-
公开(公告)号:US09069766B2
公开(公告)日:2015-06-30
申请号:US13667371
申请日:2012-11-02
Applicant: Microsoft Corporation
Inventor: Alexander Nikolaevich Moshchuk , Jiahe H. Wang , Yunxin Liu
CPC classification number: H04L63/1408 , G06F11/30 , G06F17/30067 , G06F21/53 , G06F21/60 , H04L63/10
Abstract: The subject disclosure is directed towards securing a computing device using content-based isolation. When the computing device requests content data having different ownership, a monitor component identifies and groups trusted portions of the content data into one or more isolation containers such that only trusted programs are permitted access. Other programs are, therefore, untrusted and can be denied access in order to prevent malicious activity, unless access is approved by the content owner.
Abstract translation: 本发明涉及使用基于内容的隔离来保护计算设备。 当计算设备请求具有不同所有权的内容数据时,监视器组件将内容数据的受信任部分识别并分组成一个或多个隔离容器,使得仅允许信任的程序访问。 因此,其他程序是不受信任的,可以拒绝访问,以防止恶意活动,除非内容所有者批准访问。
-
公开(公告)号:US20140130150A1
公开(公告)日:2014-05-08
申请号:US13667371
申请日:2012-11-02
Applicant: MICROSOFT CORPORATION
Inventor: Alexander Nikolaevich Moshchuk , Jiahe H. Wang , Yunxin Liu
CPC classification number: H04L63/1408 , G06F11/30 , G06F17/30067 , G06F21/53 , G06F21/60 , H04L63/10
Abstract: The subject disclosure is directed towards securing a computing device using content-based isolation. When the computing device requests content data having different ownership, a monitor component identifies and groups trusted portions of the content data into one or more isolation containers such that only trusted programs are permitted access. Other programs are, therefore, untrusted and can be denied access in order to prevent malicious activity, unless access is approved by the content owner.
Abstract translation: 本发明涉及使用基于内容的隔离来保护计算设备。 当计算设备请求具有不同所有权的内容数据时,监视器组件将内容数据的受信任部分识别并分组成一个或多个隔离容器,使得仅允许信任的程序访问。 因此,其他程序是不受信任的,可以拒绝访问,以防止恶意活动,除非内容所有者批准访问。
-
公开(公告)号:US20140115701A1
公开(公告)日:2014-04-24
申请号:US13654702
申请日:2012-10-18
Applicant: MICROSOFT CORPORATION
Inventor: Alexander Nikolaevich Moshchuk , Jiahe H. Wang , Stuart Schechter
IPC: G06F21/00
CPC classification number: G06F21/51 , G06F21/54 , G06F2221/2119
Abstract: Described is a technology directed towards protecting against clickjacking attacks against interactive user interface elements in code that are described by the code author as sensitive to clickjacking attacks. Various defenses are described, including defenses to ensure target display integrity, pointer integrity, and temporal integrity. For example, a browser click on an element/web page may be determined to be invalid if target display integrity is compromised. Also described are defenses that act to increase the user's attention to what is actually being clicked, and defenses that disable or disallow functions and features used by attackers, such as when a sensitive element is being hovered over.
Abstract translation: 描述了一种针对针对针对代码作者对描述为对点击劫持攻击敏感的代码中的交互式用户界面元素的防止点击攻击的技术。 描述了各种防御措施,包括确保目标显示完整性,指针完整性和时间完整性的防御。 例如,如果目标显示完整性受到损害,则可以将元素/网页上的浏览器点击确定为无效。 还描述了防止用户将注意力增加到实际被点击的防御,以及防止或禁止攻击者使用的功能和特征的防御,例如当敏感元素被悬停时。
-
-
Search Results
3
records
(took 0.015 seconds)
