公开(公告)号：US20240012943A1

公开(公告)日：2024-01-11

申请号：US17938985

申请日：2022-09-07

Applicant: VMWARE, INC.

Inventor： SHIRISH VIJAYVARGIYA ,  PANKAJ MAHESHKUMAR MANSUKHANI ,  SUNIL HASBE ,  SARJERAO PATIL ,  SATYAJEET KUMAR

IPC: G06F21/64 ,  G06F21/62 ,  G06F21/60

CPC classification number: G06F21/64 ,  G06F21/6209 ,  G06F21/602

Abstract: An example method of securing communication between a client and a security agent executing in a host includes: receiving, at the security agent, a connection request from the client; obtaining, by the security agent from an operating system executing in the host, a process identifier for the client; identifying, by the security agent, a file path for a process binary from which the client executed; verifying at least a portion of the file path against an expected value known by the security agent; validating a signature of the process binary; and accepting, at the security agent, the connection request from the client in response to successful verification of the file path and successful validation of the signature.