Apparatus for configuring operating system and method therefor
First Claim
1. A non-transitory computer-readable storage medium (CRSM) storing an operating system to be executed on a computer comprising a memory and a processor, the operating system managing the memory and other resources in the computer via the processor, the operating system comprising:
- a system resource management part, in a first domain of the operating system, managing system resources by assigning control permissions for the system resources interworking with the operating system; and
a system operation part, in a second domain of the operating system which is independent from the first domain, executing an application program by utilizing the system resources managed by the system resource management part,wherein the system resource management part includes a resource allocation module allocating a system resource required for the application program, and generating identification information of the application program and information on the system resource allocated to the application program, andwherein the system resource management part includes an access control information database receiving the identification information of the application program and the information on the system resource, generating access control information by mapping the information on the system resource to the identification information of the application program, and storing the generated access control information.
1 Assignment
0 Petitions
Accused Products
Abstract
Disclosed are an apparatus and a method for configuring an operating system. An apparatus for configuring an operating system may comprise a system resource management part managing system resources by assigning control permission for system resources which interwork with the operating system to a first domain of the operating system; and a system operation part executing an application program in a second domain of the operating system which is independent from the first domain by utilizing the system resources managed by the system resource management part. Therefore, performance of the operating system may be enhanced at the same time of supporting high security of the operating system so that reliability of the operating system can also be enhanced.
-
Citations
12 Claims
-
1. A non-transitory computer-readable storage medium (CRSM) storing an operating system to be executed on a computer comprising a memory and a processor, the operating system managing the memory and other resources in the computer via the processor, the operating system comprising:
-
a system resource management part, in a first domain of the operating system, managing system resources by assigning control permissions for the system resources interworking with the operating system; and a system operation part, in a second domain of the operating system which is independent from the first domain, executing an application program by utilizing the system resources managed by the system resource management part, wherein the system resource management part includes a resource allocation module allocating a system resource required for the application program, and generating identification information of the application program and information on the system resource allocated to the application program, and wherein the system resource management part includes an access control information database receiving the identification information of the application program and the information on the system resource, generating access control information by mapping the information on the system resource to the identification information of the application program, and storing the generated access control information. - View Dependent Claims (2, 3, 4, 5, 6, 7)
-
-
8. A processing method of an operating system that is executed on a computer comprising a memory and a processor, the operating system managing the memory and other resources in the computer via the processor, the processing method comprising:
-
managing system resources by assigning control permission for the system resources interworking with the operating system in a first domain of the operating system; and executing an application program by utilizing the system resources in a second domain which is independent from the first domain, wherein, in the managing system resources, the system resource required for the application program is allocated, and access control information generated by mapping information on the system resource allocated to the application program to the application program are stored, and wherein, in the managing system resources, whether access of the application program on the system resource on which access of the application is requested is permitted or not is determined based on the stored access control information in response to a request of the application program to access the system resource. - View Dependent Claims (9, 10, 11, 12)
-
Specification