Security model using restricted tokens

Assignee

• Microsoft Corporation · US

Inventors

• Gregory Jensenworth · Redmond, US
• Praerit Garg · Kirkland, US
• Michael M. Swift · Seattle, US
• Mario C. Goertzel · Kirkland, US
• Shannon J. Chan · Bellevue, US

Key dates

Classification

• Technology area (CPC G)Physics
• CPC primaryG06F2221/2149
• WIPO fieldComputer technology
• WIPO sectorElectrical engineering

Abstract

A restrict ed access token is created from an existing token, and provides less access than that token. A restricted token may be created by changing an attribute of one or more security identifiers allowing access in the parent token to a setting that denies access in the restricted token and/or removing one or more privileges from the restricted token relative to the parent token. A restricted access token also may be created by adding restricted security identifiers thereto. Once created, a process associates another process with the restricted token to launch the other process in a restricted context that is a subset of its own rights and privileges. A kernel-mode security mechanism determines whether the restricted process has access to a resource by first comparing user-based security identifiers in the restricted token and the intended type of action against a list of identifiers and actions associated with the resource. If no restricted security identifiers are in the restricted token, access is determined by this first check, otherwise a second access check further compares the restricted security identifiers against the list of identifiers and actions associated with the …