Isolation of application-specific data within a user account
First Claim
1. In a computing system associating multiple applications with a same user account, a method for isolating data specific to a first application from a second application, wherein the first application and the second application share the same user account, comprising:
- loading the data upon receiving a request for the data from the first application;
creating a handle to the data;
passing the handle to the first application; and
denying access request for the data from the second application.
2 Assignments
0 Petitions
Accused Products
Abstract
A mechanism is provided for isolating application-specific data in an environment where multiple applications share a same user account. This mechanism enables data specific to an application to be accessed only by the application. When an application requests application-specific data, the data is loaded and a handle to the data is returned to the application. Access to the data is allowed only though the handle. Therefore, only the application possessing the handle can access the data. A counter may be associated with the loaded data. The counter'"'"'s value is incremented whenever a handle is created for the data and decremented whenever a handle for the data is terminated. When the value of the counter reaches zero, the data is automatically unloaded.
-
Citations
14 Claims
-
1. In a computing system associating multiple applications with a same user account, a method for isolating data specific to a first application from a second application, wherein the first application and the second application share the same user account, comprising:
-
loading the data upon receiving a request for the data from the first application;
creating a handle to the data;
passing the handle to the first application; and
denying access request for the data from the second application. - View Dependent Claims (2, 3, 4, 5)
-
- 6. An application programming interface embodied on one or more computer-readable media, comprising a function related to providing application-specific data access in an environment where multiple applications share a same user account, wherein the faction provides access to a data object upon receiving an access request from a computing process, and wherein the function can be configured so the data object can only be accessed by the computing process.
-
11. A computer-implemented method for isolating data specific to an application from other applications sharing a same user account with the application, comprising:
-
upon receiving an access request from the application for the data, loading the data;
creating a handle to the data;
passing the handle to the application; and
denying any access request to the data from the other applications. - View Dependent Claims (12, 13, 14)
-
Specification