Hygiene-Based Computer Security
First Claim
1. A method of providing computer security, comprising:
- determining hygiene scores associated with a plurality of clients, the hygiene scores representing assessments of the trustworthiness of the clients;
receiving data describing an entity encountered by one or more of the plurality of clients; and
calculating a reputation score for the entity responsive to the client hygiene scores, the reputation score representing an assessment of whether the entity is malicious.
5 Assignments
0 Petitions
Accused Products
Abstract
A reputation server is coupled to multiple clients via a network. Each client has a security module that detect malware at the client. The security module computes a hygiene score based on detected malware and provides it to the reputation server. The security module monitors client encounters with entities such as files, programs, and websites. When a client encounters an entity, the security module obtains a reputation score for the entity from the reputation server. The security module evaluates the reputation score and optionally cancels an activity involving the entity. The reputation server computes reputation scores for the entities based on the clients'"'"' hygiene scores and operations performed in response to the evaluations. The reputation server prioritizes malware submissions from the client security modules based on the reputation scores.
-
Citations
34 Claims
-
1. A method of providing computer security, comprising:
-
determining hygiene scores associated with a plurality of clients, the hygiene scores representing assessments of the trustworthiness of the clients; receiving data describing an entity encountered by one or more of the plurality of clients; and calculating a reputation score for the entity responsive to the client hygiene scores, the reputation score representing an assessment of whether the entity is malicious. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8)
-
-
9. A system for providing computer security, comprising:
-
a hygiene cache module for storing hygiene scores associated with a plurality of clients, the hygiene scores representing assessments of the trustworthiness of the clients; a state information module for storing data describing an entity encountered by one or more of the plurality of clients; and a reputation computation module for calculating a reputation score for the entity responsive to the client hygiene scores, the reputation score representing an assessment of whether the entity is malicious. - View Dependent Claims (10, 11, 12, 13, 14, 15, 16)
-
-
17. A method of providing security for a client, comprising:
-
monitoring a state of the client to detect an encounter with an entity; receiving a reputation score for the entity encountered by the client from a reputation server, the reputation score representing an assessment of whether the entity is malicious and calculated responsive to hygiene scores of other clients that encountered the entity, the hygiene scores representing assessments of the trustworthiness of the clients; and evaluating the reputation score for the entity to determine whether the entity is malicious. - View Dependent Claims (18, 19, 20, 21, 22, 23, 24, 25)
-
-
26. A computer program product having a computer-readable medium with computer program instructions embodied therein for providing security on a client, the computer program instructions comprising:
-
a state monitoring module for monitoring a state of the client to detect an encounter with an entity; a server communication module for receiving a reputation score for the entity encountered by the client from a reputation server, the reputation score representing an assessment of whether the entity is malicious and calculated responsive to hygiene scores of other clients that encountered the entity, the hygiene scores representing assessments of the trustworthiness of the clients; and a reputation evaluation module for evaluating the reputation score for the entity to determine whether the entity is malicious. - View Dependent Claims (27, 28, 29, 30, 31, 32, 33, 34)
-
Specification