×

System and method providing multi-tier applications architecture

  • US 7,451,176 B2
  • Filed: 11/14/2005
  • Issued: 11/11/2008
  • Est. Priority Date: 06/21/2000
  • Status: Expired due to Fees
First Claim
Patent Images

1. A system that executes a network-based application, comprising:

  • a presentation component that processes a local request based at least in part on a relevant portion of application logic associated with the network-based application and utilizes an asynchronous pluggable protocol handler to map the local request;

    a mobile component that identifies and retrieves the relevant portion from a local repository and a remote server and provides for execution of the relevant portion of the network-based application that is associated with a local permission, the local repository includes at least one of a CD and floppy disk;

    a guarded component that accords access via a remote response, based at least in part on an access policy, to the mobile component to retrieve the relevant portion and provides for execution of the relevant portion of the network-based application that is associated with a remote permission, the access policy includes a local and a remote permission that facilitates secure retrieval of the relevant portion and, wherein a bypass request may be initiated by the presentation component to access remote systems directly, such that the guarded component is bypassed by the remote systems when the request is initiated;

    the mobile component and the guarded component interchangeably execute a first constituent element of the relevant portion and a remaining constituent element of the relevant portion without modification to the first constituent element and the remaining constituent element, and wherein upon installing the relevant portion in the mobile component, the system may interact with remote data locally, leverage local computing resources, and mitigate network accesses to the system;

    a data component that includes data associated with the relevant portion of application logic, the data component conveys the data to the guarded component and the presentation component interacts with the mobile component to manipulate the data supplied by the data component;

    a security component that protects local files within the system from undesired accesses;

    wherein downloaded applications run with code access permissions granted by policy on a local machine for a remote domain, such that when local applications are installed, the local applications are granted permissions based on an Universal Resource Identifier (URI) provided at installation which is local and/or remote, policy is then added to the application domain to indicate that code loaded from an application directory hierarchy is associated with domain of origin for the application, therefore permissions for that domain apply, and wherein the system adds policy such that code loaded from the application directory and children directories is associated with the remote URI, to mitigate enabling the application to load assemblies from its own directory and thus bypassing domain security; and

    a computer processor for executing the above components.

View all claims
  • 3 Assignments
Timeline View
Assignment View
    ×
    ×