| CPC G06F 21/44 (2013.01) [G06F 21/6218 (2013.01)] | 20 Claims |
|
1. A system for controlling access to a workstation, the system comprising:
a communications interface;
at least one memory storing a repository of login credentials, a repository of authorization rules, and instructions;
at least one hardware processor interoperably coupled with the at least one memory and the communications interface, the instructions instructing the at least one hardware processor to perform operations comprising:
executing an overwatch application associated with the workstation, the overwatch application monitoring logins to the workstation;
detecting, by the overwatch application, a login initiated by a limited user associated with a set of credentials, wherein the limited user is associated with at least one non-authorized process or application;
initializing a lockdown application, wherein the lockdown application analyzes hardware inputs to an input/output system of the workstation prior to passing the hardware inputs to a process or application;
identifying, by the lockdown application, at least one unauthorized hardware input based on the authorization rules and the set of credentials, wherein the at least one unauthorized hardware input is associated with a particular non-authorized process or application of the at least one non-authorized process or application associated with the limited user, and wherein the identification occurs prior to the workstation passing the at least one unauthorized hardware input to the particular non-authorized process or application; and
blocking, by the lockdown application, the at least one unauthorized hardware input associated with the workstation, wherein the blocking prohibits the workstation passing the at least one unauthorized hardware input to the particular non-authorized process or application.
|