首页>
外国专利>
MECHANISM FOR ENFORCING USER-SPECIFIC AND DEVICE-SPECIFIC SECURITY CONSTRAINTS IN AN ISOLATED EXECUTION ENVIRONMENT ON A DEVICE
MECHANISM FOR ENFORCING USER-SPECIFIC AND DEVICE-SPECIFIC SECURITY CONSTRAINTS IN AN ISOLATED EXECUTION ENVIRONMENT ON A DEVICE
展开▼
机译:在设备的隔离执行环境中强制执行用户特定和设备特定的安全性约束的机制
展开▼
页面导航
摘要
著录项
相似文献
摘要
A method and system for receiving from an authenticated user, at an authorization server, via a service provider, an authorization request to perform a sensitive operation on a first device. The method also includes generating, by the authorization server and in response to receiving the authorization request, an authorization token that includes a device constraint and a binding code constraint, which includes a binding code. Additionally, the method includes transmitting the authorization token to an isolated execution environment of the first device, where the sensitive operation is not permitted on the first device unless the first device successfully performs a verification in the isolated execution environment using the authorization token. Furthermore, the method includes permitting the sensitive operation based on the verification.
展开▼