发明申请
- 专利标题: IDENTIFYING ROOTKITS BASED ON ACCESS PERMISSIONS
- 专利标题(中): 基于访问权限识别基础
-
申请号: US13476898申请日: 2012-05-21
-
公开(公告)号: US20130312095A1公开(公告)日: 2013-11-21
- 发明人: Jonathan L. Edwards , Aditya Kapoor , Michael S. Hughes
- 申请人: Jonathan L. Edwards , Aditya Kapoor , Michael S. Hughes
- 申请人地址: US CA Santa Clara
- 专利权人: MCAFEE, INC.
- 当前专利权人: MCAFEE, INC.
- 当前专利权人地址: US CA Santa Clara
- 主分类号: G06F21/00
- IPC分类号: G06F21/00
摘要:
A method for monitoring for malware includes, during a boot process on an electronic device, determining a portion of memory, determining that the portion of memory is reserved for exclusive access by an entity on the electronic device, and, based on the determination that a portion of memory is reserved for exclusive access during the boot process, determining that the reservation is indicative of malware.
公开/授权文献
- US09317687B2 Identifying rootkits based on access permissions 公开/授权日:2016-04-19
信息查询
