Patent · US Active

Mandatory access control scheme with active objects

US7600117B2 · kind B2 · utility

1Cited by

8References

5Claims

0Family size

Assignee

PANASONIC HOLDINGS CORPORATION · JP

Inventors

Jinhong Guo · Plainsboro, US
Stephen Johnson · Erdenheim, US
Il-Pyung Park · Princeton Junction, US

Key dates

Filing date	Sep 29, 2004
Grant date	Oct 6, 2009
Priority date	—
Expiry date	Nov 21, 2026

Classification

Technology area (CPC G)Physics
CPC primaryG06F21/629
WIPO fieldComputer technology
WIPO sectorElectrical engineering

Abstract

Access control is mediated by a set of 2-tuple labels or attributes which are associated with subject and object entities, respectively. Subject entitles, such as processes, have separate read and write attributes, while object entities, such as files, have separate integrity and write control attributes. The system implements a set of rules to provide both integrity control and confidentiality protection. Specifically, write operations to an object are inhibited where the subject's write attribute is lower than the write control attribute of the object. Read operations from an object are inhibited where the subject's read attribute is lower than the object's integrity attribute. When a subject reads from an object having a lower integrity level than the subject's read attribute, the subject's read attribute is demoted.

Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.