×

Security policy deployment and enforcement system for the detection and control of polymorphic and targeted malware

  • US 9,460,285 B2
  • Filed: 08/12/2015
  • Issued: 10/04/2016
  • Est. Priority Date: 10/28/2011
  • Status: Active Grant
First Claim
Patent Images

1. A method for providing security policies, the method comprising:

  • receiving behavioral information about applications executing on user devices and hashes of the processes executing on the user devices;

    searching databases of known applications to identify the applications executing on the user devices;

    determining trustworthiness for each of the identified applications based on the behavioral information received from each of the user devices and the hashes of the processes received from each of the user devices and calculating trust scores for the hashes of the processes; and

    providing security policies for the applications to the user devices based on the determined trustworthinessstoring information for hashes of whitelisted and blacklisted processes in a whitelist/blacklist database; and

    storing summary records of the hashes of the processes in a behavioral information database; and

    calculating trust scores for the hashes of the processes based on the behavioral information about the processes and any information about the hashes of the processes found in the behavioral information database and the whitelist/blacklist database.

View all claims
  • 2 Assignments
Timeline View
Assignment View
    ×
    ×