EP 4154141 A1 20230329 - METHOD FOR SECURING A SYSTEM CALL, METHOD FOR IMPLEMENTING AN ASSOCIATED SECURITY POLICY AND DEVICES FOR CARRYING OUT SUCH METHODS
Title (en)
METHOD FOR SECURING A SYSTEM CALL, METHOD FOR IMPLEMENTING AN ASSOCIATED SECURITY POLICY AND DEVICES FOR CARRYING OUT SUCH METHODS
Title (de)
VERFAHREN ZUR SICHERUNG EINES SYSTEMAUFRUFS, VERFAHREN ZUR IMPLEMENTIERUNG EINER ZUGEHÖRIGEN SICHERHEITSRICHTLINIE UND VORRICHTUNGEN ZUR DURCHFÜHRUNG SOLCHER VERFAHREN
Title (fr)
PROCEDE DE SECURISATION D'UN APPEL SYSTEME, PROCEDE DE MISE EN PLACE D'UNE POLITIQUE DE SECURITE ASSOCIEE ET DISPOSITIFS METTANT EN OEUVRE CES PROCEDES
Publication
Application
Priority
- FR 2005153 A 20200520
- FR 2021050860 W 20210518
Abstract (en)
[origin: WO2021234267A1] Method for securing a system call, method for implementing an associated security policy and devices for carrying out such methods. The securing method secures at least one system call triggered by a current process of a user space of a software system. Said method is implemented by a kernel of the software system before executing at least one operation triggered by the at least one system call and comprises: a step (E30) of obtaining at least one namespace of the kernel, the namespace being dedicated to the security management associated with the current process; a step (E50) of executing a security policy associated with the operation and recorded in an area (ZPS) of the kernel (KER), which area is defined in the namespace; a step (E30) of obtaining at least one namespace (ENSECURE0) dedicated to the security management and ancestor of the namespace (ENSECURE1) of the current process (pl); a step (E50) of executing a security policy associated with the operation and recorded in an area (ZPS) of the kernel (KER) defined in the ancestor namespace; and a step of processing the system call according to a result (RET) of the executions.
IPC 8 full level
G06F 21/53 (2013.01); G06F 21/55 (2013.01); G06F 21/62 (2013.01)
CPC (source: EP US)
G06F 21/53 (2013.01 - EP US); G06F 21/554 (2013.01 - EP US); G06F 21/6218 (2013.01 - EP US); G06F 2221/2113 (2013.01 - EP); G06F 2221/2141 (2013.01 - EP US)
Citation (search report)
See references of WO 2021234267A1
Designated contracting state (EPC)
AL AT BE BG CH CY CZ DE DK EE ES FI FR GB GR HR HU IE IS IT LI LT LU LV MC MK MT NL NO PL PT RO RS SE SI SK SM TR
Designated extension state (EPC)
BA ME
Designated validation state (EPC)
KH MA MD TN
DOCDB simple family (publication)
FR 3110726 A1 20211126; CN 115917539 A 20230404; EP 4154141 A1 20230329; US 2023195884 A1 20230622; WO 2021234267 A1 20211125
DOCDB simple family (application)
FR 2005153 A 20200520; CN 202180043947 A 20210518; EP 21732967 A 20210518; FR 2021050860 W 20210518; US 202117999532 A 20210518