×

Enhanced security for computer system resources with a resource access authorization control facility that creates files and provides increased granularity of resource permission

  • US 6,233,576 B1
  • Filed: 11/14/1997
  • Issued: 05/15/2001
  • Est. Priority Date: 06/09/1995
  • Status: Expired due to Term
First Claim
Patent Images

1. A method for providing increased granularity of resource access authorization control for computer resource security for operating systems in which a set of operating system permissions are defined for use in the authorization of subjects to perform operations in relation to specific resources, the method comprising:

  • creating a set of files including a set of definitions of correspondence between the defined operating system permissions and specified resource authorities for each of a plurality of different aspects of a resource, said definitions defining separate resource authorities for said different aspects and said different aspects comprising a plurality of resource aspects selected from the group comprising resource data, resource class security attributes, configuration information and other attributes, such that (wherein) particular instances of said resource aspects are characteristic of a particular computer resource;

    storing said created files for association with a resource to be protected; and

    setting subjects'"'"' authorizations for resource access for each of said resource aspects using the defined operating system permissions, thereby setting, via said defined correspondences within said created files, the authorities which said subjects have in relation to the different resource aspects at the level of granularity of the resource aspects.

View all claims
  • 2 Assignments
Timeline View
Assignment View
    ×
    ×