Method and apparatus for providing secure access control for protected information
First Claim
1. A method of processing a request from a requester, comprising:
- receiving from a requestor a first request comprising at least one desired operation set of indicia and at least one target identification set of indicia, said desired operation set of indicia comprising a set of indicia which is representative of at least one desired operation, each said target identification set of indicia comprising a set of indicia which is representative of a target, said target comprising at least one element, said element comprising an information set of indicia, said information set of indicia being representative of information;
determining whether a local domain contains all of said at least one element in said target, said local domain comprising at least one processor;
if said local domain contains all of said at least one element in said target;
(1) if said local domain contains a rule for each element in said target indicating that said requestor is authorized to perform said desired operation on said element;
(a) enabling a first agent to access said at least one element to perform said desired operation, and (b) transmitting to said requester a first agent location set of indicia, said first agent location set of indicia enabling said requestor to access said first agent;
(2) if said local domain does not contain a rule for each element in said target indicating that said requestor is authorized to perform said desired operation on said target;
(a) denying said request;
if said local domain contains at least one element in said target but does not contain all of said at least one element in said target;
(1) if said local domain contains a rule for each said element contained in said local domain indicating that said requestor is authorized to perform said desired operation on said at least one element in said target;
(a) creating a second request, said second request comprising (1) said at least one desired operation set of indicia and (2) a secondary target identification set of indicia comprising a set of indicia which is representative of all elements which are both (i) contained in said target and (ii) not contained in said local domain; and
(2) if said local domain does not contain a rule for each element contained in said local domain indicating that said requestor is authorized to perform said desired operation on said target;
(a) denying said request.
3 Assignments
0 Petitions
Accused Products
Abstract
There are provided methods and apparatuses for processing requests from requestors, methods and apparatuses for transmitting indicia representative of information from a first domain to a second domain, methods comprising, and apparatuses for, determining whether a requestor is authorized to perform a desired operation on a target comprising at least one element which comprises an information set of indicia and arrangements of stored data, as well as computer-readable media having computer-executable commands for performing the same. In some aspects of the present invention, there are provided high-assurance data security apparatuses and methods, in particular, user data protection via enforcement of policy-based access control.
250 Citations
238 Claims
-
1. A method of processing a request from a requester, comprising:
-
receiving from a requestor a first request comprising at least one desired operation set of indicia and at least one target identification set of indicia, said desired operation set of indicia comprising a set of indicia which is representative of at least one desired operation, each said target identification set of indicia comprising a set of indicia which is representative of a target, said target comprising at least one element, said element comprising an information set of indicia, said information set of indicia being representative of information;
determining whether a local domain contains all of said at least one element in said target, said local domain comprising at least one processor;
if said local domain contains all of said at least one element in said target;
(1) if said local domain contains a rule for each element in said target indicating that said requestor is authorized to perform said desired operation on said element;
(a) enabling a first agent to access said at least one element to perform said desired operation, and (b) transmitting to said requester a first agent location set of indicia, said first agent location set of indicia enabling said requestor to access said first agent;
(2) if said local domain does not contain a rule for each element in said target indicating that said requestor is authorized to perform said desired operation on said target;
(a) denying said request;
if said local domain contains at least one element in said target but does not contain all of said at least one element in said target;
(1) if said local domain contains a rule for each said element contained in said local domain indicating that said requestor is authorized to perform said desired operation on said at least one element in said target;
(a) creating a second request, said second request comprising (1) said at least one desired operation set of indicia and (2) a secondary target identification set of indicia comprising a set of indicia which is representative of all elements which are both (i) contained in said target and (ii) not contained in said local domain; and
(2) if said local domain does not contain a rule for each element contained in said local domain indicating that said requestor is authorized to perform said desired operation on said target;
(a) denying said request. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16, 17, 226, 233, 236)
-
-
18. A method of processing a request from a requestor, comprising:
-
receiving from a requestor a first request comprising at least one desired operation set of indicia and at least one target identification set of indicia, said desired operation set of indicia comprising a set of indicia which is representative of at least one desired operation, each said target identification set of indicia comprising a set of indicia which is representative of a target, said target comprising at least one element, said element comprising an information set of indicia, said information set of indicia being representative of information;
determining whether a local domain contains all of said at least one element in said target, said local domain comprising at least one processor;
if said local domain contains all of said at least one element in said target;
(a) enabling a first agent to access said at least one element to perform said desired operation, and (b) transmitting to said requestor a first agent location set of indicia, said first agent location set of indicia enabling said requestor to access said first agent; and
if said local domain does not contain all of said at least one element in said target;
(a) creating a second request, said second request comprising (1) said at least one desired operation set of indicia and (2) a secondary target identification set of indicia comprising a set of indicia which is representative of all elements which are both (i) contained in said target and (ii) not contained in said local domain. - View Dependent Claims (227, 234, 237)
-
-
19-34. -34. (canceled)
-
35. A method of processing a request from a requester, comprising:
-
receiving from a requestor a first request comprising at least one desired operation set of indicia and a requested target identification set of indicia, said desired operation set of indicia comprising a set of indicia which is representative of at least one desired operation, said requested target identification set of indicia comprising a set of indicia which is representative of a requested target, said requested target comprising at least one element, said element comprising an information set of indicia, said information set of indicia being representative of information;
determining whether a local domain contains all of said at least one element in said requested target, said local domain comprising at least one processor;
if said local domain contains all of said at least one element in said requested target;
(1) if said local domain contains a rule for each element in said target indicating that said requestor is authorized to perform said desired operation on said element;
(a) enabling a local domain agent to access said at least one element to perform said desired operation, and (b) transmitting to said requestor a local domain agent location set of indicia, said local domain agent location set of indicia enabling said requestor to access said local domain agent;
(2) if said local domain does not contain a rule for each element in said target indicating that said requestor is authorized to perform said desired operation on said at least one element;
(a) denying said request;
if said local domain contains at least one element in said target but does not contain all of said at least one element in said target;
(1) if said local domain does not contain a rule for each element in said local domain indicating that said requestor is authorized to perform said desired operation on said at least one element contained in said local domain;
(a) denying said request;
(2) if said local domain contains a rule for each said element contained in said local domain indicating that said requestor is authorized to perform said desired operation on said element contained in said local domain;
(a) creating a second request, said second request comprising (1) said at least one desired operation set of indicia and (2) a secondary target identification set of indicia comprising a set of indicia which is representative of all elements which are both (i) contained in said target and (ii) not contained in said local domain; and
(b) transmitting said second request to a second domain;
(c) determining whether said second domain contains all of said at least one element in said secondary target, said second domain comprising at least one processor;
(d) if said second domain contains all of said at least one element in said secondary target;
(1) if said second domain contains a rule for each said element in said secondary target indicating that said requestor is authorized to perform said desired operation on each said element in said secondary target;
(a) enabling said second domain agent to access all elements which are both (i) contained in said requested target and (ii) contained in said second domain;
(b) transmitting to said local domain a second domain agent location set of indicia, said second domain agent location set of indicia enabling a local domain agent to access said second domain agent;
(c) enabling said local domain agent to;
(i) access any elements which are both contained in said requested target and contained in said local domain; and
(ii) access, via said second domain agent, all elements which are both contained in said requested target and contained in said second domain; and
(d) transmitting to said requestor a local domain agent location set of indicia, said local domain agent location set of indicia enabling said requestor to access said local domain agent;
(2) if said local domain does not contain a rule for each element contained in said local domain indicating that said requestor is authorized to perform said desired operation on said target;
(a) denying said request;
if said local domain contains none of said at least one element in said target;
(1) creating a second request, said second request comprising (a) said at least one desired operation set of indicia and (b) a secondary target identification set of indicia comprising a set of indicia which is representative of all elements which are contained in said target; and
(2) transmitting said second request to a second domain;
(3) determining whether said second domain contains all of said at least one element in said secondary target, said second domain comprising at least one processor;
(4) if said second domain contains all of said at least one element in said secondary target;
(a) if said second domain contains a rule for each said element in said secondary target indicating that said requester is authorized to perform said desired operation on each said element in said secondary target;
(1) enabling said second domain agent to access all elements which are contained in said requested target;
(2) transmitting to said local domain a second domain agent location set of indicia, said second domain agent location set of indicia enabling a local domain agent to access said second domain agent;
(3) enabling said local domain agent to access, via said second domain agent, all elements which are contained in said second domain; and
(4) transmitting to said requestor a local domain agent location set of indicia, said local domain agent location set of indicia enabling said requestor to access said local domain agent;
(b) if said local domain does not contain a rule for each element contained in said local domain indicating that said requestor is authorized to perform said desired operation on said target;
(1) denying said request. - View Dependent Claims (228)
-
-
36-58. -58. (canceled)
-
59. A method of processing a request from a requester, comprising:
-
receiving from a requestor a first request comprising at least one desired operation set of indicia and a requested target identification set of indicia, said desired operation set of indicia comprising a set of indicia which is representative of at least one desired operation, said requested target identification set of indicia comprising a set of indicia which is representative of a requested target, said requested target comprising at least one element, said element comprising an information set of indicia, said information set of indicia being representative of information;
determining whether a local domain contains all of said at least one element in said requested target, said local domain comprising at least one processor;
if said local domain contains all of said at least one element in said requested target and said local domain contains a rule for each element in said requested target indicating that said requestor is authorized to perform said desired operation on said element;
(a) enabling a local domain agent to access said at least one element to perform said desired operation, and (b) transmitting to said requestor a local domain agent location set of indicia, said local domain agent location set of indicia enabling said requestor to access said local domain agent;
if said local domain contains all of said at least one element in said requested target and said local domain does not contain a rule for each element in said requested target indicating that said requestor is authorized to perform said desired operation on said element;
(a) denying said request;
if said local domain does not contain all of said at least one element in said requested target;
(a) if said local domain contains at least one of said at least one element in said requested target and said local domain does not contain a rule for each element in said requested target indicating that said requestor is authorized to perform said desired operation on said element, denying said request;
otherwise;
(b) creating a current request, said current request comprising (1) said at least one desired operation set of indicia, and (2) a current target identification set of indicia comprising a set of indicia which is representative of a current target set, said current target set comprising all elements which are both (i) contained in said requested target and (ii) not contained in said local domain; and
(c) transmitting said current request to a next domain, said next domain comprising at least one processor;
if said request has not been denied, repeating a sub-routine comprising;
(1) determining whether said next domain contains all elements in said current target set;
(2) if said next domain contains all of said elements in said current target set and said next domain does not contain a rule for each element in said current target set indicating that said requestor is authorized to perform said desired operation on said element, denying said request;
(3) if said next domain contains all of said elements in said current target set and said next domain contains a rule for each element in said current target set indicating that said requester is authorized to perform said desired operation on said element;
(a) enabling a first non-local agent to access said elements in said current target set, (b) transmitting to a next prior domain a first non-local agent location set of indicia, said first non-local agent location set of indicia enabling a next prior domain agent to access said first non-local agent;
(c) unless said next non-local agent location set of indicia has reached said local domain, repeating a step of;
(i) enabling said next prior domain agent to access any elements which are both contained in said requested target and contained in said next prior domain; and
(ii) transmitting to said next prior domain a next non-local agent location set of indicia, said next non-local agent location set of indicia enabling said next prior domain agent to access said next non-local agent;
until said next non-local agent location set of indicia reaches said local domain; and
(d) enabling said local domain agent to access any elements which are both contained in said requested target and contained in said local domain; and
transmitting to said requestor a local domain agent location set of indicia, said local domain agent location set of indicia enabling said requestor to access said local domain agent;
(4) if said next domain contains at least one of said elements in said current target set and said next domain does not contain a rule for each element in said next domain and in said current target set indicating that said requestor is authorized to perform said desired operation on said element in said next domain and in said current target set, denying said request;
otherwise;
(5) if said next domain does not contain all of said elements in said current target set;
(a) creating a next request, said next request comprising (1) said at least one desired operation set of indicia, and (2) a new current target identification set of indicia comprising a set of indicia which is representative of a new current target set, said new current target set comprising all elements which were (i) contained in said requested target, (ii) not contained in said local domain, and (iii) not contained in any domain to which a current request has been transmitted; and
(b) transmitting said next request to a next domain, until (1) a non-local agent location set of indicia is transmitted to said local domain agent, or (2) said repeating of said sub-routine is terminated. - View Dependent Claims (60, 61, 62, 63, 64, 65, 66, 67, 68, 69, 70, 71, 72, 73, 229)
-
-
74-88. -88. (canceled)
-
89. A method of processing a request from a requester, comprising:
-
receiving from a requestor a request comprising at least one desired operation set of indicia and at least one target identification set of indicia, said desired operation set of indicia comprising a set of indicia which is representative of at least one desired operation, each said target identification set of indicia comprising a set of indicia which is representative of a target, said target comprising at least one element, said element comprising an information set of indicia, said information set of indicia being representative of information;
determining whether a local domain contains all of said at least one element in said target, said local domain comprising at least one processor;
if said local domain contains all of said at least one element in said target;
(1) if said local domain contains a rule for each element in said target indicating that said requestor is authorized to perform said desired operation on said element;
(a) enabling a local domain agent to access said at least one element to perform said desired operation, and (b) transmitting to said requestor a local domain agent location set of indicia, said local domain agent location set of indicia enabling said requestor to access said local domain agent;
(2) if said local domain does not contain a rule for each element in said target indicating that said requestor is authorized to perform said desired operation on said target;
(a) denying said request; and
if said local domain does not contain all of said at least one element in said target;
(a) denying said request. - View Dependent Claims (230)
-
-
90-96. -96. (canceled)
-
97. A method of transmitting at least one set of indicia representative of information from a first domain to a second domain comprising:
-
transmitting at least one set of indicia representative of information from a first virtual address in a first domain to a second virtual address in said first domain, said first domain comprising at least a first processor, and then transmitting said set of indicia representative of information from said second virtual address in said first domain to a second domain via a first physical address in said first domain, said second domain comprising at least a second processor. - View Dependent Claims (98, 99, 100, 235, 238)
-
-
101. A method comprising determining whether a requestor is authorized to perform a desired operation on a target comprising at least one element, said element comprising an information set of indicia, by:
-
(1) comparing a stored clearance level for said requestor with a stored protection level for said element;
(2) performing at least one step selected from among (a) determining whether a stored NTK for said requestor includes performing said desired operation on said at least one element and (b) determining whether a stored NTK for said element includes performance of said desired operation by said requester; and
(3) receiving from said requestor at least one credential set of indicia, said credential set of indicia comprising indicia selected from the group consisting of indicia input by the requestor and indicia derived from the requestor, and comparing said credential set of indicia with at least one set of stored credential indicia for said requestor. - View Dependent Claims (231)
-
-
102-105. -105. (canceled)
-
106. A method of processing a request from a requestor, comprising:
-
receiving from a requestor a request comprising at least one desired operation set of indicia and at least one target identification set of indicia, said desired operation set of indicia comprising a set of indicia which is representative of at least one desired operation, each said target identification set of indicia comprising a set of indicia which is representative of a target, said target comprising at least one element, said element comprising an information set of indicia, said information set of indicia being representative of information;
enabling an agent in a first domain to access said at least one element in said first domain to perform said desired operation, and transmitting to said requestor a first domain agent location set of indicia, said first domain agent location set of indicia representing a location of said first domain agent;
wherein no application which is not an agent can access protected data within said first domain. - View Dependent Claims (232)
-
-
107-116. -116. (canceled)
-
117. An apparatus for processing a request from a requester, comprising:
-
means for receiving from a requestor a first request comprising at least one desired operation set of indicia and at least one target identification set of indicia, said desired operation set of indicia comprising a set of indicia which is representative of at least one desired operation, each said target identification set of indicia comprising a set of indicia which is representative of a target, said target comprising at least one element, said element comprising an information set of indicia, said information set of indicia being representative of information;
means for determining whether a local domain contains all of said at least one element in said target, said local domain comprising at least one processor;
means for carrying out the following;
if said local domain contains all of said at least one element in said target;
(1) if said local domain contains a rule for each element in said target indicating that said requestor is authorized to perform said desired operation on said element;
(a) enabling a first agent to access said at least one element to perform said desired operation, and (b) transmitting to said requestor a first agent location set of indicia, said first agent location set of indicia enabling said requestor to access said first agent;
(2) if said local domain does not contain a rule for each element in said target indicating that said requestor is authorized to perform said desired operation on said target;
(a) denying said request;
if said local domain contains at least one element in said target but does not contain all of said at least one element in said target;
(1) if said local domain contains a rule for each said element contained in said local domain indicating that said requestor is authorized to perform said desired operation on said at least one element in said target;
(a) creating a second request, said second request comprising (1) said at least one desired operation set of indicia and (2) a secondary target identification set of indicia comprising a set of indicia which is representative of all elements which are both (i) contained in said target and (ii) not contained in said local domain; and
(2) if said local domain does not contain a rule for each element contained in said local domain indicating that said requestor is authorized to perform said desired operation on said target;
(a) denying said request.
-
-
118-127. -127. (canceled)
-
128. An apparatus for processing a request from a requestor, comprising:
-
means for receiving from a requestor a first request comprising at least one desired operation set of indicia and at least one target identification set of indicia, said desired operation set of indicia comprising a set of indicia which is representative of at least one desired operation, each said target identification set of indicia comprising a set of indicia which is representative of a target, said target comprising at least one element, said element comprising an information set of indicia, said information set of indicia being representative of information;
means for determining whether a local domain contains all of said at least one element in said target, said local domain comprising at least one processor;
means for carrying out the following;
if said local domain contains all of said at least one element in said target;
(a) enabling a first agent to access said at least one element to perform said desired operation, and (b) transmitting to said requestor a first agent location set of indicia, said first agent location set of indicia enabling said requestor to access said first agent; and
if said local domain does not contain all of said at least one element in said target;
(a) creating a second request, said second request comprising (1) said at least one desired operation set of indicia and (2) a secondary target identification set of indicia comprising a set of indicia which is representative of all elements which are both (i) contained in said target and (ii) not contained in said local domain.
-
-
129-138. -138. (canceled)
-
139. An apparatus for processing a request from a requestor, comprising:
-
means for receiving from a requestor a first request comprising at least one desired operation set of indicia and a requested target identification set of indicia, said desired operation set of indicia comprising a set of indicia which is representative of at least one desired operation, said requested target identification set of indicia comprising a set of indicia which is representative of a requested target, said requested target comprising at least one element, said element comprising an information set of indicia, said information set of indicia being representative of information;
means for determining whether a local domain contains all of said at least one element in said requested target, said local domain comprising at least one processor;
means for carrying out the following;
if said local domain contains all of said at least one element in said requested target;
(1) if said local domain contains a rule for each element in said target indicating that said requestor is authorized to perform said desired operation on said element;
(a) enabling a local domain agent to access said at least one element to perform said desired operation, and (b) transmitting to said requestor a local domain agent location set of indicia, said local domain agent location set of indicia enabling said requestor to access said local domain agent;
(2) if said local domain does not contain a rule for each element in said target indicating that said requestor is authorized to perform said desired operation on said at least one element;
(a) denying said request;
if said local domain contains at least one element in said target but does not contain all of said at least one element in said target;
(1) if said local domain does not contain a rule for each element in said local domain indicating that said requestor is authorized to perform said desired operation on said at least one element contained in said local domain;
(a) denying said request;
(2) if said local domain contains a rule for each said element contained in said local domain indicating that said requestor is authorized to perform said desired operation on said element contained in said local domain;
(a) creating a second request, said second request comprising (1) said at least one desired operation set of indicia and (2) a secondary target identification set of indicia comprising a set of indicia which is representative of all elements which are both (i) contained in said target and (ii) not contained in said local domain; and
(b) transmitting said second request to a second domain;
(c) determining whether said second domain contains all of said at least one element in said secondary target, said second domain comprising at least one processor;
(d) if said second domain contains all of said at least one element in said secondary target;
(1) if said second domain contains a rule for each said element in said secondary target indicating that said requestor is authorized to perform said desired operation on each said element in said secondary target;
(a) enabling said second domain agent to access all elements which are both (i) contained in said requested target and (ii) contained in said second domain;
10 (b) transmitting to said local domain a second domain agent location set of indicia, said second domain agent location set of indicia enabling a local domain agent to access said second domain agent;
(c) enabling said local domain agent to;
(i) access any elements which are both contained in said requested target and contained in said local domain; and
(ii) access, via said second domain agent, all elements which are both contained in said requested target and contained in said second domain; and
(d) transmitting to said requestor a local domain agent location set of indicia, said local domain agent location set of indicia enabling said requestor to access said local domain agent;
(2) if said local domain does not contain a rule for each element contained in said local domain indicating that said requestor is authorized to perform said desired operation on said target;
(a) denying said request;
if said local domain contains none of said at least one element in said target;
(1) creating a second request, said second request comprising (a) said at least one desired operation set of indicia and (b) a secondary target identification set of indicia comprising a set of indicia which is representative of all elements which are contained in said target; and
(2) transmitting said second request to a second domain;
(3) determining whether said second domain contains all of said at least one element in said secondary target, said second domain comprising at least one processor;
(4) if said second domain contains all of said at least one element in said secondary target;
(a) if said second domain contains a rule for each said element in said secondary target indicating that said requestor is authorized to perform said desired operation on each said element in said secondary target;
(1) enabling said second domain agent to access all elements which are contained in said requested target;
(2) transmitting to said local domain a second domain agent location set of indicia, said second domain agent location set of indicia enabling a local domain agent to access said second domain agent;
(3) enabling said local domain agent to access, via said second domain agent, all elements which are contained in said second domain; and
(4) transmitting to said requestor a local domain agent location set of indicia, said local domain agent location set of indicia enabling said requestor to access said local domain agent;
(b) if said local domain does not contain a rule for each element contained in said local domain indicating that said requestor is authorized to perform said desired operation on said target;
(1) denying said request.
-
-
140-157. -157. (canceled)
-
158. An apparatus for processing a request from a requestor, comprising:
-
means for receiving from a requestor a first request comprising at least one desired operation set of indicia and a requested target identification set of indicia, said desired operation set of indicia comprising a set of indicia which is representative of at least one desired operation, said requested target identification set of indicia comprising a set of indicia which is representative of a requested target, said requested target comprising at least one element, said element comprising an information set of indicia, said information set of indicia being representative of information;
means for determining whether a local domain contains all of said at least one element in said requested target, said local domain comprising at least one processor;
means for carrying out the following;
if said local domain contains all of said at least one element in said requested target and said local domain contains a rule for each element in said requested target indicating that said requestor is authorized to perform said desired operation on said element;
(a) enabling a local domain agent to access said at least one element to perform said desired operation, and (b) transmitting to said requestor a local domain agent location set of indicia, said local domain agent location set of indicia enabling said requestor to access said local domain agent;
if said local domain contains all of said at least one element in said requested target and said local domain does not contain a rule for each element in said requested target indicating that said requestor is authorized to perform said desired operation on said element;
(a) denying said request;
if said local domain does not contain all of said at least one element in said requested target;
(a) if said local domain contains at least one of said at least one element in said requested target and said local domain does not contain a rule for each element in said requested target indicating that said requestor is authorized to perform said desired operation on said element, denying said request;
otherwise;
(b) creating a current request, said current request comprising (1) said at least one desired operation set of indicia, and (2) a current target identification set of indicia comprising a set of indicia which is representative of a current target set, said current target set comprising all elements which are both (i) contained in said requested target and (ii) not contained in said local domain; and
(c) transmitting said current request to a next domain, said next domain comprising at least one processor;
if said request has not been denied, repeating a sub-routine comprising;
(1) determining whether said next domain contains all elements in said current target set;
(2) if said next domain contains all of said elements in said current target set and said next domain does not contain a rule for each element in said current target set indicating that said requestor is authorized to perform said desired operation on said element, denying said request;
(3) if said next domain contains all of said elements in said current target set and said next domain contains a rule for each element in said current target set indicating that said requestor is authorized to perform said desired operation on said element;
(a) enabling a first non-local agent to access said elements in said current target set, (b) transmitting to a next prior domain a first non-local agent location set of indicia, said first non-local agent location set of indicia enabling a next prior domain agent to access said first non-local agent;
(c) unless said next non-local agent location set of indicia has reached said local domain, repeating a step of;
(i) enabling said next prior domain agent to access any elements which are both contained in said requested target and contained in said next prior domain; and
(ii) transmitting to said next prior domain a next non-local agent location set of indicia, said next non-local agent location set of indicia enabling said next prior domain agent to access said next non-local agent;
until said next non-local agent location set of indicia reaches said local domain; and
(d) enabling said local domain agent to access any elements which are both contained in said requested target and contained in said local domain; and
transmitting to said requestor a local domain agent location set of indicia, said local domain agent location set of indicia enabling said requestor to access said local domain agent;
(4) if said next domain contains at least one of said elements in said current target set and said next domain does not contain a rule for each element in said next domain and in said current target set indicating that said requestor is authorized to perform said desired operation on said element in said next domain and in said current target set, denying said request;
otherwise;
(5) if said next domain does not contain all of said elements in said current target set;
(a) creating a next request, said next request comprising (1) said at least one desired operation set of indicia, and (2) a new current target identification set of indicia comprising a set of indicia which is representative of a new current target set, said new current target set comprising all elements which were (i) contained in said requested target, (ii) not contained in said local domain, and (iii) not contained in any domain to which a current request has been transmitted; and
(b) transmitting said next request to a next domain, until (1) a non-local agent location set of indicia is transmitted to said local domain agent, or (2) said repeating of said sub-routine is terminated.
-
-
159-183. -183. (canceled)
-
184. An apparatus for processing a request from a requester, comprising:
-
means for receiving from a requestor a request comprising at least one desired operation set of indicia and at least one target identification set of indicia, said desired operation set of indicia comprising a set of indicia which is representative of at least one desired operation, each said target identification set of indicia comprising a set of indicia which is representative of a target, said target comprising at least one element, said element comprising an information set of indicia, said information set of indicia being representative of information;
means for determining whether a local domain contains all of said at least one element in said target, said local domain comprising at least one processor;
means for carrying out the following;
if said local domain contains all of said at least one element in said target;
(1) if said local domain contains a rule for each element in said target indicating that said requestor is authorized to perform said desired operation on said element;
(a) enabling a local domain agent to access said at least one element to perform said desired operation, and (b) transmitting to said requestor a local domain agent location set of indicia, said local domain agent location set of indicia enabling said requestor to access said local domain agent;
(2) if said local domain does not contain a rule for each element in said target indicating that said requestor is authorized to perform said desired operation on said target;
(a) denying said request; and
if said local domain does not contain all of said at least one element in said target;
(a) denying said request.
-
-
185-190. -190. (canceled)
-
191. An apparatus for transmitting at least one set of indicia representative of information from a first domain to a second domain comprising:
means for transmitting at least one set of indicia representative of information from a first virtual address in a first domain to a second virtual address in said first domain, said first domain comprising at least a first processor, and then transmitting said set of indicia representative of information from said second virtual address in said first domain to a second domain via a first physical address in said first domain, said second domain comprising at least a second processor.
-
192-194. -194. (canceled)
-
195. An apparatus for determining whether a requestor is authorized to perform a desired operation on a target comprising at least one element, said element comprising an information set of indicia, comprising:
-
(1) means for comparing a stored clearance level for said requestor with a stored protection level for said element;
(2) means for performing at least one step selected from among (a) determining whether a stored NTK for said requestor includes performing said desired operation on said at least one element and (b) determining whether a stored NTK for said element includes performance of said desired operation by said requester; and
(3) means for receiving from said requestor at least one credential set of indicia, said credential set of indicia comprising indicia selected from the group consisting of indicia input by the requestor and indicia derived from the requestor, and comparing said credential set of indicia with at least one set of stored credential indicia for said requestor.
-
-
196-198. -198. (canceled)
-
199. An apparatus for processing a request from a requestor, comprising:
-
means for receiving from a requester a request comprising at least one desired operation set of indicia and at least one target identification set of indicia, said desired operation set of indicia comprising a set of indicia which is representative of at least one desired operation, each said target identification set of indicia comprising a set of indicia which is representative of a target, said target comprising at least one element, said element comprising an information set of indicia, said information set of indicia being representative of information;
means for enabling an agent in a first domain to access said at least one element in said first domain to perform said desired operation, and means for transmitting to said requestor a first domain agent location set of indicia, said first domain agent location set of indicia representing a location of said first domain agent;
wherein no application which is not an agent can access protected data within said first domain.
-
-
200-208. -208. (canceled)
-
209. A computer-readable medium having computer-executable commands for performing the following:
-
receiving from a requestor a first request comprising at least one desired operation set of indicia and at least one target identification set of indicia, said desired operation set of indicia comprising a set of indicia which is representative of at least one desired operation, each said target identification set of indicia comprising a set of indicia which is representative of a target, said target comprising at least one element, said element comprising an information set of indicia, said information set of indicia being representative of information;
determining whether a local domain contains all of said at least one element in said target, said local domain comprising at least one processor;
if said local domain contains all of said at least one element in said target;
(1) if said local domain contains a rule for each element in said target indicating that said requester is authorized to perform said desired operation on said element;
(a) enabling a first agent to access said at least one element to perform said desired operation, and (b) transmitting to said requester a first agent location set of indicia, said first agent location set of indicia enabling said requestor to access said first agent;
(2) if said local domain does not contain a rule for each element in said target indicating that said requestor is authorized to perform said desired operation on said target;
(a) denying said request;
if said local domain contains at least one element in said target but does not contain all of said at least one element in said target;
(1) if said local domain contains a rule for each said element contained in said local domain indicating that said requester is authorized to perform said desired operation on said at least one element in said target;
(a) creating a second request, said second request comprising (1) said at least one desired operation set of indicia and (2) a secondary target identification set of indicia comprising a set of indicia which is representative of all elements which are both (i) contained in said target and (ii) not contained in said local domain; and
(2) if said local domain does not contain a rule for each element contained in said local domain indicating that said requestor is authorized to perform said desired operation on said target;
(a) denying said request.
-
-
210. (canceled)
-
211. A computer-readable medium having computer-executable commands for performing the following:
-
receiving from a requestor a first request comprising at least one desired operation set of indicia and a requested target identification set of indicia, said desired operation set of indicia comprising a set of indicia which is representative of at least one desired operation, said requested target identification set of indicia comprising a set of indicia which is representative of a requested target, said requested target comprising at least one element, said element comprising an information set of indicia, said information set of indicia being representative of information;
determining whether a local domain contains all of said at least one element in said requested target, said local domain comprising at least one processor;
if said local domain contains all of said at least one element in said requested target;
(1) if said local domain contains a rule for each element in said target indicating that said requestor is authorized to perform said desired operation on said element;
(a) enabling a local domain agent to access said at least one element to perform said desired operation, and (b) transmitting to said requester a local domain agent location set of indicia, said local domain agent location set of indicia enabling said requestor to access said local domain agent;
(2) if said local domain does not contain a rule for each element in said target indicating that said requestor is authorized to perform said desired operation on said at least one element;
(a) denying said request;
if said local domain contains at least one element in said target but does not contain all of said at least one element in said target;
(1) if said local domain does not contain a rule for each element in said local domain indicating that said requester is authorized to perform said desired operation on said at least one element contained in said local domain;
(a) denying said request;
(2) if said local domain contains a rule for each said element contained in said local domain indicating that said requestor is authorized to perform said desired operation on said element contained in said local domain;
(a) creating a second request, said second request comprising (1) said at least one desired operation set of indicia and (2) a secondary target identification set of indicia comprising a set of indicia which is representative of all elements which are both (i) contained in said target and (ii) not contained in said local domain; and
(b) transmitting said second request to a second domain;
(c) determining whether said second domain contains all of said at least one element in said secondary target, said second domain comprising at least one processor;
(d) if said second domain contains all of said at least one element in said secondary target;
(1) if said second domain contains a rule for each said element in said secondary target indicating that said requestor is authorized to perform said desired operation on each said element in said secondary target;
(a) enabling said second domain agent to access all elements which are both (i) contained in said requested target and (ii) contained in said second domain;
(b) transmitting to said local domain a second domain agent location set of indicia, said second domain agent location set of indicia enabling a local domain agent to access said second domain agent;
(c) enabling said local domain agent to;
(i) access any elements which are both contained in said requested target and contained in said local domain; and
(ii) access, via said second domain agent, all elements which are both contained in said requested target and contained in said second domain; and
(d) transmitting to said requestor a local domain agent location set of indicia, said local domain agent location set of indicia enabling said requestor to access said local domain agent;
(2) if said local domain does not contain a rule for each element contained in said local domain indicating that said requestor is authorized to perform said desired operation on said target;
(a) denying said request;
if said local domain contains none of said at least one element in said target;
(1) creating a second request, said second request comprising (a) said at least one desired operation set of indicia and (b) a secondary target identification set of indicia comprising a set of indicia which is representative of all elements which are contained in said target; and
(2) transmitting said second request to a second domain;
(3) determining whether said second domain contains all of said at least one element in said secondary target, said second domain comprising at least one processor;
(4) if said second domain contains all of said at least one element in said secondary target;
(a) if said second domain contains a rule for each said element in said secondary target indicating that said requestor is authorized to perform said desired operation on each said element in said secondary target;
(1) enabling said second domain agent to access all elements which are contained in said requested target;
(2) transmitting to said local domain a second domain agent location set of indicia, said second domain agent location set of indicia enabling a local domain agent to access said second domain agent;
(3) enabling said local domain agent to access, via said second domain agent, all elements which are contained in said second domain; and
(4) transmitting to said requestor a local domain agent location set of indicia, said local domain agent location set of indicia enabling said requestor to access said local domain agent;
(b) if said local domain does not contain a rule for each element contained in said local domain indicating that said requestor is authorized to perform said desired operation on said target;
(1) denying said request.
-
-
212. (canceled)
-
213. A computer-readable medium having computer-executable commands for performing the following:
-
receiving from a requestor a first request comprising at least one desired operation set of indicia and a requested target identification set of indicia, said desired operation set of indicia comprising a set of indicia which is representative of at least one desired operation, said requested target identification set of indicia comprising a set of indicia which is representative of a requested target, said requested target comprising at least one element, said element comprising an information set of indicia, said information set of indicia being representative of information;
determining whether a local domain contains all of said at least one element in said requested target, said local domain comprising at least one processor;
if said local domain contains all of said at least one element in said requested target and said local domain contains a rule for each element in said requested target indicating that said requestor is authorized to perform said desired operation on said element;
(a) enabling a local domain agent to access said at least one element to perform said desired operation, and (b) transmitting to said requester a local domain agent location set of indicia, said local domain agent location set of indicia enabling said requestor to access said local domain agent;
if said local domain contains all of said at least one element in said requested target and said local domain does not contain a rule for each element in said requested target indicating that said requestor is authorized to perform said desired operation on said element;
(a) denying said request;
if said local domain does not contain all of said at least one element in said requested target;
(a) if said local domain contains at least one of said at least one element in said requested target and said local domain does not contain a rule for each element in said requested target indicating that said requestor is authorized to perform said desired operation on said element, denying said request;
otherwise;
(b) creating a current request, said current request comprising (1) said at least one desired operation set of indicia, and (2) a current target identification set of indicia comprising a set of indicia which is representative of a current target set, said current target set comprising all elements which are both (i) contained in said requested target and (ii) not contained in said local domain; and
(c) transmitting said current request to a next domain, said next domain comprising at least one processor;
if said request has not been denied, repeating a sub-routine comprising;
(1) determining whether said next domain contains all elements in said current target set;
(2) if said next domain contains all of said elements in said current target set and said next domain does not contain a rule for each element in said current target set indicating that said requestor is authorized to perform said desired operation on said element, denying said request;
(3) if said next domain contains all of said elements in said current target set and said next domain contains a rule for each element in said current target set indicating that said requestor is authorized to perform said desired operation on said element;
(a) enabling a first non-local agent to access said elements in said current target set, (b) transmitting to a next prior domain a first non-local agent location set of indicia, said first non-local agent location set of indicia enabling a next prior domain agent to access said first non-local agent;
(c) unless said next non-local agent location set of indicia has reached said local domain, repeating a step of;
(i) enabling said next prior domain agent to access any elements which are both contained in said requested target and contained in said next prior domain; and
(ii) transmitting to said next prior domain a next non-local agent location set of indicia, said next non-local agent location set of indicia enabling said next prior domain agent to access said next non-local agent;
until said next non-local agent location set of indicia reaches said local domain; and
(d) enabling said local domain agent to access any elements which are both contained in said requested target and contained in said local domain; and
transmitting to said requestor a local domain agent location set of indicia, said local domain agent location set of indicia enabling said requestor to access said local domain agent;
(4) if said next domain contains at least one of said elements in said current target set and said next domain does not contain a rule for each element in said next domain and in said current target set indicating that said requester is authorized to perform said desired operation on said element in said next domain and in said current target set, denying said request;
otherwise;
(5) if said next domain does not contain all of said elements in said current target set;
(a) creating a next request, said next request comprising (1) said at least one desired operation set of indicia, and (2) a new current target identification set of indicia comprising a set of indicia which is representative of a new current target set, said new current target set comprising all elements which were (i) contained in said requested target, (ii) not contained in said local domain, and (iii) not contained in any domain to which a current request has been transmitted; and
(b) transmitting said next request to a next domain, until (1) a non-local agent location set of indicia is transmitted to said local domain agent, or (2) said repeating of said sub-routine is terminated.
-
-
214. (canceled)
-
215. A computer-readable medium having computer-executable commands for performing the following:
-
receiving from a requestor a request comprising at least one desired operation set of indicia and at least one target identification set of indicia, said desired operation set of indicia comprising a set of indicia which is representative of at least one desired operation, each said target identification set of indicia comprising a set of indicia which is representative of a target, said target comprising at least one element, said element comprising an information set of indicia, said information set of indicia being representative of information;
determining whether a local domain contains all of said at least one element in said target, said local domain comprising at least one processor;
if said local domain contains all of said at least one element in said target;
(1) if said local domain contains a rule for each element in said target indicating that said requester is authorized to perform said desired operation on said element;
(a) enabling a local domain agent to access said at least one element to perform said desired operation, and (b) transmitting to said requestor a local domain agent location set of indicia, said local domain agent location set of indicia enabling said requester to access said local domain agent;
(2) if said local domain does not contain a rule for each element in said target indicating that said requestor is authorized to perform said desired operation on said target;
(a) denying said request; and
if said local domain does not contain all of said at least one element in said target;
(a) denying said request.
-
-
216. A computer-readable medium having computer-executable commands for performing the following:
-
transmitting at least one set of indicia representative of information from a first virtual address in a first domain to a second virtual address in said first domain, said first domain comprising at least a first processor, and then transmitting said set of indicia representative of information from said second virtual address in said first domain to a second domain via a first physical address in said first domain, said second domain comprising at least a second processor.
-
-
217-220. -220. (canceled)
-
221. A method of processing a request from a requestor, comprising:
-
receiving from a requestor a request comprising at least one desired operation set of indicia and at least one target identification set of indicia, said desired operation set of indicia comprising a set of indicia which is representative of at least one desired operation, each said target identification set of indicia comprising a set of indicia which is representative of a target, determining whether to deny said request by comparing combinations of indicia in said request with allowable combinations of indicia stored in at least one bitmap. - View Dependent Claims (222)
-
-
223. An arrangement of stored data, comprising:
at least one data storage structure, said data storage structure comprising a bitmap containing allowable combinations of indicia for use in determining whether to deny a request for a user to perform an operation on a target. - View Dependent Claims (224, 225)
Specification