VMware, Inc.
Kernel level application data protection

Abstract:

Disclosed are various examples for kernel level application data protection. In one example, a security label map is written to a kernel layer. The security label map includes a security label and a list of permitted applications for files originated by a protected application. A file access system call is intercepted by kernel-level management instructions. An application identity is identified for an application requesting to access a secure file. Access to the secured file is permitted or denied based on a comparison of the application identity with the list of permitted applications.