CA2285031A1 - Network distributed system for updating locally secured objects in client machines - Google Patents

Network distributed system for updating locally secured objects in client machines Download PDF

Info

Publication number
CA2285031A1
CA2285031A1 CA002285031A CA2285031A CA2285031A1 CA 2285031 A1 CA2285031 A1 CA 2285031A1 CA 002285031 A CA002285031 A CA 002285031A CA 2285031 A CA2285031 A CA 2285031A CA 2285031 A1 CA2285031 A1 CA 2285031A1
Authority
CA
Canada
Prior art keywords
perform
intermediary
distributed system
client machines
network distributed
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Granted
Application number
CA002285031A
Other languages
French (fr)
Other versions
CA2285031C (en
Inventor
Terry S. Bahr
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
NortonLifeLock Inc
Original Assignee
Symantec Corporation
Terry S. Bahr
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Family has litigation
First worldwide family litigation filed litigation Critical https://patents.darts-ip.com/?family=25255001&utm_source=google_patent&utm_medium=platform_link&utm_campaign=public_patent_search&patent=CA2285031(A1) "Global patent litigation dataset” by Darts-ip is licensed under a Creative Commons Attribution 4.0 International License.
Application filed by Symantec Corporation, Terry S. Bahr filed Critical Symantec Corporation
Publication of CA2285031A1 publication Critical patent/CA2285031A1/en
Application granted granted Critical
Publication of CA2285031C publication Critical patent/CA2285031C/en
Anticipated expiration legal-status Critical
Expired - Fee Related legal-status Critical Current

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/10Network architectures or network communication protocols for network security for controlling access to devices or network resources
    • H04L63/102Entity profiles
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/60Protecting data
    • G06F21/62Protecting access to data via a platform, e.g. using keys or access control rules
    • G06F21/6218Protecting access to data via a platform, e.g. using keys or access control rules to a system of files or objects, e.g. local or distributed file system or database
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F2221/00Indexing scheme relating to security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F2221/21Indexing scheme relating to G06F21/00 and subgroups addressing additional information or applications relating to security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F2221/2141Access rights, e.g. capability lists, access control lists, access tables, access matrices

Abstract

Technique for allowing real time centralized administration of protected objects on client computer systems. When a user logs on to a centrally administered clients machine on a computer network, an intermediary object modification process starts in the background with administrator account permissions. Thereafter, whenever the administrative agent on the client computer system unsucessfully attempts to perform an operation on a protected object for which the logon user lacks sufficient permission to perform (218, 220), the agent passes a request (226, 312) to the intermediary process to perform the operation. The intermediary process is able to perform the desired operation because it has sufficient permission to do so even if the administrative agent does not.
CA002285031A 1997-03-31 1998-03-11 Network distributed system for updating locally secured objects in client machines Expired - Fee Related CA2285031C (en)

Applications Claiming Priority (3)

Application Number Priority Date Filing Date Title
US08/829,609 1997-03-31
US08/829,609 US6029246A (en) 1997-03-31 1997-03-31 Network distributed system for updating locally secured objects in client machines
PCT/US1998/004656 WO1998044403A1 (en) 1997-03-31 1998-03-11 Network distributed system for updating locally secured objects in client machines

Publications (2)

Publication Number Publication Date
CA2285031A1 true CA2285031A1 (en) 1998-10-08
CA2285031C CA2285031C (en) 2008-05-20

Family

ID=25255001

Family Applications (1)

Application Number Title Priority Date Filing Date
CA002285031A Expired - Fee Related CA2285031C (en) 1997-03-31 1998-03-11 Network distributed system for updating locally secured objects in client machines

Country Status (5)

Country Link
US (1) US6029246A (en)
EP (1) EP1004069B1 (en)
CA (1) CA2285031C (en)
DE (1) DE69840409D1 (en)
WO (1) WO1998044403A1 (en)

Families Citing this family (40)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US6167523A (en) * 1997-05-05 2000-12-26 Intel Corporation Method and apparatus for forms data validation and processing control
US6389543B1 (en) * 1998-08-31 2002-05-14 International Business Machines Corporation System and method for command routing and execution in a multiprocessing system
US6292798B1 (en) * 1998-09-09 2001-09-18 International Business Machines Corporation Method and system for controlling access to data resources and protecting computing system resources from unauthorized access
US6289458B1 (en) * 1998-09-21 2001-09-11 Microsoft Corporation Per property access control mechanism
US7673323B1 (en) 1998-10-28 2010-03-02 Bea Systems, Inc. System and method for maintaining security in a distributed computer network
US6158010A (en) 1998-10-28 2000-12-05 Crosslogix, Inc. System and method for maintaining security in a distributed computer network
US6477573B1 (en) * 1999-04-09 2002-11-05 Sony Corporation System and method for performing a hierarchical remote query in an electronic network
US6408326B1 (en) * 1999-04-20 2002-06-18 Microsoft Corporation Method and system for applying a policy to binary data
US6823376B1 (en) * 1999-04-26 2004-11-23 International Business Machines Corporation Method and system for capturing and storing system changes for application to multiple users and systems in a heterogeneous server environment
US7246374B1 (en) * 2000-03-13 2007-07-17 Microsoft Corporation Enhancing computer system security via multiple user desktops
US6820136B1 (en) * 2000-05-17 2004-11-16 Unisys Corporation System and method for replicating monitored registry keys
EP1168163A1 (en) * 2000-06-19 2002-01-02 Hewlett-Packard Company, A Delaware Corporation Process for installing a software package in a client computer
US7610588B1 (en) * 2000-10-27 2009-10-27 Global 360, Inc. Distributed application management software
AU2002230508A1 (en) * 2000-11-29 2002-06-11 Entropia, Inc. System and method for securing an application for execution on a computer
US6981144B2 (en) * 2001-04-06 2005-12-27 International Business Machines Corporation System console device authentication in a network environment
US20020165945A1 (en) * 2001-05-07 2002-11-07 Randy Buswell Method and system for registry flying in a network
US7350226B2 (en) 2001-12-13 2008-03-25 Bea Systems, Inc. System and method for analyzing security policies in a distributed computer network
US7149751B1 (en) 2002-03-15 2006-12-12 Novell, Inc. System and method for distributing selected objects from a source database to a destination database
US7203738B1 (en) * 2002-03-15 2007-04-10 Novell, Inc. System and method for distributing application objects
US7430590B1 (en) 2002-04-17 2008-09-30 Everdream Corporation Method and system to manage services for multiple managed computer systems
US7103914B2 (en) * 2002-06-17 2006-09-05 Bae Systems Information Technology Llc Trusted computer system
US7735127B1 (en) * 2002-11-26 2010-06-08 Dell Marketing Usa, L.P. Method and system for communicating with a managed system located behind a firewall
US20050257245A1 (en) * 2003-10-10 2005-11-17 Bea Systems, Inc. Distributed security system with dynamic roles
US7644432B2 (en) * 2003-10-10 2010-01-05 Bea Systems, Inc. Policy inheritance through nested groups
US20050102535A1 (en) 2003-10-10 2005-05-12 Bea Systems, Inc. Distributed security system with security service providers
US9178784B2 (en) * 2004-04-15 2015-11-03 Raytheon Company System and method for cluster management based on HPC architecture
US8190714B2 (en) * 2004-04-15 2012-05-29 Raytheon Company System and method for computer cluster virtualization using dynamic boot images and virtual disk
US8336040B2 (en) 2004-04-15 2012-12-18 Raytheon Company System and method for topology-aware job scheduling and backfilling in an HPC environment
US8335909B2 (en) 2004-04-15 2012-12-18 Raytheon Company Coupling processors to each other for high performance computing (HPC)
US8244882B2 (en) * 2004-11-17 2012-08-14 Raytheon Company On-demand instantiation in a high-performance computing (HPC) system
US7433931B2 (en) * 2004-11-17 2008-10-07 Raytheon Company Scheduling in a high-performance computing (HPC) system
US8364845B2 (en) 2005-05-19 2013-01-29 Wyse Technology Inc. Method and system for thin client configuration
US8032657B2 (en) * 2005-09-12 2011-10-04 Microsoft Corporation Preservation of type information between a client and a server
JP4812559B2 (en) 2006-08-21 2011-11-09 株式会社リコー Network management apparatus, network management method and program
US20100218235A1 (en) * 2009-02-25 2010-08-26 Ganot Asaf Method and system for temporarily removing group policy restrictions remotely
JP5335622B2 (en) * 2009-08-31 2013-11-06 レノボ・シンガポール・プライベート・リミテッド Computer program that manages the configuration information database
US8799355B2 (en) * 2009-11-03 2014-08-05 Microsoft Corporation Client server application manager
US9459990B2 (en) * 2012-03-27 2016-10-04 International Business Machines Corporation Automatic and transparent application logging
US10853091B2 (en) 2017-07-18 2020-12-01 Citrix Systems, Inc. Cloud to on-premises windows registry settings
CN113592940A (en) * 2021-07-28 2021-11-02 北京地平线信息技术有限公司 Method and device for determining position of target object based on image

Family Cites Families (11)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US5649099A (en) * 1993-06-04 1997-07-15 Xerox Corporation Method for delegating access rights through executable access control program without delegating access rights not in a specification to any intermediary nor comprising server security
US5664098A (en) * 1993-09-28 1997-09-02 Bull Hn Information Systems Inc. Dual decor capability for a host system which runs emulated application programs to enable direct access to host facilities for executing emulated system operations
US5623601A (en) * 1994-11-18 1997-04-22 Milkway Networks Corporation Apparatus and method for providing a secure gateway for communication and data exchanges between networks
US5677851A (en) * 1994-12-15 1997-10-14 Novell, Inc. Method and apparatus to secure digital directory object changes
US5608903A (en) * 1994-12-15 1997-03-04 Novell, Inc. Method and apparatus for moving subtrees in a distributed network directory
US5729689A (en) * 1995-04-25 1998-03-17 Microsoft Corporation Network naming services proxy agent
US5675782A (en) * 1995-06-06 1997-10-07 Microsoft Corporation Controlling access to objects on multiple operating systems
US5802367A (en) * 1995-07-07 1998-09-01 Microsoft Corporation Method and system for transparently executing code using a surrogate process
US5742759A (en) * 1995-08-18 1998-04-21 Sun Microsystems, Inc. Method and system for facilitating access control to system resources in a distributed computer system
US5729734A (en) * 1995-11-03 1998-03-17 Apple Computer, Inc. File privilege administration apparatus and methods
US5727145A (en) * 1996-06-26 1998-03-10 Sun Microsystems, Inc. Mechanism for locating objects in a secure fashion

Also Published As

Publication number Publication date
CA2285031C (en) 2008-05-20
EP1004069A4 (en) 2005-08-03
DE69840409D1 (en) 2009-02-12
EP1004069B1 (en) 2008-12-31
US6029246A (en) 2000-02-22
EP1004069A1 (en) 2000-05-31
WO1998044403A1 (en) 1998-10-08

Similar Documents

Publication Publication Date Title
CA2285031A1 (en) Network distributed system for updating locally secured objects in client machines
EP0816968A3 (en) Mechanism for locating objects in a secure fashion
EP0813326A3 (en) Apparatus and method for predicted response generation
CA2207849A1 (en) Method and apparatus for providing simple, secure management of remote servers
CA2377998A1 (en) Computer pointing device having theme identification means
MY163665A (en) Delegated administration of a hosted resource
WO1998058473A3 (en) Network security and integration method and system
CA2218187A1 (en) Differencing communication system
EP0325776A3 (en) A trusted path mechanism for an operating system
CA2346028A1 (en) Event management in a system with separate application and graphical user interface processing
CA2182323A1 (en) Internal Mail Distribution System
GB9920881D0 (en) A data processing system and development method
WO1998052121A3 (en) Method and system for managing computer systems
CA2137065A1 (en) Method of Protecting Electronically Published Materials Using Cryptographic Protocols
EP0782111A3 (en) Method and apparatus for securely authorizing performance of a function in a distributed system such as a postage meter
CA2182791A1 (en) Method and Apparatus to Secure Distributed Digital Directory Object Changes
EP0833260A3 (en) Computer system with network interface
CA2263415A1 (en) System and method for controlling a postage metering system using data required for printing
EP1061432A3 (en) Distributed authentication mechanisms for handling diverse authentication systems in an enterprise computer system
WO1999018534A3 (en) System for balancing loads among network servers
WO2001025914A3 (en) Operations architectures for netcentric computing systems
CA2257692A1 (en) Use of polymorphic package files to update software components
EP1923814A3 (en) Systems and methods for secure transaction management and electronic rights protection
CA2238603A1 (en) Communications network having management system architecture supporting reuse
CA2292327A1 (en) Systems, methods and computer program products for dynamic placement of web content tailoring

Legal Events

Date Code Title Description
EEER Examination request
MKLA Lapsed

Effective date: 20140311