Providing multiple isolated execution environments for securely accessing untrusted content
US9684785B2 · kind B2 · utility
Assignee
Inventor
Key dates
| Filing date | Dec 17, 2009 |
| Grant date | Jun 20, 2017 |
| Priority date | — |
| Expiry date | Aug 30, 2032 |
Classification
- Technology area (CPC G)Physics
- CPC primaryG06F2221/2149
- WIPO fieldComputer technology
- WIPO sectorElectrical engineering
Abstract
A sandbox tool can create and maintain multiple isolated execution environments, simultaneously. The sandbox tool can assign a unique security label to each isolated execution environment. In order to ensure the security labels are unique, the sandbox tool, for each security label, can bind a communication socket in an abstract name space of the operating system with a name that is the same as the security label. If the operating system returns an error that the name for the communication socket is already in use, the sandbox tool can determine that the security label is already in use by another isolated execution environment or other process.
Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.