×

Operating system integrated domain management

  • US 10,469,472 B2
  • Filed: 08/11/2014
  • Issued: 11/05/2019
  • Est. Priority Date: 08/12/2013
  • Status: Active Grant
First Claim
Patent Images

1. A method performed by a processor of a computing device to provide a plurality of secure domains in an operating system of the computing device, the method comprising:

  • (a) for each secure domain;

    (a1) associating resources of the secure domain with a unique domain identifier, the resources comprising at least one data file or at least one application; and

    (a2) storing a policy in association with the unique domain identifier, the policy comprising a rule set for controlling access to the resources;

    (b) receiving a selection of one of the plurality of secure domains as a current domain, wherein the plurality of secure domains comprises a target domain different from the current domain; and

    (c) controlling access by a process to the target domain resources based on the policy associated with the current domain and the policy associated with the target domain, wherein the process is associated with the current domain,wherein (c) is performed at least in part by a first service operating within a kernel of the operating system and at least in part by a second service operating in a middleware of the operating system outside of the kernel, andwherein (a) and (b) are performed by further services operating in the middleware of the operating system outside of the kernel.

View all claims
  • 10 Assignments
Timeline View
Assignment View
    ×
    ×