Invention Grant
US08856933B2 Secure system for allowing the execution of authorized computer program code
有权
用于允许执行授权的计算机程序代码的安全系统
- Patent Title: Secure system for allowing the execution of authorized computer program code
- Patent Title (中): 用于允许执行授权的计算机程序代码的安全系统
-
Application No.: US14139767Application Date: 2013-12-23
-
Publication No.: US08856933B2Publication Date: 2014-10-07
- Inventor: Andrew F. Fanton , John J. Gandee , William H. Lutton , Edwin L. Harper , Kurt E. Godwin , Anthony A. Rozga
- Applicant: Fortinet, Inc.
- Applicant Address: US CA Sunnyvale
- Assignee: Fortinet, Inc.
- Current Assignee: Fortinet, Inc.
- Current Assignee Address: US CA Sunnyvale
- Agency: Hamilton, DeSanctis & Cha LLP
- Main IPC: G06F11/00
- IPC: G06F11/00 ; G06F21/51 ; G06F21/60 ; H04L29/06 ; G06F21/52 ; G06F21/44 ; G06F21/53 ; G06F21/10
Abstract:
Systems and methods for selective authorization of code modules are provided. According to one embodiment, a trusted service provider maintain a cloud-based whitelist containing cryptographic hash values including those of code modules that are approved for execution on computer systems of subscribers of the service provider. A code module information query, including a cryptographic hash value of a code module, is received from a computer system of a subscriber by the service provider. If the cryptographic hash value matches one the cryptographic hash values contained within the cloud-based whitelist and the code module is an approved code module, then the service provider responds with an indication that the code module is authorized for execution; otherwise, it (i) responds with an indication that the code module is an unknown code module; and (ii) causes one or more behavior analysis techniques to be performed on the code module.
Public/Granted literature
- US20140115323A1 SECURE SYSTEM FOR ALLOWING THE EXECUTION OF AUTHORIZED COMPUTER PROGRAM CODE Public/Granted day:2014-04-24
Information query
