-
公开(公告)号:US20220255941A1
公开(公告)日:2022-08-11
申请号:US17592667
申请日:2022-02-04
Applicant: VEAA Inc.
Inventor: Jim SIENICKI , Roger LUCAS , Perry WINTNER , Nick JELBERT , Clint SMITH
IPC: H04L9/40 , H04L67/1097 , G06F11/14
Abstract: An edge device may be configured to generate a secure container to perform a software application on the edge device. A security daemon operating on a processor of the edge device may receive a configure host request message from a container manager. In response, the security daemon may determine integrity of metadata, extract licenses from the metadata, determine image permissions, create a user or group account, and update one or more system service access-control lists (ACLs). The security daemon may generate and send a configure host response message to the container manager, which may create and/or start the container.
-
公开(公告)号:US20220255966A1
公开(公告)日:2022-08-11
申请号:US17592632
申请日:2022-02-04
Applicant: VEAA Inc.
Inventor: Jim SIENICKI , Roger LUCAS , Perry WINTNER , Nick JELBERT , Clint SMITH
Abstract: An edge device may be configured to generate a secure container to perform a software application on the edge device. A security daemon operating on a processor of the edge device may receive a security policy for the software application from a secure container platform, retrieve a license associated with the software application, and determine permissions of the software application based on the retrieved license. The edge device may create a user or group account and updating a system service access-control list (ACL) based on the received security policy and the determined permissions, and generate and send a policy ready message to the secure container platform in response to creating the user or group account and updating the system service ACL.
-
公开(公告)号:US12126622B2
公开(公告)日:2024-10-22
申请号:US17592667
申请日:2022-02-04
Applicant: VEAA Inc.
Inventor: Jim Sienicki , Roger Lucas , Perry Wintner , Nick Jelbert , Clint Smith
IPC: H04L9/40 , G06F11/14 , G06F21/10 , H04L67/1097
CPC classification number: H04L63/101 , G06F11/1464 , G06F11/1469 , G06F21/105 , H04L63/0435 , H04L63/102 , H04L63/20 , H04L67/1097 , G06F21/1075
Abstract: An edge device may be configured to generate a secure container to perform a software application on the edge device. A security daemon operating on a processor of the edge device may receive a configure host request message from a container manager. In response, the security daemon may determine integrity of metadata, extract licenses from the metadata, determine image permissions, create a user or group account, and update one or more system service access-control lists (ACLs). The security daemon may generate and send a configure host response message to the container manager, which may create and/or start the container.
-
公开(公告)号:US12015613B2
公开(公告)日:2024-06-18
申请号:US17592632
申请日:2022-02-04
Applicant: VEAA Inc.
Inventor: Jim Sienicki , Roger Lucas , Perry Wintner , Nick Jelbert , Clint Smith
IPC: H04L29/06 , G06F11/14 , G06F21/10 , H04L9/40 , H04L67/1097
CPC classification number: H04L63/101 , G06F11/1464 , G06F11/1469 , G06F21/105 , H04L63/0435 , H04L63/102 , H04L63/20 , H04L67/1097 , G06F21/1075
Abstract: An edge device may be configured to generate a secure container to perform a software application on the edge device. A security daemon operating on a processor of the edge device may receive a security policy for the software application from a secure container platform, retrieve a license associated with the software application, and determine permissions of the software application based on the retrieved license. The edge device may create a user or group account and updating a system service access-control list (ACL) based on the received security policy and the determined permissions, and generate and send a policy ready message to the secure container platform in response to creating the user or group account and updating the system service ACL.
-
-
-