Some content of this application is unavailable at the moment.
If this situation persist, please contact us atFeedback&Contact
1. (WO2014209416) PROCESS AUTHENTICATION AND RESOURCE PERMISSIONS
Latest bibliographic data on file with the International Bureau   

Pub. No.: WO/2014/209416 International Application No.: PCT/US2013/061080
Publication Date: 31.12.2014 International Filing Date: 21.09.2013
IPC:
G06F 21/51 (2013.01) ,G06F 21/53 (2013.01)
G PHYSICS
06
COMPUTING; CALCULATING; COUNTING
F
ELECTRIC DIGITAL DATA PROCESSING
21
Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
50
Monitoring users, programs or devices to maintain the integrity of platforms, e.g. of processors, firmware or operating systems
51
at application loading time, e.g. accepting, rejecting, starting or inhibiting executable software based on integrity or source reliability
G PHYSICS
06
COMPUTING; CALCULATING; COUNTING
F
ELECTRIC DIGITAL DATA PROCESSING
21
Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
50
Monitoring users, programs or devices to maintain the integrity of platforms, e.g. of processors, firmware or operating systems
52
during program execution, e.g. stack integrity, buffer overflow or preventing unwanted data erasure
53
by executing in a restricted environment, e.g. sandbox or secure virtual machine
Applicants:
MICROSOFT TECHNOLOGY LICENSING, LLC [US/US]; One Microsoft Way Redmond, WA 98052, US
Inventors:
AGARWAL, Vishal; US
GOTTUMUKKALA, Sunil P.; US
KISHAN, Arun U.; US
MCPHERSON, Dave M.; US
ANDES, Jonathan M.; US
SRIDHARAN, Giridharan; US
KINSHUMANN, Kinshuman; US
DAMIANO, Adam; US
KHAN, Salahuddin J.; US
KANNAN, Gopinathan; US
Priority Data:
13/925,70324.06.2013US
Title (EN) PROCESS AUTHENTICATION AND RESOURCE PERMISSIONS
(FR) AUTHENTIFICATION DE PROCESSUS ET AUTORISATIONS DE RESSOURCE
Abstract:
(EN) The techniques and systems described herein present various implementations of a model for authenticating processes for execution and specifying and enforcing permission restrictions on system resources for processes and users. In some implementations, a binary file for an application, program, or process may be augmented to include a digital signature encrypted with a key such that an operating system may subsequently authenticate the digital signature. Once the binary file has been authenticated, the operating system may create a process and tag the process with metadata indicating the type of permissions that are allowed for the process. The metadata may correspond to a particular access level for specifying resource permissions.
(FR) La présente invention concerne des techniques et des systèmes qui présentent différentes mises en œuvre d'un modèle pour authentifier des processus à exécuter et pour spécifier et exécuter des limitations d'autorisation sur des ressources de système pour des processus et des utilisateurs. Dans certaines mises en œuvre, un fichier binaire pour une application, un programme ou un processus peut être augmenté pour inclure une signature numérique chiffrée avec une clé de telle sorte qu'un système d'exploitation peut authentifier par la suite la signature numérique. Une fois que le fichier binaire a été authentifié, le système d'exploitation peut créer un processus et étiqueter le processus avec des métadonnées indiquant le type d'autorisations qui sont autorisées pour le processus. Les métadonnées peuvent correspondre à un niveau d'accès particulier pour spécifier des autorisations de ressource.
front page image
Designated States: AE, AG, AL, AM, AO, AT, AU, AZ, BA, BB, BG, BH, BN, BR, BW, BY, BZ, CA, CH, CL, CN, CO, CR, CU, CZ, DE, DK, DM, DO, DZ, EC, EE, EG, ES, FI, GB, GD, GE, GH, GM, GT, HN, HR, HU, ID, IL, IN, IS, JP, KE, KG, KN, KP, KR, KZ, LA, LC, LK, LR, LS, LT, LU, LY, MA, MD, ME, MG, MK, MN, MW, MX, MY, MZ, NA, NG, NI, NO, NZ, OM, PA, PE, PG, PH, PL, PT, QA, RO, RS, RU, RW, SA, SC, SD, SE, SG, SK, SL, SM, ST, SV, SY, TH, TJ, TM, TN, TR, TT, TZ, UA, UG, US, UZ, VC, VN, ZA, ZM, ZW
African Regional Intellectual Property Organization (ARIPO) (BW, GH, GM, KE, LR, LS, MW, MZ, NA, RW, SD, SL, SZ, TZ, UG, ZM, ZW)
Eurasian Patent Office (AM, AZ, BY, KG, KZ, RU, TJ, TM)
European Patent Office (EPO) (AL, AT, BE, BG, CH, CY, CZ, DE, DK, EE, ES, FI, FR, GB, GR, HR, HU, IE, IS, IT, LT, LU, LV, MC, MK, MT, NL, NO, PL, PT, RO, RS, SE, SI, SK, SM, TR)
African Intellectual Property Organization (BF, BJ, CF, CG, CI, CM, GA, GN, GQ, GW, KM, ML, MR, NE, SN, TD, TG)
Publication Language: English (EN)
Filing Language: English (EN)