首页>
外国专利>
Establishing isolation between content hosting services executing on common support server
Establishing isolation between content hosting services executing on common support server
展开▼
机译:在公共支持服务器上执行的内容托管服务之间建立隔离
展开▼
页面导航
摘要
著录项
相似文献
摘要
Embodiments relate to systems and methods for establishing isolation between content hosting services executing on a common support server. In aspects, a server virtualization platform can operate on a common physical support server to instantiate, configure, and operate a set of virtual servers. The set of virtual servers can, for instance, be used to run independent Web sites or other locations or services. The data available to each process on each virtual server can be encoded using an SELinux™ label including an MCS (multi-category security) category or categories uniquely identifying that process. Isolation of the potentially sensitive data for multiple Web sites and/or their content hosted on a common physical server can therefore be enforced, since each process operating on each virtual server is restricted to only access and manipulate data objects or other entities having matching MCS category information identified on that baremetal support server.
展开▼