Please download the dossier by clicking on the dossier button x
×

Computer Security Method and System With Input Parameter Validation

  • US 20150007321A1
  • Filed: 09/10/2014
  • Published: 01/01/2015
  • Est. Priority Date: 12/12/2005
  • Status: Active Grant
First Claim
Patent Images

1. A computer-based method for identifying suspicious downloadables, comprising:

  • receiving, by a receiving computer, a downloadable;

    scanning, by the receiving computer, the downloadable to detect the presence of suspicious computer operations;

    if at least one suspicious computer operation is detected by said scanning, appending, by the receiving computer, monitoring program code to the downloadable thereby generating a modified downloadable, wherein the monitoring program code includes a dictionary of objects including for each object at least one name of a suspicious object method and an associated validator function therefor;

    overwriting, by the receiving computer, a call in the downloadable to a suspicious object method with a modified call that invokes its associated validator function;

    executing, by the receiving computer, a run-time loop over the modified downloadable, wherein upon execution, the associated validator function for the suspicious object method is called to compare one or more input parameters for the suspicious object method against a list of expected values for each of the one or more input parameters;

    if a match is found between the one or more input parameters and the expected values determining, by the receiving computer, that the input parameters are valid and forwarding the downloadable to a destination computer, wherein the forwarded downloadable is in an unmodified format; and

    if no match is found, providing by the receiving computer, an alert that the one or more identified computer operations are potentially malicious.

View all claims
  • 5 Assignments
Timeline View
Assignment View
    ×
    ×