Cryptography – Cryptanalysis
Patent
1996-06-11
1998-10-20
Tarcza, Thomas H.
Cryptography
Cryptanalysis
380 23, 380 25, H04L 900
Patent
active
058258779
ABSTRACT:
A form of authentication is provided wherein a trusted third party signs a certificate to identify the author of a program and to secure its integrity. The program code is encapsulated or otherwise associated with the certificate and an access control list (ACL). The access control list describes the permissions and resources required by the code. An enforcement mechanism which allocates system permissions and resources in accordance with the ACL. In a preferred embodiment, a code production system communicates with a certification agency, which is a trusted third party. The certification agency issues a certificate for the code and a certificate for the access list of that code. Once the certificate is issued it is not possible for any party to modify the code or access list without invalidating the certificate. The code and its ACL, along with their certificates are stored on a server. A client downloading the code or access list can verify the integrity of the code/access list and the system can enforce the access list such that the permissions and resources are not exceeded.
REFERENCES:
patent: 5005200 (1991-04-01), Fischer
patent: 5283830 (1994-02-01), Hinsley et al.
patent: 5412717 (1995-05-01), Fischer
patent: 5450593 (1995-09-01), Howell et al.
Dan Asit
Ramaswami Rajiv
Sitaram Dinkar
International Business Machines - Corporation
Ludwin, Esq. Richard M.
Tarcza Thomas H.
White Carmen D.
LandOfFree
Support for portable trusted software does not yet have a rating. At this time, there are no reviews or comments for this patent.
If you have personal experience with Support for portable trusted software, we encourage you to share that experience with our LandOfFree.com community. Your opinion is very important and Support for portable trusted software will most certainly appreciate the feedback.
Profile ID: LFUS-PAI-O-253941