| CPC H04L 63/0254 (2013.01) [G06F 16/1734 (2019.01); G06F 21/6218 (2013.01)] | 20 Claims |
|
1. A computer system comprising:
a processing apparatus comprising a processor,
memory comprising a memory device, and
a network interface comprising a network interface device;
the memory storing operating system software arranged to execute on the processing apparatus, the operating system software comprising instructions operative upon execution by the processing apparatus to:
receive, by filesystem driver software of the operating system software, a file access request indicating that an application process running on the processing apparatus is requesting access to a target file in a filesystem of the memory of the computer system;
receive, by the network filter driver software of the operating system software, a connection establishment request indicating that the application process running on the processing apparatus is requesting to establish a connection over a network with a target endpoint via the network interface of the computer system;
via a communication channel for sharing state between the filesystem driver software and the network filter driver software, accessing, by the filesystem driver software, network filter driver software state information; and
by the filesystem driver software, grant or deny the file access request in dependence on the network filter driver software state information.
|