Multi-level security cluster
US9378387B2 · kind B2 · utility
Assignee
Inventors
Key dates
| Filing date | Mar 24, 2010 |
| Grant date | Jun 28, 2016 |
| Priority date | — |
| Expiry date | Jan 13, 2032 |
Classification
- Technology area (CPC H)Electricity
- CPC primaryH04L63/105
- WIPO fieldComputer technology
- WIPO sectorElectrical engineering
Abstract
Some embodiments may include multiple computers comprising a multi-level security system. The security system includes a first set of zones and a second set of zones, each having access to resources of a computer, a first security container having a first security label containing the first set of zones, and a second security container with a second security label containing the second set of zones. The resources and data of each of the first and second set of zones inherit the security label of their corresponding security container. The security system further includes a global zone, the global zone has access to the resources of the computer, a kernel having access to the security label information for each security container and zone, where requests for data and resources stored on the computer are first sent to the kernel, and the kernel adds the security label data, the kernel or the global zone on any computer perform security checks, and then the request may then be processed by the kernel or global zone on any computer.
Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.