S167000, C713S170000, C713S187000
Reexamination Certificate
active
07669238
ABSTRACT:
Evidence-based application security may be implemented at the application and/or application group levels. A manifest may be provided defining at least one trust condition for the application or application group. A policy manager evaluates application evidence (e.g., an XrML license) for an application or group of applications relative to the manifest. The application is only granted permissions on the computer system if the application evidence indicates that the application is trusted. Similarly, a group of applications are only granted permissions on the computer system if the evidence indicates that the group of applications is trusted. If the application evidence satisfies the at least one trust condition defined by the manifest, the policy manager generates a permission grant set for each code assembly that is a member of the at least one application. Evidence may be further evaluated for code assemblies that are members of the trusted application or application group.
REFERENCES:
patent: 5715403 (1998-02-01), Stefik
patent: 5915085 (1999-06-01), Koved
patent: 5958050 (1999-09-01), Griffin et al.
patent: 5978484 (1999-11-01), Apperson et al.
patent: 6044466 (2000-03-01), Anand et al.
patent: 6044467 (2000-03-01), Gong
patent: 6138238 (2000-10-01), Scheifler et al.
patent: 6345361 (2002-02-01), Jerger et al.
patent: 6389540 (2002-05-01), Scheifler et al.
patent: 6526513 (2003-02-01), Shrader et al.
patent: 6604198 (2003-08-01), Beckman et al.
patent: 6704804 (2004-03-01), Wilson et al.
patent: 7051366 (2006-05-01), LaMacchia et al.
patent: 7076557 (2006-07-01), LaMacchia et al.
patent: 2002/0198845 (2002-12-01), Lao et al.
patent: 2003/0009424 (2003-01-01), Ta et al.
patent: 2003/0041267 (2003-02-01), Fee et al.
patent: 2003/0061065 (2003-03-01), Keeley
patent: 2003/0194085 (2003-10-01), Dillaway
patent: 2003/0196091 (2003-10-01), Raley et al.
patent: 2003/0196121 (2003-10-01), Raley et al.
patent: 2003/0220880 (2003-11-01), Lao et al.
patent: WO 99/30217 (1999-06-01), None
International Search Report for PCT/US01/16057.
International Search Report for PCT/US01/16127.
Anand, R., Islam, N., Jaeger, T., Rao, J. R.; A Flexible Security Model for Using Internet Content Proceedings of the 16th Symposium on Reliable Distribuited Systems SRDS 1997 Durham NC, pp. 89-96.
“Logically Extensible Privilege Control Set” IBM Technical Disclosure Bulletin, IBM Corp. NY NY, vol. 34, No. 7B, Dec. 1, 1991, pp. 106-109.
“Decentralized Trust Management”, by M. Blaze, J. Feigenbaum, J. Lacy, in Proceedings of the 1996 IEEE Symposium on Security and Privacy, pp. 164-173. Also available as a DIMACS Technical Report. This paper describes PolicyMaker. Available in Postscript at http://www.
“Proceedings of the Sixth International World Wide Web Conference”, Santa Clara, CA, Apr. 1997, by Y. Chu, J. Fiegenbaum, B. LaMacchia, P. Resnick, M. Strauss, REFEREE: Trust Management for Web Applications. Available from http://www.farcaster.com/papers/www6-referee/index.htm.
“The Role of Trust Management in Distributed System Security”, M. Blaze, J. Feigenbaum, J. lonnidis, A. Keromytis, Secure Internet Programming: Security Issues for Distributed and Mobile Objects, Lecture Note sin COmputer Science, vol. 1603, Springer, Gerlin, 1999, pp. 185-210.
“Managing Trust in an Information-Labeling System”, European Transactions on Telecommunications, 8(1997), pp. 491-501. (Special issue of selected papers from the 1996 Amalfi Conference on Secure Communication in Networks.) Postscript from http://www.research.att.com/.
Cool Jamie L.
Fee Gregory D.
Goldfeder Aaron
Hawkins John M.
Khorun Sergey
Bayou Yonas
Lee & Hayes PLLC
Microsoft Corporation
Zand Kambiz
LandOfFree
Evidence-based application security does not yet have a rating. At this time, there are no reviews or comments for this patent.
If you have personal experience with Evidence-based application security, we encourage you to share that experience with our LandOfFree.com community. Your opinion is very important and Evidence-based application security will most certainly appreciate the feedback.
Profile ID: LFUS-PAI-O-4182653