Electrical computers and digital processing systems: support – Multiple computer communication using cryptography – Security kernel or utility
Reexamination Certificate
2011-04-12
2011-04-12
Moazzami, Nasser (Department: 2436)
Electrical computers and digital processing systems: support
Multiple computer communication using cryptography
Security kernel or utility
C717S116000, C717S117000, C717S118000, C717S108000, C713S002000
Reexamination Certificate
active
07925881
ABSTRACT:
A method and apparatus for preventing rogue implementations of a security-sensitive class interface are provided. With the method and apparatus, a unique identifier (UID) is created by a server process when the server process is started. Anytime the server process, i.e. a server runtime environment, instantiates a new credential object following start-up of the server process, the encrypted UID is placed into a private field within the new credential object. In addition, the UID is encrypted and stored in a private class of the server runtime environment. A verification class is provided within the server runtime environment which includes one or more methods that receive the credential object as a parameter and return true or false as to the validity of the credential object. These one or more methods determine the validity of the credential object by retrieving the encrypted UID from the private class stored in the server runtime environment, decrypting the UID and comparing it to the decrypted UID stored in the private field of the credential object. If the two UIDs match, a determination is made that the credential object was created by the server runtime environment rather than a rogue application. If the two UIDs do not match, or if there is no UID in the credential object, then a false result will be returned by the verification class.
REFERENCES:
patent: 5802291 (1998-09-01), Balick et al.
patent: 6125447 (2000-09-01), Gong
patent: 6134597 (2000-10-01), Rieth et al.
patent: 6243859 (2001-06-01), Cheng-Kuang
patent: 6643652 (2003-11-01), Helgeson et al.
patent: 6714930 (2004-03-01), Garrison et al.
patent: 6714962 (2004-03-01), Helland et al.
patent: 6792466 (2004-09-01), Saulpaugh et al.
patent: 7089242 (2006-08-01), Chan et al.
patent: 7096491 (2006-08-01), Cheng
patent: 2001/0047477 (2001-11-01), Chiang
patent: 2002/0133527 (2002-09-01), Daynes et al.
patent: 2004/0088578 (2004-05-01), Chao et al.
patent: 2004/0098614 (2004-05-01), Chang et al.
Birk Peter Daniel
Chao Ching-Yun
Chung Hyen Vui
Dillon Justin M.
International Business Machines - Corporation
Moazzami Nasser
Yalew Fikremariam
Yee & Associates P.C.
LandOfFree
Method and apparatus for preventing rogue implementations of... does not yet have a rating. At this time, there are no reviews or comments for this patent.
If you have personal experience with Method and apparatus for preventing rogue implementations of..., we encourage you to share that experience with our LandOfFree.com community. Your opinion is very important and Method and apparatus for preventing rogue implementations of... will most certainly appreciate the feedback.
Profile ID: LFUS-PAI-O-2695906