Information security – Monitoring or scanning of software or data including attack... – Intrusion detection
Reexamination Certificate
2005-12-16
2010-02-16
Zand, Kambiz (Department: 2439)
Information security
Monitoring or scanning of software or data including attack...
Intrusion detection
C726S022000, C726S023000, C726S025000, C726S026000, C726S030000, C713S100000, C713S188000
Reexamination Certificate
active
07665139
ABSTRACT:
Accesses to critical tokens are monitored and malicious changes to the security privileges of those critical tokens are detected and prevented.
REFERENCES:
patent: 7191469 (2007-03-01), Erlingsson
Keong, T.C., ‘Defeating Kernel Native API Hookers by Direct Service Dispatch Table Restoration’, Special Interest Group in Security and Information Integrity (SIGΛ2), Oct. 3, 2004, entire document, http://www.security.org.sg/code/SIG2—DefeatingNativeAPIHookers.pdf.
Battistoni, R., et al, ‘An Extended Access Control System For Windows XP’, Sourceforge.net, Nov. 2003, entire document, http://whips.sourceforge.net/res/WHIPSarticle.pdf.
Butler, James, VICE—Catch the hookers! Black Hat, Las Vegas, Jul. 2004. www.blackhat.com/presentations/bh-usa-04/bh-us-04-butler/bh-us-04-butler.pdf.
Szor, P., “The Art of Computer Virus Research and Defense”, 2005, Addison-Wesley, pp. 247-249.
Ferrie Peter
Szor Peter
Baum Ronald
Gunnison Forrest
Gunnison McKay & Hodgson, L.L.P.
Symantec Corporation
Zand Kambiz
LandOfFree
Method and apparatus to detect and prevent malicious changes... does not yet have a rating. At this time, there are no reviews or comments for this patent.
If you have personal experience with Method and apparatus to detect and prevent malicious changes..., we encourage you to share that experience with our LandOfFree.com community. Your opinion is very important and Method and apparatus to detect and prevent malicious changes... will most certainly appreciate the feedback.
Profile ID: LFUS-PAI-O-4171734