公开(公告)号：US20200014741A1

公开(公告)日：2020-01-09

申请号：US16503230

申请日：2019-07-03

Applicant: Samsung Electronics Co., Ltd.

Inventor： Khaled ElWazeer ,  Ivan Getta ,  Myungsu Cha ,  Ahmed M. Azab ,  Rohan Bhutkar ,  Guruprasad Ganesh ,  Wenbo Shen ,  Ruowen Wang ,  Junyong Choi

IPC: H04L29/06 ,  G06F9/54 ,  G06F9/48 ,  G06F9/38

Abstract: This disclosure relates to an electronic device including a memory and at least one processor coupled to the memory. The at least one processor is configured to execute a daemon process in one of a container or a host operating system, wherein the daemon process is configured to manage data transfer between the container and the host operating system, create, via the daemon process, an inter-process communication (IPC) channel between the container and the host operating system, receive incoming audio data, and buffer the incoming audio data to the IPC channel.

公开(公告)号：US20200012511A1

公开(公告)日：2020-01-09

申请号：US16504075

申请日：2019-07-05

Applicant: Samsung Electronics Co., Ltd.

Inventor： Guruprasad Ganesh ,  Sudhi Herle ,  Ahmed M. Azab ,  Rohan Bhutkar ,  Ivan Getta ,  Xun Chen ,  Wenbo Shen ,  Ruowen Wang ,  Haining Chen ,  Khaled Elwazeer ,  Mengmeng Li ,  Peng Ning ,  Hyungseok Yu ,  Myungsu Cha ,  Kyungsun Lee ,  Se Young Choi ,  Yurak Choe ,  Yong Shin ,  Kyoung-Joong Shin ,  Donguk Seo ,  Junyong Choi

IPC: G06F9/455 ,  G06F9/48 ,  G06F9/54 ,  G06F9/445

Abstract: A method for operating an electronic device, the method including spawning a name space tool (NST) as part of a boot process of a host OS, wherein the NST is a process with a plurality of root privileges of the host OS. The method further includes spawning, by the NST, a container for a guest OS, wherein the container for the guest OS is mapped to a dedicated domain in the host OS, and dropping, by the NST, a root privilege of the host OS in response to spawning the container for the guest OS.

公开(公告)号：US11985132B2

公开(公告)日：2024-05-14

申请号：US16399865

申请日：2019-04-30

Applicant: Samsung Electronics Co., Ltd.

Inventor： Haining Chen ,  Xun Chen ,  Khaled ElWazeer ,  Ahmed M. Azab ,  David Thomson ,  Ruowen Wang ,  Wei Yang ,  Peng Ning

IPC: H04L29/06 ,  H04L9/40

CPC classification number: H04L63/102 ,  H04L63/08

Abstract: A method of providing continuous user authentication for resource access control includes launching a continuous authentication service at a boot time of a first device, wherein the first device includes a processor, a memory, and one or more sensors configured to collect authentication information. Additionally, the method includes receiving authentication information comprising one or more of explicit authentication information or implicit authentication information, and receiving a request for access to a resource of the first device. Further, the method includes the operations of determining, by the continuous authentication service, a current value of a security state, the current value of the security state based in part on a time interval between a receipt time of the authentication information and a current time and controlling access to the resource based on the current value of the security state.

公开(公告)号：US11032342B2

公开(公告)日：2021-06-08

申请号：US16503230

申请日：2019-07-03

Applicant: Samsung Electronics Co., Ltd.

Inventor： Khaled ElWazeer ,  Ivan Getta ,  Myungsu Cha ,  Ahmed M. Azab ,  Rohan Bhutkar ,  Guruprasad Ganesh ,  Wenbo Shen ,  Ruowen Wang ,  Junyong Choi

IPC: H04L29/06 ,  G06F9/38 ,  G06F9/48 ,  G06F9/54

Abstract: This disclosure relates to an electronic device including a memory and at least one processor coupled to the memory. The at least one processor is configured to execute a daemon process in one of a container or a host operating system, wherein the daemon process is configured to manage data transfer between the container and the host operating system, create, via the daemon process, an inter-process communication (IPC) channel between the container and the host operating system, receive incoming audio data, and buffer the incoming audio data to the IPC channel.

公开(公告)号：US11042398B2

公开(公告)日：2021-06-22

申请号：US16504075

申请日：2019-07-05

Applicant: Samsung Electronics Co., Ltd.

Inventor： Guruprasad Ganesh ,  Sudhi Herle ,  Ahmed M. Azab ,  Rohan Bhutkar ,  Ivan Getta ,  Xun Chen ,  Wenbo Shen ,  Ruowen Wang ,  Haining Chen ,  Khaled Elwazeer ,  Mengmeng Li ,  Peng Ning ,  Hyungseok Yu ,  Myungsu Cha ,  Kyungsun Lee ,  Se Young Choi ,  Yurak Choe ,  Yong Shin ,  Kyoung-Joong Shin ,  Donguk Seo ,  Junyong Choi

IPC: G06F9/455 ,  G06F9/48 ,  G06F9/54 ,  G06F9/445

Abstract: A method for operating an electronic device, the method including spawning a name space tool (NST) as part of a boot process of a host OS, wherein the NST is a process with a plurality of root privileges of the host OS. The method further includes spawning, by the NST, a container for a guest OS, wherein the container for the guest OS is mapped to a dedicated domain in the host OS, and dropping, by the NST, a root privilege of the host OS in response to spawning the container for the guest OS.

公开(公告)号：US20200042366A1

公开(公告)日：2020-02-06

申请号：US16524771

申请日：2019-07-29

Applicant: Samsung Electronics Co., Ltd.

Inventor： Guruprasad Ganesh ,  Ahmed M. Azab ,  Rohan Bhutkar ,  Haining Chen ,  Ruowen Wang ,  Xun Chen ,  Donguk Seo ,  Kyoung-Joong Shin

IPC: G06F9/54 ,  G06F9/455 ,  H04L29/08 ,  G06F21/62

Abstract: This disclosure relates to an electronic device including a memory and at least one processor coupled to the memory. The at least one processor is configured to identify a device change event in a host operating system, wherein the host operating system includes a host namespace, switch from the host namespace to a container namespace of a container, and update the container with information based on the device change event.

公开(公告)号：US11656924B2

公开(公告)日：2023-05-23

申请号：US16524771

申请日：2019-07-29

Applicant: Samsung Electronics Co., Ltd.

Inventor： Guruprasad Ganesh ,  Ahmed M. Azab ,  Rohan Bhutkar ,  Haining Chen ,  Ruowen Wang ,  Xun Chen ,  Donguk Seo ,  Kyoung-Joong Shin

IPC: G06F15/02 ,  G06F9/54 ,  G06F21/62 ,  H04L67/00 ,  G06F9/455

CPC classification number: G06F9/545 ,  G06F9/45545 ,  G06F21/6218 ,  H04L67/34

Abstract: An electronic device includes a memory and at least one processor coupled to the memory. The at least one processor is configured to identify a device change event in a host operating system, wherein the host operating system includes a host namespace, switch from the host namespace to a container namespace of a container, and update the container with information based on the device change event.

公开(公告)号：US20190342298A1

公开(公告)日：2019-11-07

申请号：US16399865

申请日：2019-04-30

Applicant: Samsung Electronics Co., Ltd.

Inventor： Haining Chen ,  Xun Chen ,  Khaled ElWazeer ,  Ahmed M. Azab ,  David Thomson ,  Ruowen Wang ,  Wei Yang ,  Peng Ning

IPC: H04L29/06

Abstract: A method of providing continuous user authentication for resource access control includes launching a continuous authentication service at a boot time of a first device, wherein the first device includes a processor, a memory, and one or more sensors configured to collect authentication information. Additionally, the method includes receiving authentication information comprising one or more of explicit authentication information or implicit authentication information, and receiving a request for access to a resource of the first device. Further, the method includes the operations of determining, by the continuous authentication service, a current value of a security state, the current value of the security state based in part on a time interval between a receipt time of the authentication information and a current time and controlling access to the resource based on the current value of the security state.