Process access file control method and device

A control method and process technology, applied in the field of system security, can solve problems such as inability to achieve

Active Publication Date: 2020-02-11
SUZHOU LANGCHAO INTELLIGENT TECH CO LTD
View PDF13 Cites 2 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

[0002] On the Linux system, the access control of the subject process to the object file can be realized through selinux. The subject process he

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Process access file control method and device

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0048] While the invention may be embodied in various forms, some exemplary and non-limiting embodiments are shown in the drawings and will be described below, it should be understood that the disclosure is to be considered as an example of the invention and not It is intended that the invention be limited to the specific embodiments described.

[0049] figure 1 A schematic block diagram of an embodiment of the method for controlling process access to files according to the present invention is shown. In the embodiment shown in the figure, the method at least includes the following steps:

[0050] S1: monitor the system process, and identify the script program of the process in response to the monitoring of a newly created process;

[0051] S2: Store the structural data of the process and its script program into the script execution tree cache;

[0052] S3: In response to detecting that the process initiates access to the file, query the structural data of the process and i...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

PUM

No PUM Login to view more

Abstract

The invention relates to a process access file control method and device, and the method comprises the steps: monitoring a system process, responding to the monitored newly built process, and recognizing a script program of the process; storing the process and the structure data of the script program into a script execution tree cache; in response to monitoring that the process initiates access tothe file, querying the process and structure data of the script program of the process in the script execution tree cache to determine the script program which initiates access to the file; and controlling the access of the script program to the file according to the preset authority of the script program. According to the method provided by the invention, only the specified script program is allowed to access the specified file, and important data is protected from being illegally tampered.

Description

technical field [0001] The invention relates to the technical field of system security. The invention further relates to a method and device for controlling process access to files. Background technique [0002] On the Linux system, the access control of the subject process to the object file can be realized through selinux. The subject process here refers to the executable binary file. If you want to control the access control of a script program to the object file, it cannot be realized. [0003] However, a large amount of business is based on script operation on the Linux server now, so the present invention proposes a method, which can realize the access control with script as the main body, and protect the important business data of users and only allow specified script programs to execute. [0004] Therefore, it is necessary to propose a method to control the access of the subject process to the object file, and only allow specified script programs to access, so as to...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

Application Information

Patent Timeline
no application Login to view more
IPC IPC(8): G06F21/52G06F21/62G06F21/64
CPCG06F21/52G06F21/6218G06F21/64
Inventor 崔士伟
Owner SUZHOU LANGCHAO INTELLIGENT TECH CO LTD
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Try Eureka
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap