Browse Prior Art Database

USERID Security for Applications in Multi-node Vms

IP.com Disclosure Number: IPCOM000099465D
Original Publication Date: 1990-Jan-01
Included in the Prior Art Database: 2005-Mar-14
Document File: 3 page(s) / 108K

Publishing Venue

IBM

Related People

Arturi, J: AUTHOR [+3]

Abstract

This invention introduces an idea called a SECURED USERID for all users of VM systems. The invention shows how implementation of this idea also lends to location transparency savings in disk space, immediate update propagation, tight security, and minimal administrative effort. Other security-related systems can be implemented on SECURED USERIDs collected hereby. Implementation of this idea evolved into a system called EMPLINFO (Employee Information System).

This text was extracted from an ASCII text file.
This is the abbreviated version, containing approximately 52% of the total text.

USERID Security for Applications in Multi-node Vms

       This invention introduces an idea called a SECURED USERID
for all users of VM systems.  The invention shows how implementation
of this idea also lends to location transparency savings in disk
space, immediate update propagation, tight security, and minimal
administrative effort.  Other security-related systems can be
implemented on SECURED USERIDs collected hereby.  Implementation of
this idea evolved into a system called EMPLINFO (Employee Information
System).

      In a multiple userid environment, several userids may be owned
by an individual user.  Some of these userids can be shared amongst
other users (although not owned by them). A single userid should be
designated by each user, for access to privileged on-line systems and
tools.  This userid, termed here as SECURED USERID, will be that
user's reference point.  It establishes the identity of the user for
security- conscious systems.  Adding or updating of this SECURED
USERID must be done in such a manner that even the most sophisticated
of programmers are not able to tamper with the system.  Once up and
running, the system must also be self-propagating, so that it
functions with minimum operator intervention, hence reducing the
chance of human error.  The system should also allow independence to
the individual user; each user should see and update only his own
record.

      A SECURED USERID is a userid that is owned by the user and is
used only by the user.  It is the identity of the user as far as
this and other security-related systems are concerned.  This userid,
once identified by the user, can be updated on-line by the user only,
by logging on to that userid and accessing this system.

      The calling sequence in EMPLINFO system is shown in Fig. 1.
The connectivity between different types of users, server machine and
SQL/DS database is shown.

      Record access requests from all loosely coupled and remote
systems are received and delivered by a mirage-like server machine,
called Multi-node Application Data Access Controller (MADAC).  This
machine is transparent to the user, but services the user community,
allowing each user to update his...