Information security – Monitoring or scanning of software or data including attack...
Reexamination Certificate
2007-10-09
2007-10-09
Arani, Taghi (Department: 2139)
Information security
Monitoring or scanning of software or data including attack...
C726S001000, C713S187000, C713S188000, C713S189000, C710S001000, C710S100000, C710S200000, C710S240000, C710S260000
Reexamination Certificate
active
11055197
ABSTRACT:
A system, method and computer program product are provided which are capable of intercepting a call. Once intercepted, it is determined whether the call is associated with a previous sequence of calls in order to identify a correct sequence of calls associated with the intercepted call. Next, the call is associated with the correct sequence of calls. State information that is associated with the call is then gathered. Further, sequence state information is updated, and it is determined whether a process is unwanted based, at least in part, on such sequence state information. If it is determined that the process is unwanted, a reaction may be made to the unwanted process. If it is not determined that the process is unwanted, a next call may be intercepted, and so on.
REFERENCES:
patent: 6275938 (2001-08-01), Bond et al.
patent: 2003/0182572 (2003-09-01), Cowan et al.
patent: 2005/0166001 (2005-07-01), Conover et al.
Cowan et al., StackGuard: Automatic Adaptive detection and Prevention of Buffer-Overflow Attacks, 7thUSENIX Security Symposium, 1998.
Baratloo et al., Transparent Run-time Defense against Stack-Smashing Attacks, USENIX Annual Conference, general Session, Jun. 2000.
Cowan, Cripsin, “Array Bounds Checking for C” http://www.usenix.org/publication/library/proceedings/sec98/full—papers/cowan/cowan—html
ode23.html.
Cowan, Crispin, “Memory Access Checking” http://www.usemix.org/publications/library/proceedings/sec98/full—papers/cowan/cowan—html
ode24.html.
Cowan, Crispin, “Type-Safe Languages” http://www.usnix.org/publications/library/proceedings/sec98/full—papers/cowan/cowan—html
ode25.html.
Cowan, Crispin, “Conclusions” http://www.usenix.org/publications/library/proceedings/sec98/full—papers/cowan/cowan—html
ode26.html.
Cowan, Crispin, “Availability” http://www.usenix.org/publications/library/proceedings/sec98/full—papers/cowan/cowan—html
ode27.html.
“References” http://www.usenix.org/publications/library/proceedings/sec98/full—papers/cowan/cowan—html
ode28.html.
Hollander Yona
Horovitz Oded
Arani Taghi
Hamaty Christopher J.
McAfee, Inc.
Zilka-Kotab, PC
LandOfFree
System, method and computer program product for detection of... does not yet have a rating. At this time, there are no reviews or comments for this patent.
If you have personal experience with System, method and computer program product for detection of..., we encourage you to share that experience with our LandOfFree.com community. Your opinion is very important and System, method and computer program product for detection of... will most certainly appreciate the feedback.
Profile ID: LFUS-PAI-O-3902107