Data processing: software development – installation – and managem – Software program development tool – Testing or debugging
Reexamination Certificate
2005-06-17
2009-10-20
Zhen, Wei Y (Department: 2191)
Data processing: software development, installation, and managem
Software program development tool
Testing or debugging
Reexamination Certificate
active
07607122
ABSTRACT:
A mechanism is provided, where a post-build utility is used to store stack and call tree information within a section of an executable program or separate file. The stack information aids an authentication module during the execution of the program in walking up a stack in order to obtain return addresses on the stack. In one aspect of the invention, by comparing the return address sequence to the call tree sequence, which specifies the allowed function call sequence of the program, a determination can be made whether the program is executing (as evidenced by the stack) the way it should be executing (as required by the call tree). If the call tree sequence differs from the return address sequence, a suspicion is raised that a hacker is attempting to jump from foreign code into sensitive code of the program by changing the function calling sequence.
REFERENCES:
patent: 4454579 (1984-06-01), Pilat et al.
patent: 5103394 (1992-04-01), Blasciak
patent: 5617569 (1997-04-01), Gray et al.
patent: 5663721 (1997-09-01), Rossi
patent: 5696925 (1997-12-01), Koh
patent: 5828883 (1998-10-01), Hall
patent: 5938766 (1999-08-01), Anderson et al.
patent: 5960087 (1999-09-01), Tribble et al.
patent: 6002872 (1999-12-01), Alexander et al.
patent: 6006328 (1999-12-01), Drake
patent: 6049838 (2000-04-01), Miller et al.
patent: 6101326 (2000-08-01), Mattson, Jr.
patent: 6138269 (2000-10-01), Ball et al.
patent: 6141723 (2000-10-01), Lyons
patent: 6158024 (2000-12-01), Mandal
patent: 6212632 (2001-04-01), Surine et al.
patent: 6345313 (2002-02-01), Lindholm
patent: 6446259 (2002-09-01), Brett
patent: 6467052 (2002-10-01), Kaler et al.
patent: 6584478 (2003-06-01), Spertus
patent: 7007159 (2006-02-01), Wyatt
patent: 7093239 (2006-08-01), van der Made
patent: 7155741 (2006-12-01), Sobel et al.
patent: 7409154 (2008-08-01), Wellen
patent: 2002/0013907 (2002-01-01), May
patent: 2004/0255163 (2004-12-01), Swimmer et al.
patent: 2005/0066354 (2005-03-01), Dellow et al.
patent: 2005/0289531 (2005-12-01), Illowsky et al.
patent: 2006/0015937 (2006-01-01), Illowsky et al.
patent: 2006/0020936 (2006-01-01), Wyatt
patent: 2006/0026685 (2006-02-01), Saito
patent: 2006/0161739 (2006-07-01), Genty et al.
patent: 2006/0195617 (2006-08-01), Arndt et al.
patent: 2006/0242700 (2006-10-01), Fischer et al.
patent: 2006/0265749 (2006-11-01), Kwon et al.
patent: 2007/0101317 (2007-05-01), Shoji et al.
patent: 2008/0060077 (2008-03-01), Cowan et al.
patent: WO 2004090733 (2004-10-01), None
Debray et al. “Profile-Guided code compression” Jun. 2002, ACM, pp. 95-105.
Park et al. “Repairing Return Address Stack for Buffer Overflow Protection”, 2004, ACM, SIGMICRO, pp. 335-342.
Pietrek, M., “Under the Hood”, Aug. 1996. Microsoft Systems Journal, http://www.microsoft.com/msj/archive/s402. aspx.
Gang, Qu., “Publicly Detectable Techniques for the Protection Virtual Components”, Jun. 2001, ACM, DAC '01, 474-479.
Salles, et al., “Security of Runtime Extensible Virtual Environments”, Sep. 2002, ACM, CVE '02, 97-104.
In the United States Patent and Trademark Office, Non-Final Office Action in re:. U.S. Appl. No. 11/102,341, filed Apr. 8, 2005, Dated Apr. 16, 2009, 16 pages.
In the United States Patent and Trademark Office, Non-Final Office Action in re:. U.S. Appl. No. 11/102,341, filed Apr. 8, 2005, Dated Jul. 22, 2008, 13 pages.
In the United States Patent and Trademark Office, Final Office Action in re:. U.S. Appl. No. 11/102,341, filed Apr. 8, 2005, Dated Apr. 9, 2008, 15 pages.
In the United States Patent and Trademark Office, Non-Final Office Action in re:. U.S. Appl. No. 11/102,341, filed Apr. 8, 2005, Dated Sep. 21, 2007, 12 pages.
In the United States Patent and Trademark Office, Notice of Allowance and Fee(s) Due in re:. U.S. Appl. No. 11/086,961, filed Mar. 21, 2005, Dated Jun. 19, 2008, 32 pages.
In the United States Patent and Trademark Office, Non-Final Office Action in re:. U.S. Appl. No. 11/086,961, filed Mar. 21, 2005, Feb. 21, 2008, 11 pages.
In the United States Patent and Trademark Office, Non-Final Office Action in re:. U.S. Appl. No. 11/086,961, filed Mar. 21, 2005, Dated Feb. 21, 2008, 11 pages.
Hatlelid Kristjan E.
London Uri
Shubin Vladimir A.
Deng Anna
Microsoft Corporation
Woodcock & Washburn LLP
Zhen Wei Y
LandOfFree
Post build process to record stack and call tree information does not yet have a rating. At this time, there are no reviews or comments for this patent.
If you have personal experience with Post build process to record stack and call tree information, we encourage you to share that experience with our LandOfFree.com community. Your opinion is very important and Post build process to record stack and call tree information will most certainly appreciate the feedback.
Profile ID: LFUS-PAI-O-4087206