06279111 is referenced by 139 patents and cites 38 patents.

A restrict ed access token is created from an existing token, and provides less access than that token. A restricted token may be created by changing an attribute of one or more security identifiers allowing access in the parent token to a setting that denies access in the restricted token and/or removing one or more privileges from the restricted token relative to the parent token. A restricted access token also may be created by adding restricted security identifiers thereto. Once created, a process associates another process with the restricted token to launch the other process in a restricted context that is a subset of its own rights and privileges. A kernel-mode security mechanism determines whether the restricted process has access to a resource by first comparing user-based security identifiers in the restricted token and the intended type of action against a list of identifiers and actions associated with the resource. If no restricted security identifiers are in the restricted token, access is determined by this first check, otherwise a second access check further compares the restricted security identifiers against the list of identifiers and actions associated with the resource. With a token having restricted security identifiers, the process is granted access if both the first and second access checks pass. In this manner, a process is capable of restricting another process, such as possibly unruly code, in the actions it can perform.

Title
Security model using restricted tokens
Application Number
9/96926
Publication Number
6279111 (B1)
Application Date
June 12, 1998
Publication Date
August 21, 2001
Inventor
Shannon J Chan
Bellevue
WA, US
Mario C Goertzel
Kirkland
WA, US
Michael M Swift
Seattle
WA, US
Praerit Garg
Kirkland
WA, US
Gregory Jensenworth
Redmond
WA, US
Agent
Michalik & Wylie PLLC
US
Assignee
Microsoft Corporation
WA, US
IPC
G06F 12/14
View Original Source