US 12,248,575 B2
System and method for monitoring delivery of messages passed between processes from different operating systems
Stanislav V. Pinchuk, Moscow (RU); Andrey Y. Simanovsky, Moscow (RU); and Sergey V. Rogachev, Moscow (RU)
Assigned to AO Kaspersky Lab, Moscow (RU)
Filed by AO Kaspersky Lab, Moscow (RU)
Filed on Jun. 8, 2022, as Appl. No. 17/835,034.
Claims priority of application No. RU2021126158 (RU), filed on Sep. 6, 2021.
Prior Publication US 2023/0074455 A1, Mar. 9, 2023
Int. Cl. G06F 15/16 (2006.01); G06F 9/455 (2018.01); G06F 9/54 (2006.01); G06F 21/57 (2013.01)
CPC G06F 21/57 (2013.01) [G06F 9/45558 (2013.01); G06F 9/546 (2013.01); G06F 2009/45587 (2013.01); G06F 2221/034 (2013.01)] 20 Claims
OG exemplary drawing
 
1. A method for monitoring delivery of messages passed between processes from different operating systems (OS), the method comprising:
creating a proxy process in a first Operating System OS for a second process from a second OS, the first and second OS are installed in respective computing environments, wherein the proxy process includes a programming interface corresponding to the programming interface of the second process;
assigning at least one security policy to the proxy process for monitoring delivery of messages associated with the proxy process, where the messages are transmitted through the programming interface of the proxy process corresponding to the programming interface of the second process;
generating a security monitor for the first OS based on the proxy process and security policies of the first OS, wherein the security monitor runs in a privileged mode on the first OS; and
monitoring, using the security monitor, the delivery of messages between at least a first process in the first OS and the second process of the second OS via the programming interface of the proxy process, wherein the monitoring of the delivery of messages associated with the proxy process is based on the security policies.