File mandatory access control method and system thereof based on minifilter drive

A technology of mandatory access control and micro-filter driver, applied in the computer field, it can solve the problems of difficulty in implementing security protection file access control method, poor stability and compatibility, and achieve efficient use of kernel stack, good support, and easier control of loading order. Effect

Active Publication Date: 2015-05-27
BEIJING ANPRO INFORMATION TECH
View PDF6 Cites 18 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

[0007] HOOK technology is to filter the file operation functions provided by the Windows system and the system messages triggered by the file operations, and achieve the effect of file access control through targeted processing. Stability and compatibility are very poor on high systems
[0008] In summary, the existing technology is difficult to implement a file access control method with strong security protection that meets the needs of security and ease of use

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • File mandatory access control method and system thereof based on minifilter drive
  • File mandatory access control method and system thereof based on minifilter drive
  • File mandatory access control method and system thereof based on minifilter drive

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0052] Below in conjunction with accompanying drawing, further describe the present invention through embodiment, but do not limit the scope of the present invention in any way.

[0053] The invention provides a file mandatory access control method based on micro-filter driver, figure 1 It is a block flow diagram of the inventive method, specifically comprising the following steps:

[0054] 1) In the upper management subsystem, the administrator selects the user and sets the user's security level;

[0055] 2) The administrator sets the confidentiality level of the operation type of the selected file

[0056] 3) Form a rule as a security policy and store it in a configuration file;

[0057] 4) In the user mode (application layer), the user operating system files generate an I / O request and download the I / O request;

[0058] 5) The I / O manager processes the I / O request and downloads the IRP message;

[0059] 6) Microfilter driver loading

[0060] 7) The micro-filter driver ...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

PUM

No PUM Login to view more

Abstract

The invention discloses a file mandatory access control method based on minifilter drive. The method comprises the following steps of realizing access control and safety protection of files through combining file system minifilter drive and a mandatory access control multi-level security strategy model, wherein setting a file mandatory access control rule to store into a configuration file is included; generating an I / O request and downloading; processing the I / O request and downloading IRP information; intercepting, acquiring and analyzing the IRP information; through roll poling the configuration file, releasing the IRP information or returning reject information. According to the file mandatory access control method based on minifilter drive, the loading sequence of a filter is easier to control; the development efficiency can be greatly improved, and better support is provided for multiple platforms and application programs; the file mandatory access control method based on minifilter drive is safe and good in use, and is applicable to departments such as military industry and the like with office confidentiality special requirements.

Description

technical field [0001] The present invention provides a file mandatory access control method and system based on a micro-filter driver, relates to the field of computer technology, in particular to a Windows system micro-filter driver-based file mandatory access control combined with a multi-level security policy model (MLS) Access control method and system thereof. Background technique [0002] With the gradual popularization of electronic office technology, the security of electronic documents is becoming more and more important. As the most mainstream C2 commercial operating system today, the Windows system still has access control for files at the stage of autonomous access control (DAC), which obviously cannot meet the high confidentiality and integrity of document processing by the military industry department or even the aerospace department. Require. [0003] Mandatory access control is an important method to realize the security of the operating system. It is to c...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

Application Information

Patent Timeline
no application Login to view more
Patent Type & Authority Applications(China)
IPC IPC(8): G06F21/62
CPCG06F21/6218G06F2221/2107
Inventor 张涛牛伟颖张弛
Owner BEIJING ANPRO INFORMATION TECH
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Try Eureka
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap