	US 11,882,123 B2
	Kernel level application data protection
Akash Pati, Bangalore (IN); Shivam Srivastav, Bangalore (IN); and Anirudh Singh Rathore, Karnataka (IN)
Assigned to VMware, Inc., Palo Alto, CA (US)
Filed by VMware LLC, Palo Alto, CA (US)
Filed on May 18, 2022, as Appl. No. 17/747,251.
Application 17/747,251 is a continuation of application No. 16/679,711, filed on Nov. 11, 2019, granted, now 11,343,252.
Prior Publication US 2022/0278988 A1, Sep. 1, 2022
Int. Cl. H04L 9/40 (2022.01)

CPC H04L 63/101 (2013.01) [H04L 63/168 (2013.01); H04L 63/20 (2013.01)]

20 Claims

1. A system comprising:

a client device comprising at least one processor; and

a data store comprising executable instructions, wherein the instructions, when executed by the at least one processor, cause the client device to at least:

receive, by a management agent executed by the client device, a security label and a list of permitted applications, wherein the security label is utilized to limit access to files that embed the security label;

invoke, by the management agent executed in user space of the client device, a security label map writing function exposed to the management agent in user space by a user driver executed in kernel space, wherein the user driver writes a security label map within a kernel layer of the client device, the security label map comprising: the security label and the list of permitted applications; and

generate a secured file by embedding the security label within a file stored on the client device.