Data processing: database and file management or data structures – Database design – Data structure types
Reexamination Certificate
1999-06-14
2003-07-15
Jung, David (Department: 2175)
Data processing: database and file management or data structures
Database design
Data structure types
C707S793000, C709S241000
Reexamination Certificate
active
06594671
ABSTRACT:
TECHNICAL FIELD
This invention-relates, in general, to object-oriented computing environments and, in particular, to providing a distributed, object-oriented computing environment that is reliable, secure, transactional and workload managed.
BACKGROUND ART
Object-oriented technology continues to be an
increasingly-important tool for use in building portable application code that can be readily used and reused. A basic premise of object-oriented technology is the use of objects. An object is a run-time entity with a specific set of instance methods and variables associated therewith.
In an effort to enhance the usability, portability, reliability and interoperability of objects, certain standards have been created. One group responsible for such standardization is referred to as the Object Management Group (OMG), which is a consortium of different corporations, businesses and users interested in promoting object-oriented technology.
The Object Management Group has taken great steps in its standardization efforts. For example, the OMG is responsible for the creation of an object request broker (ORB), which is used to provide communications between clients and servers of a computing environment. The ORB is based upon an architecture touted by OMG and referred to as the Common Object Request Broker Architecture (CORBA).
One goal of the OMG is to provide distributed object-oriented applications and systems that coincide with the needs and desires of the ever-changing computing industry. This goal includes supporting multi-vendor, global heterogeneous networks.
Although efforts have been made to meet the goals of the Object Management Group, and of the object-oriented industry as a whole, further enhancements are still needed. For example, a need exists for a distributed object-oriented computing environment that is reliable, secure, transactional and workload managed.
SUMMARY OF THE INVENTION
The shortcomings of the prior art are overcome and additional advantages are provided through the provision of a method of constructing a server instance of a computing environment. The method includes, for example, providing a first region of the server instance, the first region being used to perform one or more privileged functions, and wherein the server instance supports object-oriented technology; and providing a second region of the server instance, the second region being used to perform one or more non-privileged functions, wherein the privileged functions and the non-privileged functions are separate.
In one example, the first region includes at least a portion of an object request broker. The portion is usable in communicating with one or more clients coupled to the server instance. In a further example, the second region includes at least another portion of the object request broker. The at least another portion performs different capabilities then the first portion.
In another example, a plurality of second regions is provided. Further, workload among the plurality of second regions is balanced using a workload manager coupled to one or more of the plurality of second regions.
In a further example, the first region is located within a separate address space then the second region.
In another aspect of the present invention, a server instance of a computing environment is provided. The server instance includes, for example, a first region being used to perform one or more privileged functions, and wherein the server instance supports object-oriented technology, and a second region being used to perform one or more non-privileged functions, wherein the privileged functions and the non-privileged functions are separate.
In yet another aspect of the present invention, a system of constructing a server instance of a computing environment is provided. The system includes, for example, means for providing a first region of the server instance, the first region being used to perform one or more privileged functions and wherein the server instance supports object-oriented technology; and means for providing a second region is of the server instance, the second region being used to perform one or more non-privileged functions. The privileged functions and non-privileged functions are separate.
In a further aspect of the present invention, an article of manufacture including at least one computer usable medium having computer readable program code means embodied therein for causing the constructing of a server instance of a computing environment is provided. The computer readable program code means in the article of manufacture includes, for instance, computer readable program code means for causing a computer to provide a first region of the server instance; and computer readable program code means for causing a computer to provide a second region of the server instance. The first region is used to perform one or more privileged functions, and the second region is used to perform one or more non-privileged functions. The privileged functions and the non-privileged functions are separate.
The present invention advantageously provides integrity, application isolation, enhanced transaction recovery time and effective workload management.
Additional features and advantages are realized through the techniques of the present invention. Other embodiments and aspects of the invention are described in detail herein and are considered a part of the claimed invention.
REFERENCES:
patent: 5317739 (1994-05-01), Elko et al.
patent: 5561809 (1996-10-01), Elko et al.
patent: 5706432 (1998-01-01), Elko et al.
patent: 5729710 (1998-03-01), Magee et al.
patent: 6523104 (2003-02-01), Kissell et al.
patent: 6523119 (2003-02-01), Pavlin et al.
patent: 6526418 (2003-02-01), Midgley et al.
http://www.cs.nyu.edu/courses/spring99/G22.2250-001/lecture, New York University.*
http://www.uk.research.att.com/omni/ORB/omniORB-JavaIDL-HOWTO.html, AT&T.*
wysiwyg://161/http:/www.theregister.co.uk/981104-000022.html, The Register.*
www.cs.nyu.edu/courses/spring99/G22.2250-001/lecture/OOunix.pdf, New York University.*
Hung et al., “A study of least privilege in CapBasED-AMS”, Cooperative Information Systems, 1998, Proceedings. 3rd IFCIS International Conference on, Aug. 20-22, 1998, pp. 208-217.*
Ko et al., “Automated detection of vulnerabilities in privileged programs by execution monitoring”, Computer Security Applications Conference, 1994, Proceedings, 10th Annual, Dec. 5-9, 1994, pp. 134-144.*
Hayes, “Policy-based authentication and dauthorization: secure access to the network infrastructure”, Computer Security Applications, 2000. ACSAC 2000 16th Annual Conference, Dec. 2000, pp. 328-333.*
“Support for Enterprise JavaBeans in Component Broker,” C.F. Codella, D.N. Dillenberger, D.F. Ferguson, R.D. Jackson, T.A. Mikalsen and I. Silva-Lepe, IBM Systems Journal, vol. 37, No. 4, http://www.research.ibm.com/journal.sj/374/codella. html.
“Schema for Representing CORBA Object References in an LDAP Directory,” V. Ryan, R. Lee, S. Seligman, Sun Microsystems, Inc., Aug. 25, 1999, http://search.ietf.org/internet-drafts/draft-ryan-corba-schema-02.txt.
“CORBA A Guide To Common Object Request Broker Architecture,” Ron Ben-Natan, McGraw Hill, 1995.
Aman Jeffrey D.
Frey Jeffrey A.
Little Rodney A.
Puchkoff Gary S.
Riggs Nancy P.
Esq. Lily Neff
Heslin Rothenberg Farley & & Mesiti P.C.
Jung David
Wojnicki, Jr. Esq. Andrew J.
LandOfFree
Separating privileged functions from non-privileged... does not yet have a rating. At this time, there are no reviews or comments for this patent.
If you have personal experience with Separating privileged functions from non-privileged..., we encourage you to share that experience with our LandOfFree.com community. Your opinion is very important and Separating privileged functions from non-privileged... will most certainly appreciate the feedback.
Profile ID: LFUS-PAI-O-3076224