Looking for breakthrough ideas for innovation challenges? Try Patsnap Eureka!

Method and device for controlling process access to files

A control method and process technology, applied in the field of system security, can solve problems such as unrealization

Active Publication Date: 2022-02-18
INSPUR SUZHOU INTELLIGENT TECH CO LTD
View PDF13 Cites 0 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

[0002] On the Linux system, the access control of the subject process to the object file can be realized through selinux. The subject process here refers to the executable binary file. If you want to control the access control of a script program to the object file, it cannot be achieved.

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Method and device for controlling process access to files

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0048] While the invention may be embodied in various forms, some exemplary and non-limiting embodiments are shown in the drawings and will be described below, it should be understood that the disclosure is to be considered as exemplary and not It is intended that the invention be limited to the specific embodiments described.

[0049] figure 1 A schematic block diagram of an embodiment of the method for controlling process access to files according to the present invention is shown. In the embodiment shown in the figure, the method at least includes the following steps:

[0050] S1: monitor the system process, and identify the script program of the process in response to the monitoring of a newly created process;

[0051] S2: Store the structural data of the process and its script program into the script execution tree cache;

[0052] S3: In response to detecting that the process initiates access to the file, query the structural data of the process and its script program ...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

PUM

No PUM Login to View More

Abstract

The invention relates to a method and device for controlling process access to files, wherein the method includes: monitoring system processes, and in response to monitoring a newly created process, identifying the script program of the process; storing the structural data of the process and its script program in Script execution tree cache; in response to detecting that the process initiates access to the file, query the structural data of the process and its script program in the script execution tree cache to determine the script program that initiates access to the file; control the script according to the preset authority of the script program Program access to files. The method according to the invention realizes that only specified script programs are allowed to access specified files, and important data is protected from illegal tampering.

Description

technical field [0001] The invention relates to the technical field of system security. The invention further relates to a method and device for controlling process access to files. Background technique [0002] On the Linux system, the access control of the subject process to the object file can be realized through selinux. The subject process here refers to the executable binary file. If you want to control the access control of a script program to the object file, it cannot be realized. [0003] However, a large amount of business is based on script operation on the Linux server now, so the present invention proposes a method, which can realize the access control with script as the main body, and protect the important business data of users and only allow specified script programs to execute. [0004] Therefore, it is necessary to propose a method to control the access of the subject process to the object file, and only allow specified script programs to access, so as to...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

Application Information

Patent Timeline
no application Login to View More
Patent Type & Authority Patents(China)
IPC IPC(8): G06F21/52G06F21/62G06F21/64
CPCG06F21/52G06F21/6218G06F21/64
Inventor 崔士伟
Owner INSPUR SUZHOU INTELLIGENT TECH CO LTD
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Patsnap Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Patsnap Eureka Blog
Learn More
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic, Popular Technical Reports.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap|About US| Contact US: help@patsnap.com