公开(公告)号：US10114945B2

公开(公告)日：2018-10-30

申请号：US14701561

申请日：2015-05-01

Applicant: Citrix Systems, Inc.

Inventor： Gary Barton ,  Brandon Olekas

IPC: G06F21/55 ,  G06F21/62 ,  G06F21/72 ,  H04L29/08

Abstract: Methods and systems for preventing clock rollback attacks are described herein. A rollback attack may occur when a user manually sets a system clock to a date/time earlier than the actual present day date and time, thereby tricking any software relying on the system clock to believe it is in fact the earlier date and time rather than the current date and time. According to aspects described herein, a particular application may check and store a record of the system time when an application goes inactive (or at intervals) and again when the application subsequently is activated again. When the application determines that the time has gone backward, the application (or system) may take some remedial measure(s) to prevent further use of the application (or system) until the user reestablishes trust (e.g., by reauthenticating or reestablishing a connection with a trusted time server).

公开(公告)号：US20150317478A1

公开(公告)日：2015-11-05

申请号：US14701561

申请日：2015-05-01

Applicant: Citrix Systems, Inc.

Inventor： Gary Barton ,  Brandon Olekas

IPC: G06F21/55 ,  G06F21/62

CPC classification number: G06F21/55 ,  G06F21/554 ,  G06F21/629 ,  G06F21/725 ,  G06F2221/034 ,  G06F2221/2135 ,  G06F2221/2137 ,  G06F2221/2139 ,  H04L67/125

Abstract: Methods and systems for preventing clock rollback attacks are described herein. A rollback attack may occur when a user manually sets a system clock to a date/time earlier than the actual present day date and time, thereby tricking any software relying on the system clock to believe it is in fact the earlier date and time rather than the current date and time. According to aspects described herein, a particular application may check and store a record of the system time when an application goes inactive (or at intervals) and again when the application subsequently is activated again. When the application determines that the time has gone backward, the application (or system) may take some remedial measure(s) to prevent further use of the application (or system) until the user reestablishes trust (e.g., by reauthenticating or reestablishing a connection with a trusted time server).

Abstract translation: 本文描述了用于防止时钟回滚攻击的方法和系统。 当用户手动将系统时钟设置为比实际当前日期和时间早的日期/时间时，可能会发生回滚攻击，从而欺骗任何依赖于系统时钟的软件，以相信它实际上是早期的日期和时间，而不是 当前日期和时间。 根据本文描述的方面，特定应用可以检查和存储当应用程序变得不活动（或间隔））并再次当应用程序再次被激活时系统时间的记录。 当应用程序确定时间已经退回时，应用程序（或系统）可能采取一些补救措施，以防止进一步使用应用程序（或系统），直到用户重新建立信任（例如，通过重新验证或重新建立连接 与可信时间服务器）。