Patent · US Active

Managing privilege delegation on a computer device

US12135813B2 · kind B2 · utility

0Cited by

9References

20Claims

0Family size

Assignee

Avecto Limited · GB

Inventors

John Goodridge · Grafton, GB
Georgina Shippey · Manchester, GB

Key dates

Filing date	Oct 9, 2023
Grant date	Nov 5, 2024
Priority date	—
Expiry date	Oct 9, 2043

Classification

Technology area (CPC G)Physics
CPC primaryG06F21/604
WIPO fieldComputer technology
WIPO sectorElectrical engineering

Abstract

A computer device for managing privilege delegation to control creation of processes thereon is described. Creation of a process on a computer device is requested according to first privileges. An agent, cooperating with an operating system of the computer device, intercepts the request. The agent determines whether to create the process according to second privileges, different from the first privileges and if permitted, cause the process to be created accordingly. The agent hooks a query provided by the operating system to identify whether a control service is enabled. The agent enquires of the operating system whether to create the process according to the second privileges whereupon the hooked query is invoked. The agent confirms to the operating system that the control service is enabled, such that checks by the operating system are performed as if the operating system were enabled.

Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.