Data processing: software development – installation – and managem – Software program development tool – Translation of code
Reexamination Certificate
2007-01-02
2007-01-02
Steelman, Mary (Department: 2191)
Data processing: software development, installation, and managem
Software program development tool
Translation of code
C711S152000, C718S001000
Reexamination Certificate
active
10175553
ABSTRACT:
A process23runs directly on a host operating system22, until the process23attempts an operation which can affect security of the host operating system22(such as loading a kernel module or using system privileges). A guest operating system25is then provided running as a virtual machine session within a compartment24of the host operating system22and running of the process23continues using the guest operating system. Operations of the process23which can affect security of the host operating system22are instead performed on the guest operating system25, giving greater security. The guest operating system25is only invoked selectively, leading to greater overall efficiency.
REFERENCES:
patent: 4799156 (1989-01-01), Shavit et al.
patent: 4926476 (1990-05-01), Covey
patent: 5029206 (1991-07-01), Marino et al.
patent: 5032979 (1991-07-01), Hecht et al.
patent: 5038281 (1991-08-01), Peters
patent: 5144660 (1992-09-01), Rose
patent: 5359659 (1994-10-01), Rosenthal
patent: 5361359 (1994-11-01), Tajalli et al.
patent: 5404532 (1995-04-01), Allen et al.
patent: 5421006 (1995-05-01), Jablon et al.
patent: 5440723 (1995-08-01), Arnold et al.
patent: 5444850 (1995-08-01), Chang
patent: 5473692 (1995-12-01), Davis
patent: 5504814 (1996-04-01), Miyahara
patent: 5530758 (1996-06-01), Marino et al.
patent: 5572590 (1996-11-01), Chess
patent: 5619571 (1997-04-01), Sandstrom et al.
patent: 5680547 (1997-10-01), Chang
patent: 5692124 (1997-11-01), Holden et al.
patent: 5694590 (1997-12-01), Thuraisingham et al.
patent: 5787175 (1998-07-01), Carter
patent: 5809145 (1998-09-01), Slik et al.
patent: 5815665 (1998-09-01), Teper et al.
patent: 5841869 (1998-11-01), Merkling et al.
patent: 5844986 (1998-12-01), Davis
patent: 5845068 (1998-12-01), Winiger
patent: 5867646 (1999-02-01), Benson et al.
patent: 5889989 (1999-03-01), Robertazzi et al.
patent: 5903732 (1999-05-01), Reed et al.
patent: 5917360 (1999-06-01), Yasutake
patent: 5922074 (1999-07-01), Richard et al.
patent: 5933498 (1999-08-01), Schneck et al.
patent: 5960177 (1999-09-01), Tanno
patent: 5987608 (1999-11-01), Roskind
patent: 6006332 (1999-12-01), Rabne et al.
patent: 6012080 (2000-01-01), Ozden et al.
patent: 6023765 (2000-02-01), Kuhn
patent: 6067559 (2000-05-01), Allard et al.
patent: 6078948 (2000-06-01), Podgorny et al.
patent: 6081830 (2000-06-01), Schindler
patent: 6081894 (2000-06-01), Mann
patent: 6100738 (2000-08-01), Illegems
patent: 6125114 (2000-09-01), Blanc et al.
patent: 6138239 (2000-10-01), Veil
patent: 6211583 (2001-04-01), Humphreys
patent: 6272631 (2001-08-01), Thomlinson et al.
patent: 6275848 (2001-08-01), Arnold
patent: 6289462 (2001-09-01), McNabb et al.
patent: 6292900 (2001-09-01), Ngo et al.
patent: 6327652 (2001-12-01), England et al.
patent: 6330670 (2001-12-01), England et al.
patent: 6334118 (2001-12-01), Benson
patent: 6367012 (2002-04-01), Atkinson et al.
patent: 6393412 (2002-05-01), Deep
patent: 6477702 (2002-11-01), Yellin et al.
patent: 6505300 (2003-01-01), Chan et al.
patent: 6513156 (2003-01-01), Bak et al.
patent: 6609248 (2003-08-01), Srivastava et al.
patent: 6671716 (2003-12-01), Diedrechsen et al.
patent: 6681304 (2004-01-01), Vogt et al.
patent: 6732276 (2004-05-01), Cofler et al.
patent: 6751680 (2004-06-01), Langerman et al.
patent: 6757824 (2004-06-01), England
patent: 6757830 (2004-06-01), Tarbotton et al.
patent: 6775779 (2004-08-01), England et al.
patent: 6892307 (2005-05-01), Wood et al.
patent: 6931545 (2005-08-01), Ta et al.
patent: 6948069 (2005-09-01), Teppler
patent: 6965816 (2005-11-01), Walker
patent: 2001/0037450 (2001-11-01), Metlitski et al.
patent: 2002/0012432 (2002-01-01), England et al.
patent: 2002/0023212 (2002-02-01), Proudler
patent: 2002/0042874 (2002-04-01), Arora
patent: 2002/0069354 (2002-06-01), Fallon et al.
patent: 2002/0184486 (2002-12-01), Kerschenbaum et al.
patent: 2002/0184520 (2002-12-01), Bush et al.
patent: 2003/0009685 (2003-01-01), Choo et al.
patent: 2003/0014466 (2003-01-01), Berger et al.
patent: 2004/0045019 (2004-03-01), Bracha et al.
patent: 2004/0073617 (2004-04-01), Milliken et al.
patent: 2004/0148514 (2004-07-01), Fee et al.
patent: 2005/0256799 (2005-11-01), Warsaw et al.
patent: 2 187 855 (1997-06-01), None
patent: 0 421 409 (1991-04-01), None
patent: 0 510 244 (1992-10-01), None
patent: 0 580 350 (1994-01-01), None
patent: 0 825 511 (1998-02-01), None
patent: 0 849 657 (1998-06-01), None
patent: 0 849 680 (1998-06-01), None
patent: 0 465 016 (1998-12-01), None
patent: 0 893 751 (1999-01-01), None
patent: 0 895 148 (1999-02-01), None
patent: 0 926 605 (1999-06-01), None
patent: 0 992 958 (2000-04-01), None
patent: 1 030 237 (2000-08-01), None
patent: 1 049 036 (2000-11-01), None
patent: 1 055 990 (2000-11-01), None
patent: 1 056 010 (2000-11-01), None
patent: 1 076 279 (2001-02-01), None
patent: 1 107 137 (2001-06-01), None
patent: 2 317 476 (1998-03-01), None
patent: 2 336 918 (1999-11-01), None
patent: 0020441.2 (2000-08-01), None
patent: 2 353 885 (2001-03-01), None
patent: 2 361 153 (2001-10-01), None
patent: 93/25024 (1993-12-01), None
patent: 94/11967 (1994-05-01), None
patent: 95/24696 (1995-09-01), None
patent: 95/27249 (1995-10-01), None
patent: 97/29416 (1997-08-01), None
patent: 98/15082 (1998-04-01), None
patent: 98/26529 (1998-06-01), None
patent: 98/36517 (1998-08-01), None
patent: 98/40809 (1998-09-01), None
patent: 98/44402 (1998-10-01), None
patent: 98/45778 (1998-10-01), None
patent: 00/19324 (2000-04-01), None
patent: 00/31644 (2000-06-01), None
patent: 00/48062 (2000-08-01), None
patent: 00/48063 (2000-08-01), None
patent: 00/52900 (2000-09-01), None
patent: 00/54125 (2000-09-01), None
patent: 00/54126 (2000-09-01), None
patent: 00/58859 (2000-10-01), None
patent: 00/73880 (2000-12-01), None
patent: 00/73904 (2000-12-01), None
patent: 00/73913 (2000-12-01), None
patent: 01/09781 (2001-02-01), None
patent: 01/13198 (2001-02-01), None
patent: 01/23980 (2001-04-01), None
patent: 01/27722 (2001-04-01), None
patent: 01/65334 (2001-09-01), None
patent: 01/65366 (2001-09-01), None
Barkley, John; Cinotta, Anthony; Managing Role/Permission Relationships Using Object Access Types, p. 73-80, Jul. 1998 ACM, retrieved Jun. 25, 2005.
Grimm, Robert; Bershad, Brian N; “Separating Access Control Policy, Enforcement, and Functionality in Extensible Systems”, p. 36-70, Feb. 2001, ACM, retrieved Jun. 25, 2005.
Jaeger, Trent; Prakash, Atul; “Requirements of Role-Based Access Control for Collaborative Systems”, p. 53-64, Dec. 1996, ACM, retrieved Jun. 25, 2005.
Zhang, X. Nick; “Secure Code Distribution”, p. 76-79, IEEE, retrieved Jun. 25, 2005.
Anderson, R., et al., “Tamper Resistance—a Cautionary Note,”ISENIX Association, Second USENIX Workshop on Electronic Commerce, pp. 1-11 (Nov. 18-21, 1996).
Berger, J.L., et al., “Compartmented Mode Workstation: Prototype Highlights,”IEEE Transactions on Software Engineering, vol. 16, No. 6 (Jun. 1990).
Chaum, D., “Security without Identification: Transaction Systems to Make Big Brother Obsolete,”Communications of the ACM, vol. 28, No. 10, pp. 1030-1044 (Oct. 1985).
Choo, T.H., et al., “Trusted Linux: A Secure Platform for Hosting Compartmented Applications,”Enterprise Solutions, pp. 1-14 (Nov./Dec. 2001).
Dalton, C., et al., “An operating system approach to securing e-services,”Communications of the ACM, vol. 44, Issue 2 (Feb. 2001).
Dalton, C., et al., “Applying Military Grade Security to the Internet,”Computer Networks and ISND Systems, vol. 29, pp. 1799-1808 (1997).
Dalton, C.I., et al., “Design of secure UNIX,” Elsevier Information Security Report, (Feb. 1992).
Hallyn, S.E., et al., “Domain and Type Enforcement for Linux,” Internet: <http://www.usenix.org/publications/library/proceedings/als2000/full—papers/hallyn/hallyn—html/>. (Retrieved Apr. 24, 2002).
Loscocco, P., et al., “Integrating Flexible Support for Security Policies into the Linux Operating System,” Internet: <www.nsa.gov/selinux>
Dalton Christopher I.
Griffin Jonathan
Ladas & Parry LLP
Steelman Mary
LandOfFree
Performing secure and insecure computing operations in a... does not yet have a rating. At this time, there are no reviews or comments for this patent.
If you have personal experience with Performing secure and insecure computing operations in a..., we encourage you to share that experience with our LandOfFree.com community. Your opinion is very important and Performing secure and insecure computing operations in a... will most certainly appreciate the feedback.
Profile ID: LFUS-PAI-O-3742279