Sandboxing technology for webruntime system

US 9,064,111 B2
Filed: 03/05/2012
Issued: 06/23/2015
Est. Priority Date: 08/03/2011
Status: Active Grant

First Claim

Patent Images

1. A method of providing security enforcements of widgets in a computer system having a processor and a memory, comprising:

extracting access control information from a widget process requesting a service, generating one or more access control rules customized for the widget process, and providing the access control rules to a trusted portion of the computer system outside of a user code space of a Web Runtime (WRT) system; and

for any static access control rule, delegating security checking of the widget process from the WRT system to the trusted portion of the computer system, wherein the trusted portion of the computer system uses the access control rules for security checking of the widget process, and wherein the WRT system is modified to generate one or more static access control rules and convert the static access control rules into a form that is compatible with the trusted portion of the computer system based on system requirements and type of technology used by the trusted portion of the computer system,the WRT system is configured to dynamically adjust, based on a particular access control rule, which one of the WRT system and the trusted portion of the computer system performs security checking of the widget process.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

In a first embodiment of the present invention, a method of providing security enforcements of widgets in a computer system having a processor and a memory is provided, comprising: extracting access control information from a widget process requesting a service, generating access control rules customized for the widget process, and providing the access control rules to a trusted portion of the computer system outside of the user code space of a Web Runtime (WRT) system; and for any static access control rule, delegating security checking of the widget process from the WRT system to the trusted portion of the computer system.

Citations

27 Claims

1. A method of providing security enforcements of widgets in a computer system having a processor and a memory, comprising:
- extracting access control information from a widget process requesting a service, generating one or more access control rules customized for the widget process, and providing the access control rules to a trusted portion of the computer system outside of a user code space of a Web Runtime (WRT) system; and
  
  for any static access control rule, delegating security checking of the widget process from the WRT system to the trusted portion of the computer system, wherein the trusted portion of the computer system uses the access control rules for security checking of the widget process, and wherein the WRT system is modified to generate one or more static access control rules and convert the static access control rules into a form that is compatible with the trusted portion of the computer system based on system requirements and type of technology used by the trusted portion of the computer system,the WRT system is configured to dynamically adjust, based on a particular access control rule, which one of the WRT system and the trusted portion of the computer system performs security checking of the widget process.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14)
- - 2. The method of claim 1, further comprisingfor any non-static access control rule:
    - requesting a one-time token from a security server external to the WRT system, wherein the one-time token expires after the widget process consumes the requested service; and
      
      wherein the one-time token is used by the widget process to access the service.
  - 3. The method of claim 2, wherein a non-static access control rules includes one of the following:
    - a session prompt; and
      
      a one-shot prompt.
  - 4. The method of claim 2, wherein for any non-static access control rule that is a session prompt, the method further comprises:
    - requesting permission from a user prior to launching the widget process;
      
      dropping privileges of the WRT system; and
      
      resetting dynamic access control configuration of the widget process and requesting that the security server revoke the one-time token upon next launch of the widget process.
  - 5. The method of claim 2, wherein for any non-static access control rule that is a one-time prompt, the method further comprises:
    - requesting permission from a user when the widget process requests the service;
      
      requesting that the security server honor the one-time token only a single time.
  - 6. The method of claim 1, wherein a static access control rule includes one of the following:
    - a blanket prompt;
      
      a permit prompt; and
      
      a deny prompt.
  - 7. The method of claim 1, wherein the trusted portion of the computer system is an operating system kernel.
  - 8. The method of claim 7, wherein the static access control rules are converted to mandatory access control rules enforced by the operating system kernel.
  - 9. The method of claim 7, wherein the extracting, generating, and providing are performed by a WRT management process.
  - 10. The method of claim 7, wherein the operating system kernel dynamically receives updated access control rules from the WRT system.
  - 11. The method of claim 1, wherein the security server is a part of Service Location Protocol (SLP) Access Control.
  - 12. The method of claim 1, wherein the access control information comprises access restrictions for the widget process.
  - 13. The method of claim 1, wherein the system requirements comprises operating system requirements, and wherein the type of technology used by the trusted portion comprises mandatory access control (MAC) technology.
  - 14. The method of claim 13, wherein modifying the WRT system comprises:
    - generating one or more MAC rules from a permission list specific to requirements of the operating system and MAC technology used, and passing the generated MAC rules to the trusted portion that comprises an operating system kernel.

15. A method of providing security enforcements of widgets in a computer system having a processor and a memory, comprising:
- extracting access control information from a widget process requesting a service, generating one or more access control rules customized for the widget process, and providing the access control rules to a trusted portion of the computer system outside of the user code space of a Web Runtime (WRT) system; and
  
  for any static access control rule, delegating some but not all security checking of the widget process from the WRT system to the trusted portion of the computer system, such that two levels of security checking are performed, one by the WRT system and one by the trusted portion of the computer system, wherein the trusted portion of the computer system uses the access control rules for security checking of the widget process, and wherein the WRT system is modified to generate one or more static access control rules and convert the static access control rules into a form that is compatible with the trusted portion of the computer system based on system requirements and type of technology used by the trusted portion of the computer system,wherein the WRT system is configured to dynamically adjust, based on a particular access control rule, which one of the WRT system and the trusted portion of the computer system performs security checking of the widget process.
- View Dependent Claims (16, 17)
- - 16. The method of claim 15, wherein the trusted portion of the computer system is an operating system kernel.
  - 17. The method of claim 16, wherein the static access control rules are converted to mandatory access control rules enforced by the operating system kernel.

18. A computer system having improved widget security, comprising:
- a processor;
  
  a memory;
  
  an operating system; and
  
  a Web Runtime (WRT) system supporting installation and invocation of widgets, wherein the WRT system is configured to;
  
  receive a widget manifest from each installed widget;
  
  based on at least one widget manifest received, determine one or more access control rules delegable from the WRT system to a more secure portion of the computer system associated with the operating system; and
  
  pass a set of delegable static access control rules to the more secure portion of the computer system to perform security checking;
  
  wherein each widget manifest comprises access restrictions for an associated installed widget;
  
  wherein the WRT system is modified to generate the set of delegable static access control rules and convert the set of delegable static access control rules into a form compatible with the more secure portion of the computer system based on system requirements and type of technology used by the more secure portion of the computer system; and
  
  wherein the WRT system is configured to dynamically adjust, based on a particular access control rule, which one of the WRT system and the more secure portion of the computer system performs security checking.
- View Dependent Claims (19, 20, 21, 22, 23, 24, 25)
- - 19. The computer system of claim 18, wherein:
    - the WRT system includes a WRT management process that is configured to communicate with a security server to obtain one-time tokens for any non-static access control rule.
  - 20. The computer system of claim 19, wherein the WRT management process is further configured to communicate with the security server when an installed widget is invoked for any non-static access control rules that are session prompts.
  - 21. The computer system of claim 18, wherein the WRT system is configured to pass the set of delegable static access control rules to the more secure portion of the computer system when an installed widget is invoked.
  - 22. The computer system of claim 21, wherein the WRT management process is further configured to communicate with the security server when an installed widget requests a particular service for any non-static access control rule that is a one-time prompt linked to the particular service.
  - 23. The computer system of claim 18, wherein the more secure portion of the computer system comprises a trusted portion, and wherein the trusted portion is an operating system kernel.
  - 24. The system of claim 23, wherein upon an installed widget being invoked, the WRT system determines access restrictions grantable to the invoked widget at launch time, generates one or more access control rules, and passes the access control rules to the operating system kernel for security checking of executing widgets.
  - 25. The system of claim 18, wherein the access restrictions for an associated installed widget are grantable at install-time.

26. A system comprising:
- a plurality of widgets;
  
  a WRT management process;
  
  a security server; and
  
  an operating system kernel;
  
  wherein the WRT management process;
  
  extracts access control information from the widgets, generate one or more access control rules, and provides the access control rules to the operating system kernel; and
  
  for any static access control rule, delegates at least some security checking of a widget process to the operating system kernel, wherein the operating system kernel uses the access control rules for security checking of the widget process, and wherein the WRT management process is modified to generate one or more static access control rules and convert the static access control rules into a form that is compatible with the operating system kernel based on system requirements and type of technology used by the operating system kernel,wherein the WRT management process is associated with a WRT system, and the WRT system is configured to dynamically adjust, based on a particular access control rule, which one of the WRT system and the operating system kernel performs security checking.

27. A program storage device readable by a machine tangibly embodying a program of instructions executable by the machine to perform a method providing security enforcements of widgets in a computer system having a processor and a memory, the method comprising:
- extracting access control information from a widget process requesting a service, generating one or more access control rules customized for the widget process, and providing the access control rules to a trusted portion of the computer system outside of a user code space of a Web Runtime (WRT) system; and
  
  for any static access control rule, delegating security checking of the widget process from the WRT system to the trusted portion of the computer system, wherein the trusted portion of the computer system uses the access control rules for security checking of the widget process, and wherein the WRT system is modified to generate one or more static access control rules and convert the static access control rules into a form that is compatible with the trusted portion of the computer system based on system requirements and type of technology used by the trusted portion of the computer system,wherein the WRT system is configured to dynamically adjust, based on a particular access control rule, which one of the WRT system and the trusted portion of the computer system performs security checking.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Samsung Electronics Co. Ltd.
Original Assignee
Samsung Electronics Co. Ltd.
Inventors
Aciicmez, Onur, Blaich, Andrew C.
Primary Examiner(s)
Nalven, Andrew
Assistant Examiner(s)
MALINOWSKI, WALTER J

Application Number

US13/412,496
Publication Number

US 20130036448A1
Time in Patent Office

1,205 Days
Field of Search

None
US Class Current

1/1
CPC Class Codes

G06F 21/53   by executing in a restricte...

G06F 21/6218   to a system of files or obj...

G06F 21/6281   at program execution time, ...

G06F 21/629   to features or functions of...

G06F 2221/2113   Multi-level security, e.g. ...

G06F 2221/2119   Authenticating web pages, e...

G06F 2221/2137   Time limited access, e.g. t...

G06F 2221/2141   Access rights, e.g. capabil...

Sandboxing technology for webruntime system

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

Citations

27 Claims

Specification

Solutions

Use Cases

Quick Links

Sandboxing technology for webruntime system

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

Citations

27 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links