METHOD AND APPARATUS FOR MOVING PROCESSES BETWEEN ISOLATION ENVIRONMENTS
First Claim
Patent Images
1. A method for isolating access by application programs to native resources provided by an operating system, the method comprising the steps of:
- redirecting to an isolation environment comprising a user isolation scope and an application isolation scope a request for a native resource made by a process executing on behalf of a first user;
locating an instance of the requested resource in the user isolation scope on behalf of a first user; and
responding to the request for the native resource using the instance of the resource located in the user isolation scope.
7 Assignments
0 Petitions
Accused Products
Abstract
A method for moving an executing process from a source isolation scope to a target isolation scope includes the step of determining that the process is in a state suitable for moving. The association of the process changes from a source isolation scope to a target isolation scope. A rule loads in association with the target isolation scope.
30 Citations
32 Claims
-
1. A method for isolating access by application programs to native resources provided by an operating system, the method comprising the steps of:
-
redirecting to an isolation environment comprising a user isolation scope and an application isolation scope a request for a native resource made by a process executing on behalf of a first user; locating an instance of the requested resource in the user isolation scope on behalf of a first user; and responding to the request for the native resource using the instance of the resource located in the user isolation scope. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16, 17, 18, 19, 20, 21, 22)
-
-
23. An isolation environment for isolating access by application programs to native resources provided by an operating system, the isolation environment comprising:
-
a user isolation scope storing an instance of a native resource, the user isolation scope corresponding to a user; and a redirector intercepting a request for the native resource made by a process executing on behalf of the user and redirecting the request to the user isolation scope. - View Dependent Claims (24, 25, 26, 27, 28, 29, 30, 31, 32)
-
Specification