公开(公告)号：GB2365561B

公开(公告)日：2004-06-16

申请号：GB0030228

申请日：2000-12-12

Applicant: IBM

Inventor： GUSKI RICHARD H ,  DILLENBERGER DONNA N ,  FARRELL WALTER B ,  HERZBERG AMIR ,  KOVED LAWRENCE ,  NADALIN ANTHONY J ,  RELLER DUANE F ,  SHIN JOHN H ,  SHMUELI ANAT S ,  SZCZYGIELSKI THOMAS J ,  THOMPSON JOHN M ,  WILLIAMS JOSEPH A

IPC: G06F1/00 ,  G06F21/51 ,  G06F21/53 ,  G06F21/54

公开(公告)号：GB2365561A

公开(公告)日：2002-02-20

申请号：GB0030228

申请日：2000-12-12

Applicant: IBM

Inventor： GUSKI RICHARD H ,  DILLENBERGER DONNA N ,  FARRELL WALTER B ,  HERZBERG AMIR ,  KOVED LAWRENCE ,  NADALIN ANTHONY J ,  RELLER DUANE F ,  SHIN JOHN H ,  SHMUELI ANAT S ,  SZCZYGIELSKI THOMAS J ,  THOMPSON JOHN M ,  WILLIAMS JOSEPH A

IPC: G06F1/00 ,  G06F21/51 ,  G06F21/53 ,  G06F21/54

Abstract: In a multi-user application environment with Java, both codesource access checking and verification of the user who is executing code are employed for access checking. An end user uses a Web browser to access a Web server. An execution thread is established for an end user. The HTTP page and function requested by the user cause the Web application server to invoke a Java Virtual Machine (JVM) which in turn invokes a requested Java servlet. When the Secure Class Loader loads a Java class into the JVM, the code base Uniform URL and the Digital Certificate that was used to sign the class are used by the Secure Class Loader to create the codesource Java object. The JVM includes a Java Security Manager (JSM) class that invokes classes that invoke an underlying system security manager. Conditional access checking includes the capability to control access to resources based on the user and on the Java servlet classes being executed. If the codesource indicated by a Conditional Access List matches the codesource specified in the profile, the system security manager will allow access.