Integrity checking for computing devices

US 10,019,580 B2
Filed: 11/19/2015
Issued: 07/10/2018
Est. Priority Date: 11/19/2015
Status: Active Grant

First Claim

Patent Images

1. A computing device having a closed operating system defining a user portion of the closed operating system and a system portion of the closed operating system, the closed operating system being configured to disallow user access to an identity of system folders or files in the system portion, the computing device comprising:

a processor circuitry configured to;

determine, via an integrity checking module on the user portion of the closed operating system, a predefined set of device integrity parameters, wherein the set of device integrity parameters comprise at least one parameter associated with a file stored on the system portion of the closed operating system;

perform, via the integrity checking module on the user portion of the closed operating system, a baseline integrity check based on the predefined set of device integrity parameters, wherein the baseline integrity check is configured to submit a first query for information associated with the at least one parameter associated with the file stored on the system portion of the closed operating system, wherein the first query comprises a file name, a file directory, and the at least one parameter associated with the file to the system portion of the closed operating system, which is configured to disallow queries to provide access to the identity of the file name or the file directory of the system portion of the closed operating system to the user portion of the closed operating system, and receive a first response to the first query that includes the information associated with the at least one parameter that is associated with the file;

store, at the user portion of the closed operating system, baseline integrity values of the predefined set of device integrity parameters resulting from the information associated with the at least one parameter that is received during performance of the baseline integrity check;

perform, via the integrity checking module on the user portion of the closed operating system, an integrity check based on at least a subset of the predefined set of device integrity parameters, wherein the subset of the predefined set of device integrity parameters comprises the at least one parameter associated with the file stored on the system portion of the closed operating system, wherein the integrity check is configured to submit a second query that comprises the file name, the file directory, and the at least one parameter associated with the file to the system portion of the closed operating system, which is configured to disallow queries to provide access to the identity of the file name or the file directory of the system portion of the closed operating system to the user portion of the closed operating system, and receive a second response to the second query that includes information associated with the at least one parameter that is associated with the file;

store, at the user portion of the closed operating system, integrity values of the predefined set of device integrity parameters resulting from the information associated with the at least one parameter that is received during performance of the integrity check;

compare the integrity values resulting from the integrity check with the baseline integrity values; and

provide an indication of a potential compromise to an integrity of the computing device based on the comparison of the integrity values associated with the integrity check with the baseline integrity values.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A computing device may perform integrity checks on a closed operating system defining a preconfigured user portion and a preconfigured system portion using an integrity checking module. The integrity checking module may access parameters associated with an object stored on the system portion of the operating system. Files on the system portion may be accessed by submitting a query that comprises a file name, a file directory, and at least one parameter to the system portion of the operating system. The integrity checking module may provide an indication of a potential compromise to the integrity of the computing device based on the integrity check. The integrity check may be performed periodically and/or aperiodically. Updated integrity values may be compared against previously determined integrity values to update the integrity check. The integrity checking module may perform the integrity check using a signature function or hashing function to generate the integrity values.

15 Citations

View as Search Results

20 Claims

1. A computing device having a closed operating system defining a user portion of the closed operating system and a system portion of the closed operating system, the closed operating system being configured to disallow user access to an identity of system folders or files in the system portion, the computing device comprising:
- a processor circuitry configured to;
  
  determine, via an integrity checking module on the user portion of the closed operating system, a predefined set of device integrity parameters, wherein the set of device integrity parameters comprise at least one parameter associated with a file stored on the system portion of the closed operating system;
  
  perform, via the integrity checking module on the user portion of the closed operating system, a baseline integrity check based on the predefined set of device integrity parameters, wherein the baseline integrity check is configured to submit a first query for information associated with the at least one parameter associated with the file stored on the system portion of the closed operating system, wherein the first query comprises a file name, a file directory, and the at least one parameter associated with the file to the system portion of the closed operating system, which is configured to disallow queries to provide access to the identity of the file name or the file directory of the system portion of the closed operating system to the user portion of the closed operating system, and receive a first response to the first query that includes the information associated with the at least one parameter that is associated with the file;
  
  store, at the user portion of the closed operating system, baseline integrity values of the predefined set of device integrity parameters resulting from the information associated with the at least one parameter that is received during performance of the baseline integrity check;
  
  perform, via the integrity checking module on the user portion of the closed operating system, an integrity check based on at least a subset of the predefined set of device integrity parameters, wherein the subset of the predefined set of device integrity parameters comprises the at least one parameter associated with the file stored on the system portion of the closed operating system, wherein the integrity check is configured to submit a second query that comprises the file name, the file directory, and the at least one parameter associated with the file to the system portion of the closed operating system, which is configured to disallow queries to provide access to the identity of the file name or the file directory of the system portion of the closed operating system to the user portion of the closed operating system, and receive a second response to the second query that includes information associated with the at least one parameter that is associated with the file;
  
  store, at the user portion of the closed operating system, integrity values of the predefined set of device integrity parameters resulting from the information associated with the at least one parameter that is received during performance of the integrity check;
  
  compare the integrity values resulting from the integrity check with the baseline integrity values; and
  
  provide an indication of a potential compromise to an integrity of the computing device based on the comparison of the integrity values associated with the integrity check with the baseline integrity values.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12)
- - 2. The computing device of claim 1, wherein the predefined set of device integrity parameters comprises at least one of a device hardware version, a device firmware version, a device software version, or a kernel version.
  - 3. The computing device of claim 1, wherein the predefined set of device integrity parameters comprises at least one of a modification of the password file, a modification of a network services file, or a detection of malware.
  - 4. The computing device of claim 1, wherein the predefined set of device integrity parameters are configurable according to a device integrity policy.
  - 5. The computing device of claim 1, wherein the processor circuitry is further configured to store, on the user portion of memory of the computing device, a history of integrity reports.
  - 6. The computing device of claim 1, wherein the processor circuitry is configured to perform the integrity check on a periodic basis.
  - 7. The computing device of claim 1, wherein the processor circuitry is configured to perform the integrity check on an aperiodic basis.
  - 8. The computing device of claim 1, wherein the processor circuitry is configured to generate the baseline integrity values as a part of a baseline integrity report, and wherein the processor circuitry is configured to generate the integrity values as a part of an integrity report.
  - 9. The computing device of claim 8, wherein the processor circuitry is configured to determine whether the integrity of the computing device has been compromised based on the comparison of the baseline integrity report and the integrity report.
  - 10. The computing device of claim 9, wherein the computing device further comprises a transceiver configured to communicate over a secure network channel, and wherein the processor circuitry is configured to send, via the transceiver, the integrity report through the secure network channel to an external trusted server.
  - 11. The computing device of claim 10, wherein the secure network channel is one of an encrypted transport layer security (TLS) and a secure sockets layer (SSL).
  - 12. The computing device of claim 1, wherein the baseline integrity values comprise a first signature or a first hash of the at least one parameter associated with the file stored on the system portion of the closed operating system, wherein the integrity values comprise a second signature or a second hash of the at least one parameter associated with the file stored on the system portion of the closed operating system, and wherein the processor circuitry is configured to compare the first signature with the second signature or the first hash with the second hash to determine the potential compromise to the integrity of the computing device.

13. A method, the method comprising:
- determining, via an integrity checking module on the user portion of a closed operating system on a computing device, a predefined set of device integrity parameters, wherein the set of device integrity parameters comprise at least one parameter associated with a file stored on the system portion of the closed operating system, and wherein the closed operating system defines a user portion of the closed operating system and a system portion of the closed operating system, the closed operating system being configured to disallow user access to an identity of system folders or files in the system portion;
  
  performing, via the integrity checking module on the user portion of the closed operating system, a baseline integrity check based on the predefined set of device integrity parameters, wherein the performance of the baseline integrity check comprises;
  
  submitting a first query for information associated with the at least one parameter associated with the file stored on the system portion of the closed operating system, wherein the first query comprises a file name, a file directory, and the at least one parameter associated with the file to the system portion of the closed operating system, which is configured to disallow queries to provide access to the identity of the file name or the file directory of the system portion of the closed operating system to the user portion of the closed operating system; and
  
  receiving a first response to the first query that includes the information associated with the at least one parameter that is associated with the file;
  
  storing, at the user portion of the closed operating system, baseline integrity values of the predefined set of device integrity parameters resulting from the information associated with the at least one parameter that is received during performance of the baseline integrity check;
  
  performing, via the integrity checking module on the user portion of the closed operating system, an integrity check based on at least a subset of the predefined set of device integrity parameters, wherein the subset of the predefined set of device integrity parameters comprises the at least one parameter associated with the file stored on the system portion of the closed operating system, wherein the performance of the integrity check comprises;
  
  submitting a second query that comprises the file name, the file directory, and the at least one parameter associated with the file to the system portion of the closed operating system to the user portion of the closed operating system; and
  
  receiving a second response to the second query that includes information associated with the at least one parameter that is associated with the file;
  
  storing, at the user portion of the closed operating system, integrity values of the predefined set of device integrity parameters resulting from the information associated with the at least one parameter that is received during performance of the integrity check;
  
  comparing the integrity values resulting from the integrity check with the baseline integrity values; and
  
  providing an indication of a potential compromise to an integrity of the computing device based on the comparison of the integrity values associated with the integrity check with the baseline integrity values.
- View Dependent Claims (14, 15, 16, 17, 18, 19, 20)
- - 14. The method of claim 13, wherein the predefined set of device integrity parameters are configured according to a device integrity policy.
  - 15. The method of claim 13, further comprising storing, on the user portion of memory of the computing device, a history of integrity reports.
  - 16. The method of claim 13, wherein the predefined set of device integrity parameters comprises at least one of a device hardware version, a device firmware version, a device software version, or a kernel version.
  - 17. The method of claim 13, wherein the predefined set of device integrity parameters comprises at least one of a modification of the password file, a modification of a network services file, or a detection of malware.
  - 18. The method of claim 13, wherein the integrity check is performed on a periodic basis.
  - 19. The method of claim 13, wherein the integrity check is performed on an aperiodic basis.
  - 20. The method of claim 13, wherein the baseline integrity values comprise a first signature or a first hash of the at least one parameter associated with the file stored on the system portion of the closed operating system, wherein the integrity values comprise a second signature or a second hash of the at least one parameter associated with the file stored on the system portion of the closed operating system, and wherein the first signature is compared with the second signature or the first hash is compared with the second hash to determine the potential compromise to the integrity of the computing device.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Federal Reserve Bank of Philadelphia (Federal Reserve System)
Original Assignee
Federal Reserve Bank of Philadelphia (Federal Reserve System)
Inventors
Bowers, Bradley C., Morales, Keith, Makin, V, George C., Vegh, Abraham
Primary Examiner(s)
Armouche, Hadi S
Assistant Examiner(s)
Gao, Shu C

Application Number

US14/946,241
Publication Number

US 20170147827A1
Time in Patent Office

964 Days
Field of Search
US Class Current
CPC Class Codes

G06F 21/577 Assessing vulnerabilities a...

Integrity checking for computing devices

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

15 Citations

20 Claims

Specification

Solutions

Use Cases

Quick Links

Integrity checking for computing devices

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

15 Citations

20 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links