Abstract: A method is disclosed for providing process-based security in a special purpose computer system, comprising the steps of: configuring the special purpose computer with an operating system and at least one application for operation as a computer appliance; associating a resource access table with the at least one application, addressable by the at least one application, containing statements corresponding to predetermined requests for access to at least a one specified resource during running of the at least one application wherein the resource access table statements include information defining an execution path for the at least one application; interpreting the resource access table statements upon a request for the specified resource by the at least one application, wherein at least one of the statements in the resource access table provides for performing a security check prior to granting access to the specified resource; and causing the execution of the at least one application, upon granting access to

Abstract: A network device includes a system for providing access to network device resources. A network device processor executes processes. Network device resources are accessed by the network device processor when executing the process. User resource access data is associated with the process, representing resource access permissions. Before the network device processor accesses the network device resource, the network device processor refers to the user resource access data associated with the process to determine if the process has permission to access the network device resource.

Abstract: A memory structure stores instructions for a method of providing access for a user to resources through a process. The process includes receiving user identification information and identifying user resource access information associated with the user identification information. The user resource access information includes process resource access information associated with a process. The process determines when an executing process attempts to accesses a specified resource and checks the process resource access information associated with the process when the process attempts to access the specified resource. The process determines if access to the specified resource by the process is permitted and allows the process to access the specified resource if access permission is indicated and denies the process access to the specified resource if access permission is not indicated.

Abstract: A portable electronic device includes a system for providing access to portable electronic device resources a portable electronic device processor executes a process which attempts to access a portable electronic device resource. The resource is accessed by the portable electronic device processor during the execution of the process. User resource access data associated with the process representing resource access permissions. Before the portable electronic device processor accesses the portable electronic device resource, the portable electronic device processor refers to the user resource access data associated with the process to determine if the process has permission to access the portable electronic device resource.

Abstract: A method and system for performing a key exchange between a client and a server having a process-based security system begins by sending user identification information from the client to the server. The server modifies the task structure of the client by the server to reflect a pending request for key exchange. The server generates a first random number and sends the first random number to the client. The server retrieves a password associated with the user identification information from storage. A user enters a password at the client. The server and the client then each calculate a first key using a transformative function operating on the password and the first random number. The client and server then use the result of the calculated first key as a first key. The server modifies the task structure of the client to reflect the completion of the key exchange.

Abstract: A system and method for secure file transfer between a first client and a second client each communicably connected to a secure file transfer server implementing a process-based security system authenticates a first client and checks a first client resource access table for permission to store data. The secure file transfer server receives data from the first client and stores the received data in secure file transfer storage. The secure file transfer server then authenticates a second client and receives a request from said second client for access to said stored received data. The secure file transfer server checks the second client resource access table for permission to access said stored received data and provides access to the second client where the resource access table indicates access permission or denies access to the second client where the resource access table does not indicate access permission.

Abstract: The disclosed system and method provides an auto-rebuild feature in a digital device including a first memory device and a second memory device. When the digital device is initialized, the digital device checks the first memory device to determine if the first memory device includes a first boot sequence. If the first boot sequence is present, the digital device is booted using the first boot sequence on the first memory device. If the boot sequence is not present, the digital device reads a second boot sequence from the second memory device. The digital device then boots using the second boot sequence. The booting process of the second boot sequence reformats the first memory device, reads software from the second memory device and stores the software on the first memory device.

Abstract: A system and method for providing access for a user to resources receives user identification information and loads user resource access information associated with the user identification information including process resource access information associated with a process. The system executes processes where the process accesses resources. When the process accesses resources, the system checks the process resource access information when the process attempts to access a specified resource to determine if the access of the specified resource by the process is permitted and allows the process to access the specified resource if access is permitted or denies the process access to the specified resource if access is not permitted.

Abstract: A system and method for authenticating a user in a process-based security system between an authenticating process and an authentication module, begins when the authenticating process sends an initiation request to an authentication module. The authentication module modifies a task structure of the authenticating process to indicate the initiation request and generates a random number. The random number is sent to the authenticating process. The authenticating process performs a transformative function on said random number and a user password to form first authenticating data. The first authenticating data and user identification data is sent to the authentication module. The authentication module retrieves a user password associated with the received user identification data and performs the transformative function on the random number and said retrieved user password to form second authenticating data.

Abstract: A method is disclosed for providing process-based security in a special purpose computer system, comprising the steps of: configuring the special purpose computer with an operating system and at least one application for operation as a computer appliance; associating a resource access table with the at least one application, addressable by the at least one application, containing statements corresponding to predetermined requests for access to at least a one specified resource during running of the at least one application wherein the resource access table statements include information defining an execution path for the at least one application; interpreting the resource access table statements upon a request for the specified resource by the at least one application, wherein at least one of the statements in the resource access table provides for performing a security check prior to granting access to the specified resource; and causing the execution of the at least one application, upon granting access to