93 results about "Superuser" patented technology

Provided is an application program launching method and system for improving security of an embedded Linux kernel by distributing superuser privileges. The method includes: searching security set information on an application program selected by a user; changing a user account for a processor of the application program to a user ID associated with the application program in the security set information; setting a capability for the processor according to setting information for the capability in the security set information; changing a basic directory for the processor according to a basic directory in the security set information; and launching the application program.

A method for enabling two businesses to complete a transaction that includes payment from one business (the buyer) to another business (the seller). A payment enabler operates the money transfer service over a computer network of nodes, such as the Internet. Typically, the buyer and the seller use the money transfer service of the payment enabler to consummate a transaction that they have arranged over the computer network through a business-to-business transaction facilitator that enables businesses to arrange deals over the computer network. During registration with the payment enabler, a buyer typically provides information about a bank account from which the seller will be paid, and the seller typically provides information about a bank account for receiving the funds from the buyer. The payment enabler facilitates payments for transactions between businesses by enabling the employees of a business registered with the payment enabler to direct the various phases of the payment process on behalf of the business for which those employees work. A super user employee, identified by the business during registration with the payment enabler, has the power to register other employees of the business with the payment enabler and to specify the privileges that the payment enabler should grant each employee to act on behalf of the business.

The invention provides a data processor. The data processor comprises a trusted kernel and a non-trusted kernel. The trusted kernel comprises a trusted kernel normal user stack, a trusted kernel superuser stack and a trusted kernel control register. The non-trusted kernel comprises a non-trusted kernel normal user stack, a non-trusted kernel superuser stack and a non-trusted kernel control register. The trusted kernel and the non-trusted kernel share public resources, and the public resources can be accessed by the trusted kernel and the non-trusted kernel. According to the data processor, an underlying hardware protection mechanism is provided for data security through design of a virtual kernel, and a user mode of a current kernel does not need to be considered in a process of returning to the current kernel through a mechanism for storing current scenes in the current kernel superuser stack in a unified way during kernel switching, so that the stack operation is simplified and efficient.

The invention discloses android one-key root permission software and relates to the field of software invention. The android one-key root permission software comprises an information identification unit, a driving unit, an information searching unit, an information matching unit, a data converting and outputting unit and an Android Superuser unit, wherein the driving unit is connected with the information identification unit, the information searching unit, the information matching unit and the data converting and outputting unit, the information searching unit is connected with the information matching unit, the data converting and outputting unit is connected with the Android Superuser unit, and the information searching unit is connected with an external root permission library. By the design, a driver and root software are combined, success rate for operation is increased; the root software is in matched connection with the root permission library, so that corresponding files can be selected according to models of mobile phones, and android one-key root permission software is precise, stable and durable.

A computer implemented methods data processing system, and computer program product for configuring a partition with needed system resources to enable an application to run and process in a secure environment. Upon receiving a command to create a short lived secure partition for a secure application, a short lived secure partition is created in the data processing system. This short lived secure partition is inaccessible by superusers or other applications. System resources comprising physical resources and virtual allocations of the physical resources are allocated to the short lived secure partition. Hardware and software components needed to run the secure application are loaded into the short lived secure partition.

The invention discloses an intelligent lock system comprising an intelligent lock terminal and a terminal processing system, wherein the terminal processing system comprises an input module, a terminal server and a plurality of sub-servers; the terminal server is used for storing identity information of super-users corresponding to each intelligent lock and managing the superusers of all intelligent terminals; one sub-server is corresponding to one intelligent lock terminal, and used for performing information management (storing the super-user information and the authorized user information of the intelligent lock, and updating) on the users of the intelligent lock terminal, unlocking verification and recording of unlocking events. The invention is the lock system combined with the intelligent terminal and provided with secondary encryption management, and achieves a transparent security management mechanism; according to the system, the security of the lock under autonomous management can be ensured; convenience of security management of the lock can be achieved; authorization transferring, casual users, paid users and multiple cooperative mechanisms are supported, and thus multiple commercial modes are achieved.

The invention is a multiuser balance account with different operation authorities, having plural users, a super user and several operating users, and different users possess different trade authorities, and the account holder acts as the only super user and holds a super password (changeable or modifiable); the super user establishes and terminates the operating users and sets and cancels trade authorities of the operating users (trade kinds and limit); the operating users hold operating passwords (changeable or modifiable) and make operations only in the authorized range of the super user. It builds a credit platform between super user and operating users.

A cluster of terminals, and an ad-hoc network of two or more such clusters, for carrying a multi-party, cluster-based, conference, wherein each cluster includes a super member comprising a super user agent, and one or more members including a user agent. Communications sessions are established between the super member of each cluster and each member terminals of the same cluster, and between the super members of each one of the first and second clusters. The user agent comprises identity of the super member, a conference identity, cluster parameters including a split value (Sv) indicative of a maximum number of terminals that may be part of the cluster, wherein when Sv is reached during the conference the cluster is split, and a merge value (Mv) indicative of a minimum number of terminals that may be part of the cluster, wherein when Mv is reached the cluster is merged with another cluster. The super user agent comprises a cluster member list, the conference identity, a cluster neighbour list, the one or more terminals also participating to the same conference, and cluster parameters.

The invention discloses a file pulling method, device and system, and relates to the technical field of communication. A system file in a mobile client can be successfully pulled to a PC (Personal Computer). The file pulling method comprises the following steps that the mobile client obtains a superuser (root) privilege which is the highest privilege of the mobile client; under the root privilege, the system file is copied to an external storage region from an internal storage region, and the access privilege of the system file in the external storage region is lower than that of the system file in the internal storage region; under the operation privilege of the PC, the system file in the external storage region is sent to the PC. The file pulling method, device and system provided by the invention are mainly applied to the process of detecting a mobile phone system.

A secure cloud computing environment protects the confidentiality of application code from a customer while simultaneously protecting the confidentiality of a customer's data from intentional or inadvertent leaks by the application code. This result is accomplished without the need to trust the application code and without requiring human surveillance or intervention. A client secure virtual machine (SVM) is accessible by a client who supplies commands, operand data and application data. An appliance SVM has the application code loaded therein and includes an application program interface that accesses a memory area shared by both SVMs. All access to the appliance SVM is initially revoked by an ultravisor, except for the shared memory and an encrypted persistent storage. The appliance SVM stores the application data in the persistent storage. The ultravisor manages an SVM by maintaining exclusive control over a device tree used by the operating system of the SVM.

The present invention is directed to methods and systems in which data are stored as encrypted records on a computer usable medium, and search requests are processed based on user identities to retrieve the data without decrypting all the stored records. Individual decryption keys are associated with identities of respective owners, without being revealed to the owners and are kept internal inside a computer. Finally, all keys are overwritten from the computer usable medium upon completion of each search request to take access away from a superuser or any unauthorized access to the system.

The invention provides a method for dynamically setting a supervisor password. The method comprises the following steps: when a user needs to install one or a plurality of virtual operating systems on a first virtual machine, copying a template operating system corresponding to the virtual operating system, and receiving information used for starting the virtual operating system; requesting a servo center to distribute a password, and meanwhile, sending a network card MAC (Media Access Control) address of the virtual machine to a servo center; and receiving the supervisor password randomly distributed by the servo center, and displaying the supervisor password in a display screen. The invention also provides a system for dynamically setting the supervisor password. Passwords can be randomly generated from the servo center to dynamically and effectively manage an administrator initial password of each operating system.