| 发明名称 | Mandatory protection control in virtual machines | ||
| 摘要 | A method and system for authenticating a user to provide access to a secure application configured on a mobile device are disclosed. The method includes receiving an input from the user. The input is associated with a plurality of parameters. The method includes extracting a biometric pattern based on the input. The biometric pattern may be generated from the plurality of parameters associated with the input. The method may include comparing the biometric pattern with a plurality of reference patterns. The plurality of reference patterns are pre-defined by an owner of the mobile device. Furthermore, the method may include authenticating the user when the biometric pattern matches a reference pattern associated with the secure application from the plurality of reference patterns. Moreover, the method includes allowing the user to access the secure application, based on the authentication. | ||
| 申请公布号 | US9374377(B2) | 申请公布日期 | 2016.06.21 |
| 申请号 | US201314413247 | 申请日期 | 2013.07.09 |
| 申请人 | Alcatel Lucent | 发明人 | Clevy Laurent;Venelle Benjamin;Toinard Christian;Briffaut Jeremy |
| 分类号 | H04L29/06;G06F21/53;G06F21/54;G06F21/62 | 主分类号 | H04L29/06 |
| 代理机构 | Patti & Malvone Law Group, LLC | 代理人 | Patti & Malvone Law Group, LLC |
| 主权项 | 1. A method for ensuring Mandatory Access Control in a virtual machine adapted for running object oriented programs and based on strongly typed language, by means of a mandatory access control module, said method comprising: configuring the mandatory access control module with an access policy upon reception of an event indicating a launch or an initialization of the virtual machine wherein events are standardized instrumentation oriented events which activate callback functions; upon event reception indicating a method invocation or an access request to a variable member, adding an access control label to an object calling the method or requesting access, named “caller”, and the object called by the method or whose access is requested, named “callee”, according to the caller and callee language types; making a decision of blocking execution of the method or the access to the variable member, named “negative decision”, or a decision of letting the virtual machine run the method or access the variable member, named “positive decision”, according to said access control labels, instance numbers of the caller and the callee, the access policy, and access permissions; transmitting said decision to the virtual machine for blocking or granting the execution of the requested method or the access to the variable member. | ||
| 地址 | Boulogne-Billancourt FR | ||