Integration of untrusted applications and frameworks with a secure operating system environment
First Claim
1. An apparatus operable as a set top box, comprising:
- hardware resources configured to perform trusted media processing operations;
a set top box application configured to control operation of at least a portion of the hardware resources;
a software framework, the software framework providing application programming interface functionality;
a secure operating system environment supporting each of the set top box application and the software framework;
processing circuitry, the secure operating system environment executed by the processing circuitry;
at least one trusted software application executable via the software framework; and
a secure access interface, including;
a secure access server included in the secure operating system environment, the secure access server configured to provide access to the secure operating system environment; and
a plurality of secure access clients configured to interface with the secure access server, each secure access client having respective access rights to the secure operating system environment via the secure access server, including first access rights providing relatively full access to the secure operating system environment for the set top box application and second access rights providing relatively limited access, in relation to the first access rights, to the secure operating system environment for the software framework.
7 Assignments
0 Petitions
Accused Products
Abstract
A set top box or like device utilizing trusted applications in conjunction with an untrusted software framework. In one implementation, trusted or certified applications are received from a service provider for execution by a software framework of the device. Certification of a trusted application may entail, for example, verifying that the application is executable by the device in a manner consist with the industry standard certification process. The software framework may comprise, for example, an Android framework supported by an underlying. Linux operating system environment and isolated in a Linux resource container. A secure access client/server interface may also be provided to support interactions between the software framework and trusted portions of the device. In further embodiments, both trusted applications and a set top box application utilized by the device to perform traditional set top box operations are implemented in at least one version of an Android or like framework.
-
Citations
20 Claims
-
1. An apparatus operable as a set top box, comprising:
-
hardware resources configured to perform trusted media processing operations; a set top box application configured to control operation of at least a portion of the hardware resources; a software framework, the software framework providing application programming interface functionality; a secure operating system environment supporting each of the set top box application and the software framework; processing circuitry, the secure operating system environment executed by the processing circuitry; at least one trusted software application executable via the software framework; and a secure access interface, including; a secure access server included in the secure operating system environment, the secure access server configured to provide access to the secure operating system environment; and a plurality of secure access clients configured to interface with the secure access server, each secure access client having respective access rights to the secure operating system environment via the secure access server, including first access rights providing relatively full access to the secure operating system environment for the set top box application and second access rights providing relatively limited access, in relation to the first access rights, to the secure operating system environment for the software framework. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9)
-
-
10. A method used in a media processing device that includes a secure operating system and a software framework providing application programming interface functionality, the method comprising:
-
receiving trusted application software for use by the media processing device, the trusted application software selectable from a catalog of certified application software hosted by a service operator or cloud-based source; associating the trusted application software with the software framework, the software framework supporting execution of the trusted application software; establishing, by the secure operating system, an untrusted user mode operating system environment for execution of the software framework and trusted application software; and providing a secure access interface within the media processing device, the secure access interface including; a secure access server configured to provide access to the secure operating system; and a first secure access client configured to interface with the secure access server, the first secure access client having first access rights to the secure operating system, the first access rights providing limited access to the secure operating system, via the secure access server, for the software framework and the trusted application software as executed by the software framework. - View Dependent Claims (11, 12, 13, 14, 15, 16)
-
-
17. A media processing device, comprising:
-
hardware resources configured to perform trusted media processing operations; a set top box application configured to control operation of at least a portion of the hardware resources; processing circuitry; at least one trusted software application; a software framework, the software framework providing an execution environment for the at least one trusted software application; an underlying operating system executed by the processing circuitry, the underlying operating system configured to establish a privileged operating system environment and a restricted operating system environment, wherein the software framework and the at least one trusted software application are executed in the restricted operating system environment; and a secure access interface configured to regulate interactions between the underlying operating system, the privileged operating system environment and the restricted operating system environment, the secure access interface including; a secure access server executed by the underlying operating system; a first secure access client configured to interface with the secure access server, the secure access server configured to provide access to the underlying operating system by the first secure access client in accordance with first access rights applicable to the set top box application, the first secure access client executed in the privileged operating system environment; and a second secure access client configured to interface with the secure access server, the secure access server configured to provide access to the underlying operating system by the second secure access client in accordance with second access rights applicable to the software framework, the second secure access client executed in the restricted operating system environment. - View Dependent Claims (18, 19, 20)
-
Specification