×

Altering application behavior based on content provider reputation

  • US 8,627,476 B1
  • Filed: 07/05/2010
  • Issued: 01/07/2014
  • Est. Priority Date: 07/05/2010
  • Status: Active Grant
First Claim
Patent Images

1. A computer implemented method for protecting a computer system from malicious attacks by altering content processing application behavior based on at least content provider reputation, the method comprising the steps of:

  • monitoring, by at least one computer, incoming network traffic;

    identifying, by the at least one computer, content-based files in the monitored incoming network traffic, the content-based files originating from remote sources and being accessible using a processing application;

    gleaning, by the at least one computer, security information concerning a specific, identified content-based file originating from a specific remote source, comprising receiving from a security server a security reputation of the specific remote source of the specific, identified content-based file;

    detecting, by the at least one computer, an attempt to open the specific, identified content-based file with the processing application;

    determining, by the at least one computer, a security risk rating concerning the specific, identified content-based file, based on security information concerning the specific, identified content-based file comprising at least the security reputation of the specific remote source of the specific, identified content-based file; and

    altering, by the at least one computer, behavior associated with the attempt to open the specific, identified content-based file, in response to the determined security risk rating concerning the specific, identified content-based file exceeding a given threshold.

View all claims
  • 2 Assignments
Timeline View
Assignment View
    ×
    ×