Patent · US Active

Isolating an execution container in a system with mandatory access control (MAC)

US8312043B2 · kind B2 · utility

7Cited by

4References

21Claims

0Family size

Assignee

Red Hat, Inc. · US

Inventors

Henri Han van Riel · Nashua, US
Daniel J. Walsh · Lansdale, US
Warren I. Togami, Jr. · Somerville, US

Key dates

Filing date	Nov 26, 2008
Grant date	Nov 13, 2012
Priority date	—
Expiry date	Sep 7, 2030

Classification

Technology area (CPC G)Physics
CPC primaryG06F21/6218
WIPO fieldComputer technology
WIPO sectorElectrical engineering

Abstract

Preventing a process from traversing back a directory tree through its parent directories is described. In a system with a program executing in a path container, an access permission rule applicable to the instance of the program prevents the program from traversing the tree structure back through its parent directories towards an absolute root directory. The access permission rule may be a rule in an instance of a security policy applicable to the particular path container from which the process is executing.

Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.