	US 12,277,213 B2
	Method and device for securely starting up a container instance
Christian Peter Feist, Munich (DE); and Christian Knierim, Munich (DE)
Assigned to SIEMENS AKTIENGESELLSCHAFT, Munich (DE)
Appl. No. 17/922,194
Filed by Siemens Aktiengesellschaft, Munich (DE)
PCT Filed Apr. 27, 2021, PCT No. PCT/EP2021/060939 § 371(c)(1), (2) Date Oct. 28, 2022, PCT Pub. No. WO2021/224062, PCT Pub. Date Nov. 11, 2021.
Claims priority of application No. 20172838 (EP), filed on May 5, 2020.
Prior Publication US 2023/0161867 A1, May 25, 2023
Int. Cl. G06F 21/32 (2013.01); G06F 21/53 (2013.01)

CPC G06F 21/53 (2013.01) [G06F 21/32 (2013.01); G06F 2221/033 (2013.01)]

10 Claims

1. A method for securely starting up a container instance in one or more execution environments for one or more components of a technical installation, such an execution environment being designed to execute the container instance, the method comprising:

a) providing a configurable check function that is performed before and/or while starting up the container instance;

b) logging each step for preparing at least one execution limitation required for starting up and/or executing the container instance;

c) checking each logged step using at least one permissibility criterion configured in the check function, wherein the at least one permissibility criterion is a rights signature to be fulfilled; and

d) completing a startup and if necessary the execution of the container instance, in response to the at least one permissibility criterion being satisfied, or

e) initiating an alerting measure or a measure that counteracts the startup in response to at the least one permissibility criteria not being satisfied.