SYSTEMS AND METHODS FOR SERVICE ISOLATION
First Claim
1. A method for streaming an application, which uses local machine resources, on a local machine comprising the steps of:
- receiving, by a local machine, a request to stream an application;
receiving, by a local machine, a file including access information for accessing a plurality of application files and for executing a first client capable of receiving an application stream;
retrieving an identification of the plurality of application files, responsive to the file;
receiving, by a local machine, information identifying whether the application requires the use of services with greater permissions levels than those available to the user of the local machine;
creating an isolation environment for isolated services with permissions levels greater than those available to the application; and
starting one or more isolated services in the isolation environment with permissions levels greater than those available to the application.
8 Assignments
0 Petitions
Accused Products
Abstract
The present invention is directed towards systems and methods of streaming an application from a remote location to a local machine system, and using local machine system resources in executing that application. In various embodiments, services needed by a streamed application may be started with high local system privileges in their own isolation environment. These service may be started, stopped, and otherwise managed by a Service Control Manager. In order for an application to both access services that operate at high local system privileges and the network so that it can access remotely stored, streaming, information; a streaming application may rely on privileges of the user when accessing network information rather than the higher privileges of the services running in isolation.
-
Citations
20 Claims
-
1. A method for streaming an application, which uses local machine resources, on a local machine comprising the steps of:
-
receiving, by a local machine, a request to stream an application; receiving, by a local machine, a file including access information for accessing a plurality of application files and for executing a first client capable of receiving an application stream; retrieving an identification of the plurality of application files, responsive to the file; receiving, by a local machine, information identifying whether the application requires the use of services with greater permissions levels than those available to the user of the local machine; creating an isolation environment for isolated services with permissions levels greater than those available to the application; and starting one or more isolated services in the isolation environment with permissions levels greater than those available to the application. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10)
-
-
11. A system for streaming an application on a local machine which is capable of using local machine resources, the system comprising:
-
a local machine communicatively connected to a network; an environment on the local machine for running a streamed application from the network; and an isolation environment on the local machine for running isolated services with permissions levels greater than those available to the environment running a streamed application. - View Dependent Claims (12, 13, 14, 15)
-
-
16. A system for streaming an application on a local machine which is capable of using local machine resources, the system comprising:
-
means for receiving, by a local machine, a request to stream an application; means for receiving, by a local machine, a file including access information for accessing a plurality of application files and for executing a first client capable of receiving an application stream; means for retrieving an identification of the plurality of application files, responsive to the file; means for receiving, by a local machine, information identifying whether the application requires the use of services with greater permissions levels than those available to the user of the local machine, means for creating an isolation environment for isolated services with permissions levels greater than those available to the application. means for starting one or more isolated services in the isolation environment with permissions levels greater than those available to the application. - View Dependent Claims (17, 18, 19, 20)
-
Specification