Operating system integrated domain management
First Claim
1. A method performed by a processor of a computing device to provide a plurality of secure domains in an operating system of the computing device, the method comprising:
- (a) for each secure domain;
(a1) associating resources of the secure domain with a unique domain identifier, the resources comprising at least one data file or at least one application; and
(a2) storing a policy in association with the unique domain identifier, the policy comprising a rule set for controlling access to the resources;
(b) receiving a selection of one of the plurality of secure domains as a current domain, wherein the plurality of secure domains comprises a target domain different from the current domain; and
(c) controlling access by a process to the target domain resources based on the policy associated with the current domain and the policy associated with the target domain, wherein the process is associated with the current domain,wherein (c) is performed at least in part by a first service operating within a kernel of the operating system and at least in part by a second service operating in a middleware of the operating system outside of the kernel, andwherein (a) and (b) are performed by further services operating in the middleware of the operating system outside of the kernel.
10 Assignments
0 Petitions
Accused Products
Abstract
A computing device operating system providing a plurality of secure domains. A domain manager selectively creates a plurality of secure domains, and one of the secure domains is selected as a current domain. A domain policy service stores and enforces, for each secure domain, a policy comprising a rule set controlling access to files and applications associated with the domain. A package manager enforces, for each secure domain, installation of the applications associated with the domain. A domain message service provides communication between running processes associated with different ones of the secure domains. An activity manager selectively switches the current domain. Domain isolation is achieved while enabling a unified user interface providing concurrent access to the resources of multiple domains.
-
Citations
16 Claims
-
1. A method performed by a processor of a computing device to provide a plurality of secure domains in an operating system of the computing device, the method comprising:
-
(a) for each secure domain; (a1) associating resources of the secure domain with a unique domain identifier, the resources comprising at least one data file or at least one application; and (a2) storing a policy in association with the unique domain identifier, the policy comprising a rule set for controlling access to the resources; (b) receiving a selection of one of the plurality of secure domains as a current domain, wherein the plurality of secure domains comprises a target domain different from the current domain; and (c) controlling access by a process to the target domain resources based on the policy associated with the current domain and the policy associated with the target domain, wherein the process is associated with the current domain, wherein (c) is performed at least in part by a first service operating within a kernel of the operating system and at least in part by a second service operating in a middleware of the operating system outside of the kernel, and wherein (a) and (b) are performed by further services operating in the middleware of the operating system outside of the kernel. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16)
-
Specification