Information security – Prevention of unauthorized use of data including prevention... – Access control
Reexamination Certificate
2008-05-28
2010-10-12
Orgad, Edan (Department: 2439)
Information security
Prevention of unauthorized use of data including prevention...
Access control
C726S021000, C718S001000, C718S100000
Reexamination Certificate
active
07814561
ABSTRACT:
A system and method to manage device access in a software partition are provided. The illustrative embodiments provide a mechanism for exporting resources/devices from an administrator partition to a software partition in its purview. A trusted device list data structure is provided that identifies which devices are permitted to be exported into a software partition from an administrative partition. This trusted device list data structure also identifies which of the devices in the list of devices should be exported by default when exporting devices to a software partition, i.e. if no overrides are specified. In addition, a user-specifiable mechanism to override the entries in the trusted device list data structure is provided. For security purposes, this mechanism may not be used to export devices not listed in the trusted device list data structure. The mechanism may also be used to prevent the exporting of devices which are exported by default.
REFERENCES:
patent: 4660144 (1987-04-01), Walsh
patent: 4845624 (1989-07-01), Clayton et al.
patent: H1894 (2000-10-01), Fletcher et al.
patent: 6634019 (2003-10-01), Rice et al.
patent: 6973560 (2005-12-01), Rice et al.
patent: 7085933 (2006-08-01), Challener et al.
patent: 7299468 (2007-11-01), Casey et al.
patent: 7356818 (2008-04-01), Carollo et al.
patent: 7415582 (2008-08-01), Miki et al.
patent: 7567567 (2009-07-01), Muller et al.
patent: 2002/0108074 (2002-08-01), Shimooka et al.
patent: 2003/0229802 (2003-12-01), Challener et al.
patent: 2004/0221290 (2004-11-01), Casey et al.
patent: 2004/0267866 (2004-12-01), Carollo et al.
patent: 2005/0120242 (2005-06-01), Mayer et al.
patent: 2006/0025985 (2006-02-01), Vinberg et al.
patent: 2006/0117130 (2006-06-01), Tsushima et al.
patent: 2006/0221832 (2006-10-01), Muller et al.
patent: 2006/0288345 (2006-12-01), Rice et al.
patent: 2006/0294518 (2006-12-01), Richmond et al.
patent: 2007/0006218 (2007-01-01), Vinberg et al.
patent: 2007/0038819 (2007-02-01), Miki et al.
patent: 2007/0128899 (2007-06-01), Mayer
“A Taste of Computer Security”, http://www.kernelthread.com/publications/security/solaris.html, 7 pages, Feb. 2006.
“System Administration Guide: Solaris Containers-Resource Management and Solaris Zones, Using the zonecfg Command to Modify a Zone Configuration”, Sun Microsystems, Inc., http://docs.sun.com/app/docs/817-1592/6mhahuoos?a=view, 4 pages, Feb. 2006.
“System Administration Guide: Security Services, How to Change Which Devices Can Be Allocated”, Sun Microsystems, Inc., http://docs.sun.com/app/docs/doc/816-4557/6maosrjdf?a=view, 2 pages, Feb. 2006.
“System Administration Guide: Security Services, Forcibly Allocating a Device”, Sun Microsystems, Inc., http://docs.sun.com/app/docs/doc/816-4557/6maosrjdd?a=view, 2 pages, Feb. 2006.
“System Administration Guide: Security Services, Forcibly Deallocating a Device”, Sun Microsystems, Inc., http://docs.sun.com/app/docs/816-4557/6maosrjde?a=view, 2 pages, Feb. 2006.
“BSD Jail as a Lightweight VM”, http:// www.softpanorama.org/VM/jails—as—lightweight—vm.shtml, 15 pages, Feb. 2006.
“Solaris Zones”, http://www.softpanorama.org/Solaris/zones.shtml; 19 pages, Feb. 2006.
Kamp et al., “Building Systems to be Shared Securely”, ACM Queue, vol. 2, No. 5, Jul./Aug. 2004, http://www.acmqueue.com/modules.php?name=Content&pa=showpage&pid=170, 4 pages.
Fried Eric P.
Ganesh Perinkulam I.
Jain Vinit
Russell Lance W.
Vishwanathan Srikanth
Baca Matthew W.
Holder Bradley
International Business Machines - Corporation
Lammes Francis
Orgad Edan
LandOfFree
Managing device access in a software partition does not yet have a rating. At this time, there are no reviews or comments for this patent.
If you have personal experience with Managing device access in a software partition, we encourage you to share that experience with our LandOfFree.com community. Your opinion is very important and Managing device access in a software partition will most certainly appreciate the feedback.
Profile ID: LFUS-PAI-O-4217583