Protected execution environments within a computer system

US 6,941,470 B1
Filed: 04/07/2000
Issued: 09/06/2005
Est. Priority Date: 04/07/2000
Status: Expired due to Term

First Claim

Patent Images

1. A method of providing a protected execution environment on a computer comprising:

categorizing each application installed on the computer as authorized or not authorized to modify the protected execution environment. intercepting an input/output request for a file from an application;

determining if the application is authorized to modify the protected execution environment;

creating a redirected input/output request to an alternate environment when the application is not authorized to modify the protected execution environment and the file is within the protected execution environment; and

submitting the redirected input/output request to a file system manager.

View all claims

19 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A protected execution agent installs itself within a file system manager on the computer to control modifications to a protected execution environment by intercepting I/O requests from applications. If an unauthorized application attempts to modify the protected execution environment, the protected execution agent terminates the original I/O request and creates a redirected I/O request that specifies a corresponding directory path within an alternate environment. The requested I/O operation is a carried out by the file system against the alternate environment. A configuration utility is responsible for determining which installed applications are authorized to change the protected execution environment. The configuration utility also establishes a parent-child relationship between an unauthorized application that invokes or “spawns” an authorized application, with the authorized child application being considered unauthorized when performing processes on behalf of the unauthorized parent application.

72 Citations

View as Search Results

34 Claims

1. A method of providing a protected execution environment on a computer comprising:
- categorizing each application installed on the computer as authorized or not authorized to modify the protected execution environment. intercepting an input/output request for a file from an application;
  
  determining if the application is authorized to modify the protected execution environment;
  
  creating a redirected input/output request to an alternate environment when the application is not authorized to modify the protected execution environment and the file is within the protected execution environment; and
  
  submitting the redirected input/output request to a file system manager.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10)
- - 2. The method of claim 1 further comprising:
    - allowing the redirected input/output request to continue when it is intercepted.
  - 3. The method of claim 1 further comprising:
    - creating the protected execution environment.
  - 4. The method of claim 1 wherein the protected execution environment comprises a directory for each of the applications that is authorized to modify the protected execution environment.
  - 5. The method of claim 1 wherein the alternate environment comprises a directory associated with an application that is not authorized to modify the protected execution environment.
  - 6. The method of claim 1 wherein the redirected input/output request specifies a directory in the alternate environment that corresponds to a directory in the protected execution environment specified in the input/output request.
  - 7. The method of claim 1, wherein a parent-child relationship is maintained between an application that invokes another application.
  - 8. The method of claim 1, wherein determining if the application is authorized to modify the protected execution environment comprises:
    - designating the application as not authorized to modify the protected execution environment if the application was invoked by another application that is not authorized to modify the protected execution environment.
  - 9. The method of claim 1, further comprising:
    - creating a null entry in a mirror directory structure for an executable for each application authorized to modify the protected execution environment, wherein determining if the application is authorized to modify the protected execution environment comprises;
      
      querying the existence of the executable for the application in the mirror directory structure.
  - 10. The method of claim 9, further comprising:
    - maintaining an association between an executing application and a directory path for the executable for the executing application, wherein querying for the existence of the executable in the mirror data structure comprises;
      
      specifying the directory path for the executable associated with the executing application.

11. A method for operating a computer system with a protected execution environment comprising:
- executing a configuration utility to categorize a plurality of applications installed on the computer system as authorized or not authorized to modify the protected execution environment;
  
  defining the protected execution environment based on the authorized applications; and
  
  installing a protected execution agent in a file system to intercept input/output requests submitted by the applications, wherein the protected execution agent directs an input/output request to an alternate environment if the application that submitted the request is not authorized and the request is directed to the protected execution environment, and wherein the alternate environment is defined by the configuration utility when categorizing the plurality of applications.
- View Dependent Claims (12, 13, 14, 15, 16, 17, 18, 19, 20, 21, 22)
- - 12. The method of claim 11 wherein the configuration utility defines the protected execution environment when categorizing the plurality of applications.
  - 13. The method of claim 11 wherein the alternate environment is defined based on at least one application that is not authorized.
  - 14. The method of claim 11, wherein the configuration utility further creates a null entry in a mirror directory structure for an executable for each authorized application and the protected execution agent further queries the existence of the executable for an executing application in the mirror directory structure to determine if the application is authorized.
  - 15. The method of claim 14, wherein the protected execution agent further maintains an association between the executing application and a directory path for the executable for the executing application.
  - 16. The method of claim 11, wherein the protected execution agent designates a second application as not authorized if it was invoked by a first application that is not authorized.
  - 17. The method of claim 16, wherein the protected execution agent maintains a parent-child relationship between the first and second applications.
  - 18. The method of claim 11, wherein the protected execution agent is installed in a hook chain in a file system manager to intercept the input/output requests before the requests are processed by any other agent installed in the hook chain.
  - 19. The method of claim 11, wherein the configuration utility is executed prior to providing the computer system to a user and the protected execution agent is installed each time the computer system is booted.
  - 20. The method of claim 11, further comprising:
    - saving a copy of the protected execution environment; and
      
      recovering from a failure of the computer system by replacing the protected execution environment with the copy.
  - 21. The method of claim 20, wherein the copy is saved on the computer system in a secure location.
  - 22. The method of claim 20, wherein the copy is saved on a remote computer server and downloaded to the computer system.

23. A method of determining a category for an application on a computer comprising:
- categorizing the application as a first type;
  
  creating a directory in a second directory structure for the application when it is a first type, wherein the second directory structure mirrors a first directory structure that contains an executable for the application;
  
  creating a null entry for the executable for the application in the directory in the second directory structure when the application is the first type; and
  
  querying the existence of the executable for the application in the second directory structure, wherein the application is determined to be the first type when the executable exists.

24. A computer-readable medium having stored thereon computer-executable instructions for performing a method comprising:
- categorizing each application installed on the computer as authorized or not authorized to modify the protected execution environment. intercepting an input/output request for a file from an application;
  
  determining if the application is authorized to modify the protected execution environment;
  
  creating a redirected input/output request to an alternate environment when the application is not authorized to modify the protected execution environment and the file is within the protected execution environment, and submitting the redirected input/output request to a file system manager.
- View Dependent Claims (25, 26, 27, 28, 29, 30)
- - 25. The computer-readable medium of claim 24 having further computer-readable instructions comprising:
    - allowing the redirected input/output request to continue when it is intercepted.
  - 26. The computer-readable medium of claim 24 having further computer-readable instructions comprising:
    - creating the protected execution environment from a directory for each of the applications that is authorized to modify the protected execution environment. 27.The computer-readable medium of claim 24 having further computer-readable instructions comprising;
      
      creating the alternate environment from a directory associated with an application that is not authorized to modify the protected execution environment.
  - 27. The computer-readable medium of claim 24 having further computer-readable instructions comprising:
    - storing a directory path specified in the input/output request in the redirected input/output request to direct the request to a corresponding directory path in the alternate environment.
  - 28. The computer-readable medium of claim 24 having further computer-readable instructions comprising:
    - maintaining a parent-child data structure to track between relationships between applications that invoke other applications.
  - 29. The computer-readable medium of claim 24 having further computer-readable instructions comprising:
    - designating the application as not authorized to modify the protected execution environment if the application was invoked by another application that is not authorized to modify the protected execution environment.
  - 30. The computer-readable medium of claim 24 having further computer-readable instructions comprising:
    - creating a null entry in a mirror directory structure for an executable for each application authorized to modify the protected execution environment; and
      
      querying the existence of the executable for the application in the mirror directory structure when determining if the application is authorized to modify the protected execution environment.

31. The computer-readable medium of claim 31 having further computer-readable instructions comprising:
- maintaining an association between an executing application and a directory path for the executable for the executing application; and
  
  specifying the directory path for the executable associated with the executing application when querying for the existence of the executable in the mirror data structure.

32. A computer system comprising:
- a processing unit;
  
  a memory coupled to the processing unit through a system bus;
  
  a computer-readable medium coupled to the processing through the system bus; and
  
  a protected environment agent executing from the computer-readable medium, wherein the protected environment agent causes the processing unit to intercept input/output requests submitted by applications executing on the computer system, causes the processing unit to redirect each input/output request to an alternate environment if the application that submitted the request is not authorized to modify a protected execution environment and the request is directed to the protected execution environment and further categorizes each application installed on the computer as authorized or not authorized to modify the protected execution environment.

33. The computer system of claim 33 further comprising:
- a configuration utility executing from the computer-readable medium, wherein the configuration utility causes the processing unit to categorize each application installed on the computer system as authorized or not authorized to modify the protected execution environment and further to cause the processing unit to define the protected execution environment to contain directories associated with the authorized applications.

34. A computer system comprising:
- a first means for processing;
  
  a second means coupled to the first means through a system bus;
  
  a third means coupled to the first means through the system bus; and
  
  a fourth means for executing from the computer-readable medium, wherein the fourth means causes the first means to intercept input/output requests submitted by applications executing on the computer system, causes the first means to redirect each input/output request to an alternate environment if the application that submitted the request is not authorized to modify a protected execution environment and the request is directed to the protected execution environment and further categorizes each application installed on the computer as authorized or not authorized to modify the protected execution environment.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Dell Marketing LP (Dell Technologies Inc.)
Original Assignee
Everdream Corporation (Dell Technologies Inc.)
Inventors
Jooste, Sarel Kobus
Primary Examiner(s)
Wright, Norman M.

Application Number

US09/545,286
Time in Patent Office

1,978 Days
Field of Search

713/201, 713/200, 713/151, 713/182
US Class Current

726/4
CPC Class Codes

G06F 21/53 by executing in a restricte...

G06F 2221/2149 Restricted operating enviro...

Protected execution environments within a computer system

First Claim

19 Assignments

0 Petitions

Accused Products

Abstract

72 Citations

34 Claims

Specification

Solutions

Use Cases

Quick Links

Protected execution environments within a computer system

First Claim

19 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

72 Citations

34 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links