Data processing: software development – installation – and managem – Software program development tool – Programming language
Reexamination Certificate
2005-03-31
2009-11-24
Nahar, Qamrun (Department: 2191)
Data processing: software development, installation, and managem
Software program development tool
Programming language
C717S114000, C717S136000, C726S022000, C726S023000, C726S026000
Reexamination Certificate
active
07624373
ABSTRACT:
The techniques and mechanisms described herein are directed to a scripting security mechanism that minimizes security risks associated with interpreting a script written with a scripting language. An interpreter recognizes the scripting-language syntax within the script and processes each line that is designated within a data block using a restrictive set of operations. The restrictive set of operations are a subset of the total operations available for processing. If one of the lines within the data block attempts to perform an operation that is not within the restrictive set of operations, the interpreter provides an indication, such as an exception or message explaining the illegal operation. The interpreter also recognizes a list of export variables associated with the data block and exports only the variables identified in the list to an external environment if the export variable meets a constraint identified for it, if any.
REFERENCES:
patent: 5404528 (1995-04-01), Mahajan
patent: 6078743 (2000-06-01), Apte et al.
patent: 6292936 (2001-09-01), Wang
patent: 6651241 (2003-11-01), Hernandez, III
patent: 6718371 (2004-04-01), Lowry et al.
patent: 6785685 (2004-08-01), Soetarman et al.
patent: 6823504 (2004-11-01), Sokolov
patent: 6848101 (2005-01-01), Maekawa et al.
patent: 6880125 (2005-04-01), Fry
patent: 6950866 (2005-09-01), Lowry et al.
patent: 7284274 (2007-10-01), Walls et al.
patent: 2002/0073330 (2002-06-01), Chandnani et al.
patent: 2003/0200349 (2003-10-01), Hansen
patent: 2004/0068715 (2004-04-01), Wong et al.
patent: 2004/0153967 (2004-08-01), Bender et al.
patent: 2004/0210828 (2004-10-01), Langer
patent: 2005/0071369 (2005-03-01), Lang et al.
patent: 2005/0108518 (2005-05-01), Pandya
Kc, et al. “Countering Code-Injection Attacks With Instruction-Set Randomization”, 2003, ACM, p. 272-280.
Jaeger, et al. “Support for the File System Security Requirements of Computational E-Mail Systems”, 1994, ACM, p. 1-9.
Linthicum, D.S. “Java Development Environments Evolve”, Object Magazine, vol. 8, No. 4, pp. 45-46, 48-49, Jun. 1998.
Brun et al., “ROOT-An Object Oriented Data Analysis Framework”, Nuclear Instruments & Methods in Physics Research, Section A, vol. 389, No. 1-2, pp. 81-86, Apr. 1997.
Dominic Olivastro, “Modifying DCL Commands in VAX/VMS: The Command Definition Utility”, The VAX Professional, vol. 8, pp. 50-53, Apr. 1986.
Sorzano, et al., “Command-Line Interfaces Can Be Efficiently Brought to Graphics: COLIMATE (the COmmand Line Mate)”, Software-Practice and Experience, vol. 32, No. 9, pp. 873-887, Mar. 2002.
Andrew Tucker, “Windows CE's CESH Utility”, Dr. Dobb's Journal, vol. 25, No. 5, http://www.ddj.com, pp. 74-80, May 2000.
“Command Line Tailors Software to Buying Operations”, Purchasing Software News, vol. 127, No. 4, pp. 153-156, Sep. 1999.
“No Time for GUI's”, Digital Systems Report, Computer Electronics, Inc., vol. 19, No. 4, pp. 1-4, Winter 1997.
Tom Yager, “Taking Command Of Windows NT”, Unix Review, vol.15, No. 11, pp. 31-32, 34, 36, 38, 40, Oct. 1997.
Eric Flower, “Step-Up to MS-DOS 6.2: An Early Look at Microsoft's Latest Upgrade”, Computer in Libraries, vol. 14, No. 2, pp. 30-32, Feb. 1994.
Randy Dykhuis, “Beefing Up Dos with 4DOS”, Computers in Libraries, vol. 11, No. 4, pp. 35-37, Apr. 1991.
Giles Todd, “Installing MS-DOS Device Drivers from the Command Line”, EXE, vol. 4, No. 3, pp. 16-21, Aug. 1989.
“Intro to Unix: Pipes and Filters”, Dec. 15, 2001, retrieved from the internet at http://web/archive/org/20011216234529/http://www.december.com/unix/tutor/pipesfilters.html on Jul. 28, 2008, 2 pgs.
Ramey, et al., “Bash Reference Manual”, retrieved from <<http://gd.tuwien.ac.at/utils/shells/bashref.pdf>> on Jul. 25, 2008, Nov. 2001, pp. 1-132.
Varian, “Plunging into Pipes”, Proceedings SHARE Europe AM91, Oct. 7, 1991, pp. 1087-1110.
Pandit Bhalchandra S.
Payette Bruce G.
Snover Jeffrey P.
Truher, III James W.
Lee & Hayes PLLC
Microsoft Corporation
Nahar Qamrun
LandOfFree
Security mechanism for interpreting scripts in an... does not yet have a rating. At this time, there are no reviews or comments for this patent.
If you have personal experience with Security mechanism for interpreting scripts in an..., we encourage you to share that experience with our LandOfFree.com community. Your opinion is very important and Security mechanism for interpreting scripts in an... will most certainly appreciate the feedback.
Profile ID: LFUS-PAI-O-4096070