METHOD AND APPARATUS FOR ISOLATING EXECUTION OF SOFTWARE APPLICATIONS
First Claim
1. A method for isolating access by application programs to native resources provided by an operating system, the method comprising the steps of:
- redirecting to an isolation environment comprising a user isolation scope and an application isolation scope a request for a native resource made by a process executing on behalf of a first user;
locating an instance of the requested resource in the user isolation scope on behalf of a first user; and
responding to the request for the native resource using the instance of the resource located in the user isolation scope.
8 Assignments
0 Petitions
Accused Products
Abstract
A method for isolating access by application programs to native resources provided by an operating system redirects a request for a native resource made by an application program executing on behalf of a user to an isolation environment. The isolation environment includes a user isolation scope and an application isolation scope. An instance of the requested native resource is located in the user isolation scope corresponding to the user. The request for the native resource is fulfilled using the version of the resource located in the user isolation scope. If an instance of the requested native resource is not located in the user isolation scope, the request is redirected to an application isolation scope. The request for the native resource is fulfilled using the version of the resource located in the application isolation scope. If an instance of the requested native resource is not located in the application isolation scope, the request is redirected to a system scope.
-
Citations
32 Claims
-
1. A method for isolating access by application programs to native resources provided by an operating system, the method comprising the steps of:
-
redirecting to an isolation environment comprising a user isolation scope and an application isolation scope a request for a native resource made by a process executing on behalf of a first user;
locating an instance of the requested resource in the user isolation scope on behalf of a first user; and
responding to the request for the native resource using the instance of the resource located in the user isolation scope. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16, 17, 18, 19, 20, 21, 22)
-
-
23. An isolation environment for isolating access by application programs to native resources provided by an operating system, the isolation environment comprising:
-
a user isolation scope storing an instance of a native resource, the user isolation scope corresponding to a user; and
a redirector intercepting a request for the native resource made by a process executing on behalf of the user and redirecting the request to the user isolation scope. - View Dependent Claims (24, 25, 26, 27, 28, 29, 30, 31, 32)
-
Specification