| US 7,591,015 B2 | ||
| Secure kernel transactions | ||
| Jon Cargille, Bellevue, Wash. (US); Surendra Verma, Bellevue, Wash. (US); Mark J. Zbikowski, Woodinville, Wash. (US); and William R. Tipton, Seattle, Wash. (US) | ||
| Assigned to Microsoft Corporation, Redmond, Wash. (US) | ||
| Filed on Oct. 23, 2003, as Appl. No. 10/692,261. | ||
| Prior Publication US 2005/0091502 A1, Apr. 28, 2005 | ||
| Int. Cl. H04L 9/00 (2006.01) | ||
| U.S. Cl. 726—18 [726/2; 726/5] | 17 Claims |
| 1. A kernel-level transaction system, comprising:
a memory;
one or more processors operatively coupled to the memory and disposed within one or more devices;
a kernel-level transaction manager disposed within each device, each said kernel-level transaction manager including a plurality
of kernel objects to implement a transaction having plural operations, wherein the plurality of kernel objects include a transaction
object to represent a transaction, a resource manager object to represent a resource participating in the transaction, and
an enlistment object to enlist participants in the transaction, wherein the transaction is performed at the kernel-level;
and
a security descriptor, applied to at least one of the kernel objects, to identify at least one user, to identify one of the
operations of the transaction that may be performed on the kernel object to which the security descriptor is applied, and
to identify a right indicating that the identified user is permitted or prohibited to perform the operation.
|