Invention Application
US20060150256A1 Secure system for allowing the execution of authorized computer program code
有权
用于允许执行授权的计算机程序代码的安全系统
- Patent Title: Secure system for allowing the execution of authorized computer program code
- Patent Title (中): 用于允许执行授权的计算机程序代码的安全系统
-
Application No.: US11296094Application Date: 2005-12-05
-
Publication No.: US20060150256A1Publication Date: 2006-07-06
- Inventor: Andrew Fanton , John Gandee , William Lutton , Edwin Harper , Kurt Godwin , Anthony Rozga
- Applicant: Andrew Fanton , John Gandee , William Lutton , Edwin Harper , Kurt Godwin , Anthony Rozga
- Assignee: WHITECELL SOFTWARE INC. a Delaware Corporation
- Current Assignee: WHITECELL SOFTWARE INC. a Delaware Corporation
- Main IPC: H04L9/32
- IPC: H04L9/32

Abstract:
Systems and methods are described for allowing the execution of authorized computer program code and for protecting computer systems and networks from unauthorized code execution. In one embodiment, a multi-level proactive whitelist approach is employed to secure a computer system by allowing only the execution of authorized computer program code thereby protecting the computer system against the execution of malicious code such as viruses, Trojan horses, spy-ware, and/or the like. Various embodiments use a kernel-level driver, which intercepts or “hooks” certain system Application Programming Interface (API) calls in order to monitor the creation of processes prior to code execution. The kernel-level driver may also intercept and monitor the loading of code modules by running processes, and the passing of non-executable code modules, such as script files, to approved or running code modules via command line options, for example. Once intercepted, a multi-level whitelist approach may be used to authorize the code execution.
Public/Granted literature
- US07698744B2 Secure system for allowing the execution of authorized computer program code Public/Granted day:2010-04-13
Information query