Resources | Resources |




Components can use privileges to control access to their internal resources. Privileges control security by limiting the functionality an application is allowed to access. An application can list multiple privileges in its CIF. Each listed privilege allows the application to use the functionality controlled by the privilege.

When the process requests new services by calling IRemote_Open(), it presents a privilege set to OS Services. Access to the service is denied if the caller does not hold the required privilege.

After OS Services has verified that the caller has the correct privilege to access the service, the service may need to use IPrivSet to inspect the set of privileges passed from the caller to determine whether the caller has the appropriate privileges to perform the requested action (such as reading a file or obtaining an interface pointer).

This section provides information on IPrivSet and an example of using IPrivSet to verify caller privileges. For more information on privileges, see the Programming Model in on the Brew MP website.