专利名称:Secure system for allowing the execution of
authorized computer program code
发明人:Andrew F. Fanton,John J. Gandee,William H.
Lutton,Edwin L. Harper,Kurt E.Godwin,Anthony A. Rozga
申请号:US14487348申请日:20140916公开号:US09075984B2公开日:20150707
专利附图:
摘要:Systems and methods for selective authorization of code modules are provided.
According to one embodiment, file system or operating system activity relating to a codemodule is intercepted by a kernel mode driver of a computer system. The code moduleis selectively authorized by the kernel mode driver by authenticating a contentauthenticator of the code module with reference to a multi-level whitelist. The multi-level whitelist includes (i) a global whitelist database remote from the computer systemthat contains content authenticators of approved code modules that are known not tocontain viruses or malicious code and (ii) a local whitelist database containing contentauthenticators of at least a subset of the approved code modules. The activity relating tothe code module is allowed when the content authenticator matches one of the contentauthenticators of approved code modules within the multi-level whitelist.
申请人:Fortinet, Inc.
地址:Sunnyvale CA US
国籍:US
代理机构:Hamilton, DeSanctis & Cha LLP
更多信息请下载全文后查看
因篇幅问题不能全部显示,请点此查看更多更全内容