SYSTEM AND METHOD TO SECURE A COMPUTER SYSTEM BY SELECTIVE CONTROL OF WRITE ACCESS TO A DATA STORAGE MEDIUM
First Claim
1. In a computer comprising a central processing unit operatively connected to a storage medium and at least one application running on said central processing unit, a method of controlling execution of said at least one application comprising:
- detecting at least one activity profile executed by the at least one application;
reading from a storage device a predetermined activity profile; and
determining whether the detected at least one activity profile matches the read predetermined activity profile.
1 Assignment
0 Petitions
Accused Products
Abstract
A system and method of securing a computer system by controlling write access to a storage medium by monitoring an application; detecting an attempt by the application to write data to said storage medium; interrogating a rules database in response to said detection; and permitting or denying write access to the storage medium by the application in dependence on said interrogation, where the interrogation requests are queued in order manage multiple applications running on the same system. The system can further monitor the activity of unknown processes and continually match the sequence of activity against known malware activity sequences. In the case of a match, the user is warned or the process is blocked.
81 Citations
16 Claims
-
1. In a computer comprising a central processing unit operatively connected to a storage medium and at least one application running on said central processing unit, a method of controlling execution of said at least one application comprising:
-
detecting at least one activity profile executed by the at least one application; reading from a storage device a predetermined activity profile; and determining whether the detected at least one activity profile matches the read predetermined activity profile. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16)
-
Specification