Process control software security architecture based on least privileges

Process control software security architecture based on least privileges

A process control system software security architecture, that is more effective at preventing zero-day or other types of malware attacks, implements the use of "least privileges" when executing the applications and services run within a computer device. The least privileges based architect...

Ausführliche Beschreibung

Gespeichert in:
Bibliographische Detailangaben
Hauptverfasser: Dan Halver Ussing, Lee Allen Neitzel
Format: Patent
Sprache:eng
Schlagworte:
CALCULATING
COMPUTING
CONTROL OR REGULATING SYSTEMS IN GENERAL
CONTROLLING
COUNTING
ELECTRIC DIGITAL DATA PROCESSING
FUNCTIONAL ELEMENTS OF SUCH SYSTEMS
MONITORING OR TESTING ARRANGEMENTS FOR SUCH SYSTEMS ORELEMENTS
PHYSICS
REGULATING
Online-Zugang:Volltext bestellen
Tags: Tag hinzufügen
Keine Tags, Fügen Sie den ersten Tag hinzu!
Beschreibung
Zusammenfassung:A process control system software security architecture, that is more effective at preventing zero-day or other types of malware attacks, implements the use of "least privileges" when executing the applications and services run within a computer device. The least privileges based architecture separates "service" processes from desktop applications that run on behalf of a logged-on user by partitioning the global namespace of the software system into service namespaces and logged-on user namespaces, and by strictly controlling communications between the applications and services in these different namespaces using interprocess communications. Moreover, the security architecture uses custom accounts to assure that each service process has the least set of privileges that are needed for implementing its function regardless of the privileges associated with the calling application or user.