METHOD AND SYSTEM FOR PREVENTING AND DETECTING SECURITY THREATS
First Claim
1. A method for increasing security of a computing device having at least one processor executing an operating system and application software, the method comprising:
- embedding a secured software agent within an OS kernel of the device;
the secured software agent performing an integrity verification process on the computing environment of the device; and
the secured software agent taking corrective action for the device when the integrity verification process indicates modification of the computing environment.
3 Assignments
0 Petitions
Accused Products
Abstract
A system and method is provided for implementing platform security on a consumer electronic device having an open development platform. The device is of the type which includes an abstraction layer operable between device hardware and application software. A secured software agent is provided for embedding within the abstraction layer forming the operating system. The secured software agent is configured to limit access to the abstraction layer by either blocking loadable kernel modules from loading, blocking writing to the system call table or blocking requests to attach debug utilities to certified applications or kernel components.
-
Citations
18 Claims
-
1. A method for increasing security of a computing device having at least one processor executing an operating system and application software, the method comprising:
-
embedding a secured software agent within an OS kernel of the device; the secured software agent performing an integrity verification process on the computing environment of the device; and the secured software agent taking corrective action for the device when the integrity verification process indicates modification of the computing environment. - View Dependent Claims (2, 3, 4, 5, 6)
-
-
7. An apparatus for increasing security of a computing device having at least one processor executing an operating system and application software, the apparatus comprising:
-
at least one processor; and at least one non-transient memory device having instructions stored thereon which, when executed by the at least one processor, cause the at least one processor to; embed a secured software agent within an OS kernel of the device; wherein the secured software agent performing an integrity verification process on the computing environment of the device; and wherein the secured software agent takes corrective action for the device when the integrity verification process indicates modification of the computing environment. - View Dependent Claims (8, 9, 10, 11, 12)
-
-
13. A secured software agent embedded within an OS kernel of a device having at least one processor executing an operating system and application software, the secured software agent comprising code for causing the device to:
-
performing an integrity verification process on the computing environment of the device; and taking corrective action for the device when the integrity verification process indicates modification of the computing environment. - View Dependent Claims (14, 15, 16, 17, 18)
-
Specification