-
1.发明授权公开(公告)号:US10650156B2
公开(公告)日:2020-05-12
申请号:US15498115
申请日:2017-04-26
摘要: Systems, methods, and computer program products to perform an operation comprising receiving, from an application executing on a system, a request to access a data file, receiving data describing the request, wherein the data describing the request includes data from a runtime stack of the application, wherein the data from the runtime stack includes a program statement number, identifying, in a protected memory block, a first rule for accessing the data file, wherein the first rule specifies a program statement number permitted to access the data file, and upon determining that the program statement number from the runtime stack does not match the program statement number specified in the first rule, restricting access to the data file by the application.
-
公开(公告)号:US10540523B2
公开(公告)日:2020-01-21
申请号:US15498244
申请日:2017-04-26
摘要: Systems, methods, and computer program products to perform an operation comprising receiving, from an application executing on a system, a request to access a data file, wherein the data file is referenced by a variable name in a source code of the application, receiving data describing the request, wherein the data describing the request is obtained from a runtime stack of the application and includes a name of the application and a name of the data file, wherein the name of the data file is used as a value for the variable name, and storing an indication that the application accessed the data file in a cross-reference data store for the system.
-
公开(公告)号:US09928365B1
公开(公告)日:2018-03-27
申请号:US15339664
申请日:2016-10-31
发明人: Mark J. Anderson , Carol S. Budnik , Anna P. Dietenberger , Scott Forstie , Brian J. Hasselbeck , Allen K. Mei , Ellen B. Streifel , Jeffrey M. Uehling
CPC分类号: G06F21/552 , G06F17/30144 , G06F21/6218 , G06F2221/034
摘要: Systems, methods, and computer program products to perform an operation comprising monitoring a set of file access requests to a file from a first application to obtain a set of call information based on runtime stack information related to calls of the first application requesting access to the file, storing the set of call information in a data file, receiving a request for access to the file from a second application, obtaining call information from a runtime stack from the second application, comparing the call information with the set of call information, determining the request for access is an abnormal request based on the comparing, and taking an action based on the determination.
-
公开(公告)号:US11334686B2
公开(公告)日:2022-05-17
申请号:US16701483
申请日:2019-12-03
摘要: Techniques for computer security are provided. A request to access a first file referenced as a variable in a source code of an application is received. A file name of the first file is then retrieved from a runtime stack, and the file name is stored in a system-wide accessible cross-reference file.
-
公开(公告)号:US10346625B2
公开(公告)日:2019-07-09
申请号:US15339675
申请日:2016-10-31
发明人: Mark J. Anderson , Carol S. Budnik , Anna P. Dietenberger , Scott Forstie , Brian J. Hasselbeck , Allen K. Mei , Ellen B. Streifel , Jeffrey M. Uehling
IPC分类号: G06F21/62
摘要: Systems, methods, and computer program products to perform an operation comprising monitoring a set of file access requests to a file from an application to obtain permission and identity information related to the monitored requests, wherein the monitoring includes obtaining a runtime stack from the application, determining, based on environment information in the runtime stack, whether a first set of privileges available to the application are greater than a second set of privileges available to a the user of the application, storing the permission and identity information and an indication of whether the first set of privileges is greater than the second set of privileges in a data file, and adjusting the privileges for the user based on the determination.
-
公开(公告)号:US09830469B1
公开(公告)日:2017-11-28
申请号:US15339652
申请日:2016-10-31
发明人: Mark J. Anderson , Carol S. Budnik , Anna P. Dietenberger , Scott Forstie , Brian J. Hasselbeck , Allen K. Mei , Ellen B. Streifel , Jeffrey M. Uehling
CPC分类号: G06F21/6218 , G06F21/44
摘要: Systems, methods, and computer program products to perform an operation comprising monitoring a set of file access requests to a file from an application to obtain permission and identity information related to the monitored requests, wherein the monitoring includes obtaining a runtime stack from the application, storing the permission and identity information in a data file, determining for the application and a file of the set of files, privileges available to the application for the available authority based on the stored data file, determining a set of privileges needed by the application to access the file based on the stored data file, selecting privileges for a user of the application based on set of privileges needed by the application and the authority available to the application, and assigning the privileges for the user based on the selected privileges.
-
公开(公告)号:US09317546B2
公开(公告)日:2016-04-19
申请号:US13874529
申请日:2013-05-01
IPC分类号: G06F17/30
CPC分类号: G06F17/30312 , G06F17/30138
摘要: A program identifier, a limit identifier, a minimum value, and an increment value are stored to limit data. The limit identifier identifies a first variable used by the program. In response to storing a data value to a second variable, the stored limit identifier is found and a determination is made whether the stored limit identifier identifies the second variable. If the stored limit identifier identifies the second variable, a determination is made whether the data value is greater than the minimum value. If the data value is greater than the minimum value, the data value is stored to a log if an absolute value of the data value minus a most recently logged data value that was previously stored to the second variable is greater than the increment value. The execution of the program is halted or a user is notified in response to the storing to the log.
摘要翻译: 存储节目标识符,限制标识符,最小值和增量值以限制数据。 限制标识符标识程序使用的第一个变量。 响应于将数据值存储到第二变量,找到存储的限制标识符,并且确定存储的限制标识符是否识别第二变量。 如果存储的限制标识符识别第二变量,则确定数据值是否大于最小值。 如果数据值大于最小值,则如果数据值的绝对值减去先前存储到第二个变量的最近记录的数据值,则该数据值将被存储到日志中。 响应于对日志的存储,中止程序的执行或通知用户。
-
公开(公告)号:US20140330823A1
公开(公告)日:2014-11-06
申请号:US13874529
申请日:2013-05-01
IPC分类号: G06F17/30
CPC分类号: G06F17/30312 , G06F17/30138
摘要: A program identifier, a limit identifier, a minimum value, and an increment value are stored to limit data. The limit identifier identifies a first variable used by the program. In response to storing a data value to a second variable, the stored limit identifier is found and a determination is made whether the stored limit identifier identifies the second variable. If the stored limit identifier identifies the second variable, a determination is made whether the data value is greater than the minimum value. If the data value is greater than the minimum value, the data value is stored to a log if an absolute value of the data value minus a most recently logged data value that was previously stored to the second variable is greater than the increment value. The execution of the program is halted or a user is notified in response to the storing to the log.
摘要翻译: 存储节目标识符,限制标识符,最小值和增量值以限制数据。 限制标识符标识程序使用的第一个变量。 响应于将数据值存储到第二变量,找到存储的限制标识符,并且确定存储的限制标识符是否识别第二变量。 如果存储的限制标识符识别第二变量,则确定数据值是否大于最小值。 如果数据值大于最小值,则如果数据值的绝对值减去先前存储到第二个变量的最近记录的数据值,则该数据值将被存储到日志中。 响应于对日志的存储,中止程序的执行或通知用户。
-
-
-
-
-
-
-
搜索结果
8 条记录 (耗时 0.021 秒)
