| US 7,591,003 B2 | ||
| Security policies in trusted operating system | ||
| Michael W. Focke, Oakton, Va. (US); James E. Knoke, Vienna, Va. (US); Paul A. Barbieri, Ashburn, Va. (US); Robert D. Wherley, Middletown, Md. (US); John G. Ata, Sterling, Va. (US); and Dwight B. Engen, Herndon, Va. (US) | ||
| Assigned to BAE Systems Enterprise Systems Incorporated, McLean, Va. (US) | ||
| Filed on Aug. 30, 2006, as Appl. No. 11/512,174. | ||
| Application 11/512174 is a division of application No. 10/462771, filed on Jun. 17, 2003, granted, now 7,103,914. | ||
| Claims priority of provisional application 60/388738, filed on Jun. 17, 2002. | ||
| Prior Publication US 2007/0056036 A1, Mar. 08, 2007 | ||
| Int. Cl. H04L 9/00 (2006.01) | ||
| U.S. Cl. 726—1 [713/164; 726/22] | 17 Claims |
| 1. Computer program product stored on tangible computer readable media, the computer program product, when executed by a computer,
providing:
a trusted operating system, the trusted operating system causing the computer to enforce four separate policies in the computer
whenever any process attempts to access a file system object accessible by the computer, the enforcing preventing at least
one of an unauthorized user and an unauthorized process from accessing the file system object, the policies comprising:
a mandatory security policy;
a mandatory integrity policy;
a discretionary access control policy; and,
a subtype policy.
|