US 9,811,381 B2
Resource restriction systems and methods
Jussi-Pekka Mantere, III, Mountain View, CA (US); Alexander Tony Maluta, Evergreen, CO (US); John William Scalo, Santa Cruz, CA (US); Eugene Ray Tyacke, Castle Rock, CO (US); Bruce Gaya, Palo Alto, CA (US); Michael John Smith, Sunnyvale, CA (US); Peter Kiehtreiber, Campbell, CA (US); and Simon P. Cooper, Cupertino, CA (US)
Assigned to APPLE INC., Cupertino, CA (US)
Filed by Apple Inc., Cupertino, CA (US)
Filed on Jul. 25, 2016, as Appl. No. 15/219,052.
Application 15/219,052 is a continuation of application No. 14/491,970, filed on Sep. 19, 2014, granted, now 9,400,688.
Application 14/491,970 is a continuation of application No. 13/729,014, filed on Dec. 27, 2012, granted, now 8,874,905, issued on Oct. 28, 2014.
Application 13/729,014 is a continuation of application No. 11/462,600, filed on Aug. 4, 2006, granted, now 8,352,733, issued on Jan. 8, 2013.
Prior Publication US 2017/0083370 A1, Mar. 23, 2017
This patent is subject to a terminal disclaimer.
Int. Cl. H04L 29/00 (2006.01); G06F 9/50 (2006.01); H04L 29/06 (2006.01); G06F 21/60 (2013.01); G06F 9/54 (2006.01); G06F 21/44 (2013.01)
CPC G06F 9/5005 (2013.01) [G06F 9/54 (2013.01); G06F 21/44 (2013.01); G06F 21/602 (2013.01); H04L 63/104 (2013.01)] 20 Claims
OG exemplary drawing
 
1. A method comprising:
receiving an execution call to an operating system for launching an application, the execution call associated with resource request data that identifies a user;
intercepting the execution call using an operating system kernel service;
from the operating system kernel service, providing the resource request data to a resource agent;
receiving launch data from the resource agent in response; and
granting or denying the execution call based on the launch data, wherein the resource agent is configured to execute in a user space outside the operating system kernel and perform operations comprising:
determining whether the launching of the application is restricted for the user based at least in part on the resource request data provided by the operating system kernel service; and
generating the launch data based on the determination.