PARTIAL GRANT SET EVALUATION FROM PARTIAL EVIDENCE IN AN EVIDENCE-BASED SECURITY POLICY MANAGER

US 20070192839A1
Filed: 04/17/2007
Published: 08/16/2007
Est. Priority Date: 06/21/2000
Status: Active Grant

First Claim

Patent Images

1. A data processing system, comprising:

a policy manager using an evidence based security model that evaluates multiple pieces of evidence using a security policy to determine a set of granted permissions; and

an oracle for determining whether a first permission is granted based on a subset of the multiple pieces of evidence, the subset including less than all of the multiple pieces of evidence, wherein the policy manager, upon receiving a request for the first permission, queries the oracle to determine whether the first permission is granted based on the subset of the multiple pieces of evidence.

View all claims

2 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

An evidence-based policy manager generates a permission grant set for a code assembly received from a resource location. The policy manager executes in a computer system (e.g., a Web client or server) in combination with the verification module and class loader of the run-time environment. The permission grant set generated for a code assembly is applied in the run-time call stack to help the system determine whether a given system operation by the code assembly is authorized. The policy manager may determine a subset of the permission grant set based on a subset of the received code assembly'"'"'s evidence, in order to expedite processing of the code assembly. When the evidence subset does not yield the desired permission subset, the policy manager may then perform an evaluation of all evidence received.

Citations

23 Claims

1. A data processing system, comprising:
- a policy manager using an evidence based security model that evaluates multiple pieces of evidence using a security policy to determine a set of granted permissions; and
  
  an oracle for determining whether a first permission is granted based on a subset of the multiple pieces of evidence, the subset including less than all of the multiple pieces of evidence, wherein the policy manager, upon receiving a request for the first permission, queries the oracle to determine whether the first permission is granted based on the subset of the multiple pieces of evidence.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11)
- - 2. The system of claim 1, wherein the oracle comprises a bitmap, and wherein the bitmap comprises bits corresponding to a combination of the first permission and a possible value of a single piece of evidence.
  - 3. The system of claim 2, wherein each bit in the bitmap comprises a first value when the first permission is granted, and a second value when the first permission is either not granted or unknown.
  - 4. The system of claim 1, wherein, when the oracle indicates that the first permission is not granted or unknown, the policy manager performs a full security policy evaluation based on the multiple pieces of evidence.
  - 5. The system of claim 1, wherein the subset comprises a zone indicator value.
  - 6. The system of claim 5, wherein the possible values for the zone indicator value includes a local computer, the Internet, a local intranet, trusted web sites, and untrusted web sites.
  - 7. The system of claim 1, wherein the first permission comprises a right of a code assembly to execute.
  - 8. The system of claim 1, wherein the first permission comprises a right of a code assembly to skip verification.
  - 9. The system of claim 1, wherein the first permission comprises a right of a code assembly to call unmanaged code.
  - 10. The system of claim 1, wherein the first permission comprises full trust rights.
  - 11. The system of claim 1, wherein the subset of the multiple pieces of evidence comprises one piece of evidence.

12. In an evidence based security model that evaluates, using a security policy, multiple pieces of evidence to determine a set of granted permissions, and wherein a piece of evidence is likely to determine whether a first permission is granted, a data structure stored in a computer memory, comprising:
- a first portion corresponding to a first value of the piece of evidence and a plurality of permissions; and
  
  a second portion corresponding to a second value of the piece of evidence and the plurality of permissions, wherein the data structure indicates, for each value/permission pair, that the permission is granted, or that the permission is either not granted or unknown.
- View Dependent Claims (13)
- - 13. The data structure of claim 12, wherein the data structure comprises a bitmap, and the first portion comprises a first plurality of bits in the bitmap, and the second portion comprises a second plurality of bits in the bitmap, wherein each bit corresponds to a value/permission pair.

14. In an evidence based security model that evaluates multiple pieces of evidence using a security policy to determine a set of granted permissions, and wherein a code assembly'"'"'s zone of origin is likely to determine whether a first permission is granted, and wherein prior to receiving a request to determine whether the first permission is granted, possible values of the zone of origin have been evaluated using the security policy to determine resultant permissions, and the results have been stored in a bitmap, a method for determining a subset of the permissions, comprising steps of:
- (a) upon receiving a request to determine whether the first permission is granted, wherein the request comprises an instance of the zone of origin, determining whether the first permission is granted based on data stored in the bitmap; and
  
  (b) when the first permission is not granted in step (a), performing a full evaluation of the multiple pieces of evidence based on the security policy.
- View Dependent Claims (15, 16, 17, 18, 19, 20)
- - 15. The method of claim 14, wherein the set of possible values of the zone of evidence comprises a local computer, the Internet, a local intranet, trusted web sites, and untrusted web sites.
  - 16. The method of claim 14, wherein the first permission comprises the right of the code assembly to execute.
  - 17. The method of claim 14, wherein the first permission comprises the right of the code assembly to skip verification.
  - 18. The method of claim 14, wherein the first permission comprises the right of a code assembly to call unmanaged code.
  - 19. The method of claim 14, wherein the first permission comprises full trust rights.
  - 20. The method of claim 14, wherein each bit of the stored results corresponds to a combination of one of the permissions and a possible value of the zone of origin.

21. In an evidence based security model that evaluates multiple pieces of evidence using a security policy to determine a set of granted permissions, and wherein a subset of the multiple pieces of evidence is likely to determine whether a subset of permissions is granted, a method for determining the subset of permissions, comprising steps of:
- (a) prior to receiving a request to determine whether the subset of permissions is granted, evaluating the subset of evidence using the security policy, based on the possible values of evidence contained in the subset of evidence, to determine resultant permissions, wherein the subset of evidence includes less than all of the multiple pieces of evidence;
  
  (b) storing the results from step (a); and
  
  (c) upon receiving a request to determine whether the subset of permissions is granted, wherein the request comprises an instance of the subset of evidence, querying the stored results to determine whether the subset of permissions is granted.
- View Dependent Claims (22, 23)
- - 22. The method of claim 21, wherein the subset of evidence comprises one piece of evidence.
  - 23. The method of claim 21, wherein the subset of permissions comprises one permission.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Microsoft Technology Licensing LLC (Microsoft Corporation)
Original Assignee
Microsoft Corporation
Inventors
Pratt, Brian, Lange, Sebastian, Fee, Gregory, Kohnfelder, Loren

Granted Patent

US 7,779,460 B2
Time in Patent Office

Days
Field of Search
US Class Current

726/4
CPC Class Codes

G06F 21/6209   to a single file or object,...

G06F 21/6218   to a system of files or obj...

G06F 2221/2141   Access rights, e.g. capabil...

PARTIAL GRANT SET EVALUATION FROM PARTIAL EVIDENCE IN AN EVIDENCE-BASED SECURITY POLICY MANAGER

First Claim

2 Assignments

0 Petitions

Accused Products

Abstract

Citations

23 Claims

Specification

Solutions

Use Cases

Quick Links

PARTIAL GRANT SET EVALUATION FROM PARTIAL EVIDENCE IN AN EVIDENCE-BASED SECURITY POLICY MANAGER

First Claim

2 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

Citations

23 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links