CPC H04L 63/101 (2013.01) [H04L 63/168 (2013.01); H04L 63/20 (2013.01)] | 20 Claims |
1. A system comprising:
a client device comprising at least one processor; and
a data store comprising executable instructions, wherein the instructions, when executed by the at least one processor, cause the client device to at least:
receive, by a management agent executed by the client device, a security label and a list of permitted applications, wherein the security label is utilized to limit access to files that embed the security label;
invoke, by the management agent executed in user space of the client device, a security label map writing function exposed to the management agent in user space by a user driver executed in kernel space, wherein the user driver writes a security label map within a kernel layer of the client device, the security label map comprising: the security label and the list of permitted applications; and
generate a secured file by embedding the security label within a file stored on the client device.
|