Safety in Downloadable Applications for Onboard Computers
First Claim
1. A method for providing safety for downloadable applications on an onboard computer in a safety critical environment, the method comprising:
- installing an application on said onboard computer, wherein said application is signed by a trusted signing entity,associating a usage policy with said signed application in a safety permissions manifest, wherein said usage policy at least comprises rules for actions allowed for said signed application under certain environmental conditions in said safety critical environment,monitoring said environmental conditions,receiving a request to perform an action from said signed application,determining whether performance of said action is permissible, wherein said determining is based on least on said associated usage policy and said monitored environmental conditions, andpermitting/preventing said performance based on said determining.
2 Assignments
0 Petitions
Accused Products
Abstract
A method for providing safety for downloadable applications on an onboard computer in a safety critical environment includes installing an application on the onboard computer, where the application is signed by a trusted signing entity, associating a usage policy with the signed application in a safety permissions manifest, where the usage policy at least includes rules for actions allowed for the signed application under certain environmental conditions in the safety critical environment, monitoring the environmental conditions, receiving a request to perform an action from the signed application, determining whether performance of the action is permissible, where the determining is based on least on the associated usage policy and the monitored environmental conditions, and permitting/preventing the performance based on the determining. Related apparatus and methods are also described.
12 Citations
13 Claims
-
1. A method for providing safety for downloadable applications on an onboard computer in a safety critical environment, the method comprising:
-
installing an application on said onboard computer, wherein said application is signed by a trusted signing entity, associating a usage policy with said signed application in a safety permissions manifest, wherein said usage policy at least comprises rules for actions allowed for said signed application under certain environmental conditions in said safety critical environment, monitoring said environmental conditions, receiving a request to perform an action from said signed application, determining whether performance of said action is permissible, wherein said determining is based on least on said associated usage policy and said monitored environmental conditions, and permitting/preventing said performance based on said determining. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11)
-
-
12. A system for providing safety for downloadable applications on an onboard computer in a safety critical environment, the system comprising:
-
means for installing an application on said onboard computer, wherein said application is signed by a trusted signing entity, means for associating a usage policy with said signed application in a safety permissions manifest, wherein said usage policy at least comprises rules for actions allowed for said signed application under certain environmental conditions in said safety critical environment, means for monitoring said environmental conditions, means for receiving a request to perform an action from said signed application, means for determining whether performance of said action is permissible, wherein said determining is based on least on said associated usage policy and said monitored environmental conditions, and means for permitting/preventing said performance based on said determining.
-
-
13. A system for providing safety for downloadable applications in a safety critical environment, the system comprising:
-
an operating system installed on an onboard computer configured to control and operate at least some components of said safety critical environment, wherein said operating system is configured to facilitate installation of at least one signed application configured to execute in said safety critical environment, a safety permissions manifest comprising at least usage rules, wherein said usage rules define environmental conditions under which certain functionalities of said components are permitted to be used by said at least one signed application, at least one environmental indicator configured to provide indications about said safety critical environment, and a safety status monitor configured to at least use said indications to evaluate functionality requests received from said at least one signed application according to said usage rules.
-
Specification