US 12,135,813 B2
Managing privilege delegation on a computer device
John Goodridge, Cheshire (GB); and Georgina Shippey, Manchester (GB)
Assigned to Avecto Limited, (GB)
Filed by Avecto Limited, Manchester (GB)
Filed on Oct. 9, 2023, as Appl. No. 18/483,318.
Application 18/483,318 is a continuation of application No. 17/522,265, filed on Nov. 9, 2021, granted, now 11,797,704.
Application 17/522,265 is a continuation of application No. 16/269,963, filed on Feb. 7, 2019, granted, now 11,270,013, issued on Mar. 8, 2022.
Claims priority of application No. 1802099 (GB), filed on Feb. 8, 2018.
Prior Publication US 2024/0037268 A1, Feb. 1, 2024
This patent is subject to a terminal disclaimer.
Int. Cl. G06F 21/00 (2013.01); G06F 21/45 (2013.01); G06F 21/60 (2013.01); G06F 21/62 (2013.01)
CPC G06F 21/6218 (2013.01) [G06F 21/45 (2013.01); G06F 21/604 (2013.01)] 20 Claims
OG exemplary drawing
 
1. A computer device, comprising:
a processing circuit;
a memory;
an operating system; and
an agent cooperating with the operating system; wherein the agent is configured to:
intercept a request on the computer device to create a process according to first privileges on the computer device and to obtain information related to the request;
determine whether to create the process on the computer device according to second privileges different from the first privileges, based at least in part on the obtained information, by:
hooking a query provided by the operating system, wherein the hooked query is configured to identify whether a control service is enabled,
enquiring of the operating system whether to create the process on the computer device according to the second privileges, and
confirming, by invoking the hooked query and in response to the enquiring of the operating system, that the control service is enabled; and
in response to determining to create the process on the computer device according to the second privileges, cause the process to be created according to the second privileges by the operating system on the computer device.