An evidence-based policy manager generates a permission grant set for a code assembly received from a resource location. The policy manager executes in a computer system (e.g., a Web client or server) in combination with the verification module and class loader of the run-time environment. The permission grant set generated for a code assembly is applied in the run-time call stack to help the system determine whether a given system operation by the code assembly is authorized. Both code assemblies and evidence may be received from a local origin or from a remote resource location via a network (e.g., the Internet). The policy manager may comprise execution modules for parsing a security policy specification, generating a one or more code hierarchies, evaluating membership of the received code assembly in one or more code groups, and generating a permission grant set based upon this membership evaluation.

 
Web www.patentalert.com

< Method and apparatus for internet access which bypass local central end office using digital loop carrier and permanent signal treatment procedures

< Smart card controlled internet access

> Method and system for energy management using intelligent agents over the internet

> System and method of using the public switched telephone network in providing authentication or authorization for online transactions
~ 00263