Temporary process deprivileging
First Claim
Patent Images
1. A computing apparatus, comprising:
- a process deprivileging engine operable for;
recognizing that a process has an undetermined reputation;
intercepting a first access request by the process directed to a first resource;
determining that the first resource is not owned by the process; and
based at least in part on the undetermined reputation and the determination that the first resource is not owned by the process, at least partially blocking access to the first resource.
10 Assignments
0 Petitions
Accused Products
Abstract
There is disclosed in an example a computing apparatus, including: a process deprivilging engine operable for: recognizing that a process has an undetermined reputation; intercepting a first access request directed to a first resource; determining that the first resource is not owned by the process; and at least partially blocking access to the first resource. There is further disclosed a method of providing the process deprivileging engine, and one or more computer-readable mediums having stored thereon executable instructions for providing the process deprivileging engine.
10 Citations
21 Claims
-
1. A computing apparatus, comprising:
-
a process deprivileging engine operable for; recognizing that a process has an undetermined reputation; intercepting a first access request by the process directed to a first resource; determining that the first resource is not owned by the process; and based at least in part on the undetermined reputation and the determination that the first resource is not owned by the process, at least partially blocking access to the first resource. - View Dependent Claims (2, 3, 4, 5, 6, 7)
-
-
8. One or more tangible, non-transitory computer-readable mediums having stored thereon executable instructions for providing a deprivileging engine operable for:
-
recognizing that a process has an undetermined reputation; intercepting a first access request by the process directed to a first resource; determining that the first resource is not owned by the process; and based at least in part on the undetermined reputation and the determination that the first resource is not owned by the process, at least partially blocking access to the first resource. - View Dependent Claims (9, 10, 11, 12, 13, 14)
-
-
15. A computer-implemented method of providing a process deprivileging engine, comprising:
-
recognizing that a process has an undetermined reputation; intercepting a first access request by the process directed to a first resource; determining that the first resource is not owned by the process; and based at least in part on the undetermined reputation and the determination that the first resource is not owned by the process, at least partially blocking access to the first resource. - View Dependent Claims (16, 17, 18, 19, 20, 21)
-
Specification