Method of restricting access to Inter Process Communications Mechanisms using Public Key Cryptography
Original Publication Date: 2000-Mar-01
Included in the Prior Art Database: 2003-Jun-18
Method of restricting access to Inter Process Communications Mechanisms using Public Key Cryptography With the explosive growth of the Internet, security concern are becoming more important daily. These concerns require computing systems to have more robust access controls than the classical User/Group/Other methods incorporated in traditional Unix systems can provide. With applications being built of component processes that interact with interprocess communications (IPC’s) (i.e. Shared Memory, Message Queues, and Semaphores), the classical access methods allow individuals who obtain unauthorized entry into a system to have catastrophic effects on the subsystems through subsequent unsanctioned access to the IPC data structures. We will show how to use digital certificates to control such accesses and eliminate the threats of unknown attackers. Restricting access to IPC’s via digital certificates and signatures allows the operating system to authenticate processes attempting to access system IPCs. Using the shared memory IPC as an example we will compare the classic vs. the proposed certificate based access control.