×

Methods and apparatus providing security to computer systems and networks

  • US 7,979,889 B2
  • Filed: 01/07/2005
  • Issued: 07/12/2011
  • Est. Priority Date: 01/07/2005
  • Status: Active Grant
First Claim
Patent Images

1. A method comprising:

  • operating a plurality of security interceptors that monitor operation of different respective processing activities of a computerized device to detect a sequence of related processing operations within the computerized device for those respective processing activities;

    recording, in a security history, the sequence of related processing operations for each processing activities in the computerized device;

    identifying an undesired processing operation and in response, comparing the security history to at least one formerly collected security history to identify a common sequence of related processing operations that occurred in each security history before occurrence of the undesired processing operation, and in response, marking the common sequence of related processing operations as being a disallowed sequence of related processing operations in a security policy; and

    operating the plurality of security interceptors to subsequently detect attempted performance of the disallowed sequence of related processing operations, and in response, denying operation of the disallowed sequence of related processing operations by at least one of the processing activities within the computerized device to avoid violation of the security policy.

View all claims
  • 1 Assignment
Timeline View
Assignment View
    ×
    ×