×

Methods to generate security profile for restricting resources used by a program based on entitlements of the program

  • US 8,473,961 B2
  • Filed: 01/14/2011
  • Issued: 06/25/2013
  • Est. Priority Date: 01/14/2011
  • Status: Active Grant
First Claim
Patent Images

1. A computer-implemented method for dynamically compiling a security profile for a program, the method comprising:

  • in response to a request for launching a program, determining, by a launch module executed by a processor, a list of one or more application frameworks to be accessed by the program during execution of the program;

    determining, by a helper module executed by the processor, zero or more entitlements representing one or more resources entitled by the program during the execution;

    determining a set of one or more rules associated with at least one of the application frameworks based on the entitlements of the program, the set of one or more rules specifying one or more of resources associated with the at least one application framework, the at least one application framework providing an operating environment for the program; and

    dynamically compiling, by a profile compiler, a security profile for the program based on the set of one or more rules associated with the at least one application framework, wherein the compiled security profile is used to restrict the program from accessing at least one resource of the at least one application frameworks during the execution of the program.

View all claims
  • 1 Assignment
Timeline View
Assignment View
    ×
    ×