Triple
T12081183
| Position | Surface form | Disambiguated ID | Type / Status |
|---|---|---|---|
| Subject | Linux kernel hardening |
E287680
|
entity |
| Predicate | usesMechanism |
P1687
|
FINISHED |
| Object |
SMAP (Supervisor Mode Access Prevention)
SMAP (Supervisor Mode Access Prevention) is a CPU security feature that blocks kernel-mode code from unintentionally accessing user-space memory, helping to mitigate exploitation of memory corruption vulnerabilities.
|
E968046
|
NE FINISHED |
How this triple was built (4 steps)
Every LLM step that produced this triple, in pipeline order — named-entity classification, the disambiguation choices (the exact options shown, with the pick highlighted), and the generated description. The batch + timestamp of each is in the Provenance table below.
NER
Named-entity recognition
gpt-5-mini
Instruction
Given a phrase, classify it is english named entity (e.g., persons, organizations, works of art) in Latin script, or not (e.g., literals, dates, URLs, verbose phrases). For disambiguation, the statement where the phrase occurs as object is also given. Please return a JSON object with `phrase` (string, the phrase being analyzed) and `is_ne` (boolean, indicating whether the phrase is a Named Entity).
Input
Phrase: SMAP (Supervisor Mode Access Prevention) | Statement: [Linux kernel hardening, usesMechanism, SMAP (Supervisor Mode Access Prevention)]
NED1
Entity disambiguation (via context triple)
gpt-5-mini-2025-08-07
Target entity: SMAP (Supervisor Mode Access Prevention) Context triple: [Linux kernel hardening, usesMechanism, SMAP (Supervisor Mode Access Prevention)]
-
A.
Trusted Platform Module 2.0
Trusted Platform Module 2.0 is a hardware-based security chip standard that provides cryptographic functions and secure key storage to enhance system integrity and protection against tampering.
-
B.
XD bit (Execute Disable Bit)
XD bit (Execute Disable Bit) is a hardware-based security feature in modern processors that helps prevent certain types of malicious code execution by marking specific areas of memory as non-executable.
-
C.
TOMOYO Linux
TOMOYO Linux is a security-focused enhancement for the Linux kernel that provides mandatory access control through fine-grained, policy-based restrictions on system behavior.
-
D.
Intel MPX
Intel MPX is a hardware-based memory protection extension for Intel processors designed to help prevent buffer overflows by enforcing bounds checking on pointer references.
-
E.
Credential Guard
Credential Guard is a Windows security feature that uses virtualization-based isolation to protect credentials from theft by malware and other attacks.
- F. None of above. chosen
- G. Unsure - the case is ambiguous/there is not enough information to decide.
NEDg
Description generation
gpt-5.1
Instruction
Generate a one-sentence description of the target entity. You are given a context triple in the form (subject, predicate, object), where the object is the target entity. # Instructions Use the triple to infer relevant information about the entity. Describe the entity based on what is most defining, well-known. Avoid repeating the information from the triple, unless really essential. # Response Format Return only the sentence: "Description: [one-sentence description of the target entity]"
Input
Entity: SMAP (Supervisor Mode Access Prevention) Triple: [Linux kernel hardening, usesMechanism, SMAP (Supervisor Mode Access Prevention)]
Generated description
SMAP (Supervisor Mode Access Prevention) is a CPU security feature that blocks kernel-mode code from unintentionally accessing user-space memory, helping to mitigate exploitation of memory corruption vulnerabilities.
NED2
Entity disambiguation (via description)
gpt-5-mini-2025-08-07
Target entity: SMAP (Supervisor Mode Access Prevention) Target entity description: SMAP (Supervisor Mode Access Prevention) is a CPU security feature that blocks kernel-mode code from unintentionally accessing user-space memory, helping to mitigate exploitation of memory corruption vulnerabilities.
-
A.
Trusted Platform Module 2.0
Trusted Platform Module 2.0 is a hardware-based security chip standard that provides cryptographic functions and secure key storage to enhance system integrity and protection against tampering.
-
B.
XD bit (Execute Disable Bit)
XD bit (Execute Disable Bit) is a hardware-based security feature in modern processors that helps prevent certain types of malicious code execution by marking specific areas of memory as non-executable.
-
C.
TOMOYO Linux
TOMOYO Linux is a security-focused enhancement for the Linux kernel that provides mandatory access control through fine-grained, policy-based restrictions on system behavior.
-
D.
Intel MPX
Intel MPX is a hardware-based memory protection extension for Intel processors designed to help prevent buffer overflows by enforcing bounds checking on pointer references.
-
E.
Credential Guard
Credential Guard is a Windows security feature that uses virtualization-based isolation to protect credentials from theft by malware and other attacks.
- F. None of above. chosen
Provenance (5 batches)
The batch behind each pipeline step, in order, with when it ran. Timestamps are batch-level — stages were processed in waves, so the object chain (NER → NED1 → NEDg → NED2) reads in order, but predicate / elicitation batches can sit in a different wave.
| Step | Stage | Batch ID | Status | When |
|---|---|---|---|---|
| creating | Elicitation | batch_69d6ab4964708190850585628b287b0c |
completed | April 8, 2026, 7:23 p.m. |
| NER | Named-entity recognition | batch_69d904dc98a88190a5873f3fd8e1a0b2 |
completed | April 10, 2026, 2:10 p.m. |
| NED1 | Entity disambiguation (via context triple) | batch_69f5f66509208190b7206e78df41c2fe |
completed | May 2, 2026, 1:04 p.m. |
| NEDg | Description generation | batch_69f6022ecf38819080f0eb6a3a815c5b |
completed | May 2, 2026, 1:54 p.m. |
| NED2 | Entity disambiguation (via description) | batch_69f606560934819092ba4d4fa162b799 |
completed | May 2, 2026, 2:12 p.m. |
Created at: April 8, 2026, 9:48 p.m.