Multiple resource or security contexts in a multithreaded application
First Claim
1. In a computer system including a system security manager and a multithreaded application environment, a computerized method of supporting multiple security or resource contexts, said method comprising the steps of:
- instantiating at least one thread for an execution of content, each thread having at least one content context;
associating each content context with a content loader for loading said each context for execution;
associating the loader with one of a security requirement and a resource requirement, wherein the requirement may vary according to said each content context; and
dynamically managing one of a security request and a resource request for each thread according to an associated requirement.
1 Assignment
0 Petitions
Accused Products
Abstract
A method and system for creating flexible security control mechanisms and virtualization of nominally shared system resources. The goal is to minimize the potential for interference between concurrently executing applications in a multithreaded environment. Executable content is associated with security policies appropriate to the content, and policies are associated with the content loader; security policies are dynamically computed so that content from multiple sources can be combined to create new, yet secure, function; digitally signed executable content can bypass some security restrictions; and, nominally shared resources are managed via policies associated with the content loading mechanism.
158 Citations
30 Claims
-
1. In a computer system including a system security manager and a multithreaded application environment, a computerized method of supporting multiple security or resource contexts, said method comprising the steps of:
-
instantiating at least one thread for an execution of content, each thread having at least one content context; associating each content context with a content loader for loading said each context for execution; associating the loader with one of a security requirement and a resource requirement, wherein the requirement may vary according to said each content context; and dynamically managing one of a security request and a resource request for each thread according to an associated requirement. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15)
-
-
16. A computer system for supporting multiple security or resource contexts, said system comprising:
-
a system security manager coupled to a multithreaded application environment; means for instantiating at least one thread for an execution of content, each thread having at least one content context; means for associating each content context with a content loader for loading said each context for execution; means for associating the loader with one of a security requirement and a resource requirement, wherein the requirement may vary according to said each content context; and means for dynamically managing one of a security request and a resource request for each thread, coupled to said means for associating. - View Dependent Claims (17, 18, 19, 20, 21, 22, 23, 24, 25, 26, 27, 28, 29, 30)
-
Specification