Methods and systems for accessing, by application programs, resources provided by an operating system
First Claim
Patent Images
1. A method for accessing, by application programs, resources provided by an operating system, the method comprising:
- (a) receiving, by a process executing in an isolation environment comprising an application isolation layer and a user isolation layer, a request for a resource and an identifier associated with the resource;
(b) determining, by consulting a rules engine in which possible rules comprise the actions of redirect, ignore, and isolate, that the appropriate action is to redirect the request and identifier associated with the resource to a location outside the isolation environment;
(c) redirecting the request for the resource and the identifier associated with the resource to the determined location; and
(d) responding to the request for the resource using an instance of the resource residing in the determined location.
8 Assignments
0 Petitions
Accused Products
Abstract
In a method for accessing, by application programs, resources provided by an operating system, a process receives a request for a resource and an identifier associated with the resource. It is determined that the requested resource resides in a location outside the application isolation environment. The request for the resource and the identifier associated with the resource is redirected to the determined location. The request for the resource is responded to using an instance of the resource residing in the determined location.
-
Citations
99 Claims
-
1. A method for accessing, by application programs, resources provided by an operating system, the method comprising:
-
(a) receiving, by a process executing in an isolation environment comprising an application isolation layer and a user isolation layer, a request for a resource and an identifier associated with the resource; (b) determining, by consulting a rules engine in which possible rules comprise the actions of redirect, ignore, and isolate, that the appropriate action is to redirect the request and identifier associated with the resource to a location outside the isolation environment; (c) redirecting the request for the resource and the identifier associated with the resource to the determined location; and (d) responding to the request for the resource using an instance of the resource residing in the determined location. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10)
-
-
11. A method for accessing, by application programs, resources provided by an operating system, the method comprising:
-
(a) receiving a request for a resource and an identifier associated with the resource; (b) determining, by a process executing in an isolation environment comprising an application isolation layer and a user isolation layer and in consultation with a rules engine, in which possible rules comprise the actions of redirect, ignore, and isolate, that the appropriate action is to redirect the request and identifier associated with the resource to a location outside the isolation environment; (c) redirecting the request for the resource and the identifier associated with the resource to the determined location; and (d) responding to the request for the resource using an instance of the resource residing in the determined location. - View Dependent Claims (12, 13, 14, 15, 16, 17, 18)
-
-
19. A method for accessing, by application programs, resources provided by an operating system, the method comprising:
-
(a) receiving a request for a resource and an identifier associated with the resource; (b) determining, by consulting a rules engine in which possible rules comprise the actions of redirect, ignore and isolate, that the appropriate action is to redirect the request and identifier associated with the resource to a location outside an isolation environment comprising an application isolation layer and a user isolation layer; (c) redirecting, by a process executing in the isolation environment, the request for the resource and the identifier associated with the resource to the determined location; and (d) responding to the request for the resource using an instance of the resource residing in the determined location. - View Dependent Claims (20, 21, 22, 23, 24)
-
-
25. A method for accessing, by application programs, resources provided by an operating system, the method comprising:
-
(a) receiving a request for a resource and an identifier associated with the resource; (b) determining, by consulting a rules engine in which possible rules comprise the actions of redirect, ignore, and isolate, that the appropriate action is to redirect the request and identifier associated with the resource to a location outside an isolation environment comprising an application isolation layer and a user isolation layer; (c) redirecting the request for the resource and the identifier associated with the resource to the determined location; and (d) responding, by a process executing in the isolation environment, to the request for the resource using an instance of the resource residing in the determined location. - View Dependent Claims (26, 27, 28)
-
-
29. A system for accessing, by application programs, resources provided by an operating system executing on a computer processor, the system comprising:
-
a computer processor; a resource provided by an operating system executing on the computer processor; a first process, executing in an isolation environment comprising an application isolation layer and a user isolation layer, receiving a request for the resource and an identifier associated with the resource; a second process determining, by consulting a rules engine in which possible rules comprise the actions of redirect, ignore, and isolate, that the appropriate action is to redirect the request and identifier associated with the resource to a location outside the isolation environment; a third process redirecting the request for the resource and the identifier associated with the resource to the determined location; and a fourth process responding to the request for the resource using an instance of the resource residing in the determined location. - View Dependent Claims (30, 31, 32, 33, 34, 35, 36, 37, 38, 39, 40, 41, 42, 43, 44, 45, 46, 47, 48, 49, 50)
-
-
51. A system for accessing, by application programs, resources provided by an operating system executing on a computer processor, the system comprising:
-
a computer processor; a resource provided by an operating system executing on the computer processor; a first process receiving a request for the resource and an identifier associated with the resource; a second process, executing in an isolation environment comprising an application isolation layer and a user isolation layer and determining, by consulting a rules engine in which possible rules comprise the actions of redirect, ignore and isolate, that the appropriate action is to redirect the request and identifier associated with the resource to a location outside the isolation environment; a third process redirecting the request for the resource and the identifier associated with the resource to the determined location; and a fourth process responding to the request for the resource using an instance of the resource residing in the determined location. - View Dependent Claims (52, 53, 54, 55, 56, 57, 58, 59, 60, 61, 62, 63, 64, 65, 66, 67, 68)
-
-
69. A system for accessing, by application programs, resources provided by an operating system executing on a computer processor, the system comprising:
-
a computer processor; a resource provided by an operating system executing on the computer processor; a first process receiving a request for the resource and an identifier associated with the resource; a second process determining, by consulting a rules engine in which possible rules comprise the actions of redirect, ignore, and isolate, that the appropriate action is to redirect the request and identifier associated with the resource to a location outside an isolation environment comprising an application isolation layer and a user isolation layer; a third process, executing in the isolation environment and redirecting the request for the resource and the identifier associated with the resource to the determined location; and a fourth process responding to the request for the resource using an instance of the resource residing in the determined location. - View Dependent Claims (70, 71, 72, 73, 74, 75, 76, 77, 78, 79, 80, 81, 82, 83, 84)
-
-
85. A system for accessing, by application programs, resources provided by an operating system executing on a computer processor, the system comprising:
-
a computer processor; a resource provided by an operating system executing on the computer processor; a first process receiving a request for the resource and an identifier associated with the resource; a second process determining, by consulting a rules engine in which possible rules comprise the actions of redirect, ignore, and isolate, that the appropriate action is to redirect the request and identifier associated with the resource to a location outside an isolation environment comprising an application isolation layer and a user isolation layer; a third process redirecting the request for the resource and the identifier associated with the resource to the determined location; and a fourth process, executing in the application isolation environment and responding to the request for the resource using an instance of the resource residing in the determined location. - View Dependent Claims (86, 87, 88, 89, 90, 91, 92, 93, 94, 95, 96, 97, 98, 99)
-
Specification