Computing apparatus with automatic integrity reference generation and maintenance
First Claim
Patent Images
1. In a computing apparatus, a method of operation comprising:
- automatically updating one or more integrity references of a software entity during installation of the software entity onto the computing apparatus; and
periodically determining whether integrity of the computing apparatus has been compromised, based at least in part on said one or more integrity references of the software entity that are automatically updated during installation of the software entity.
10 Assignments
0 Petitions
Accused Products
Abstract
An apparatus is equipped to automatically update one or more integrity references of a software entity, when the software entity is installed onto the apparatus. The apparatus is further equipped to periodically determine whether the integrity of the apparatus has been compromised based at least in part on the one or more integrity references of the software entity that are automatically updated during installation of the software entity.
45 Citations
27 Claims
-
1. In a computing apparatus, a method of operation comprising:
-
automatically updating one or more integrity references of a software entity during installation of the software entity onto the computing apparatus; and
periodically determining whether integrity of the computing apparatus has been compromised, based at least in part on said one or more integrity references of the software entity that are automatically updated during installation of the software entity.
-
-
2. The method of claim 1, wherein said automatic updating of the one or more integrity references of the software entity during installation of the software entity comprises automatically determining an integrity family for a component of the software entity during installation of the software entity.
-
3. The method of claim 2, wherein said automatic determining of an integrity family for a component of the software entity during installation of the software entity comprises
automatically determining during installation of the software entity, whether an integrity family is specified for the component of the software entity, and if an integrity family is not specified for the component of the software entity, automatically assigning an integrity family for the component of the software entity.
-
4. The method of claim 2, wherein said integrity family is a selected one of
privileged kernel of an operating system, other privileged components of the operating system, non-privileged components of the operating system, privileged and non-shared library components, privileged and shared library components, non-privileged and non-shared library components, and non-privileged and shared library components” - .
-
5. The method of claim 1, wherein said automatic updating of the one or more integrity references of the software entity during installation of the software entity comprises automatically determining a signature for a component of the software entity during installation of the software installation.
-
6. The method of claim 5, wherein said automatic determining of a signature for a component of the software entity during installation of the software entity comprises
automatically determining during installation of the software entity, whether a signature is provided for the component of the software entity, and if a signature is not specified for the component of the software entity, automatically generating a signature for the component of the software entity.
-
7. The method of claim 5, wherein said signature is a selected one of MD5 and SHA-1.
-
8. The method of claim 1, wherein said periodic determining of whether integrity of the computing apparatus has been compromised comprises continuously determining whether integrity of the computing apparatus has been compromised, based at least in part on said one or more integrity references of the software entity that are automatically updated during installation of the software entity.
-
9. The method of claim 1, wherein each of said periodic determining of whether integrity of the computing apparatus has been compromised comprises verifying a privileged kernel of an operating system of the computing apparatus has not been comprised, based at least in part on an integrity reference of the privileged kernel of the operating system that is automatically updated during installation of the privileged kernel of the operating system.
-
10. The method of claim 1, wherein each of said periodic determining of whether integrity of the computing apparatus has been compromised comprises verifying other privileged software components of the computing apparatus have not been comprised, based at least in part on integrity references of the other privileged software components that are automatically updated during installation of the other privileged software components.
-
11. The method of claim 1, wherein each of said periodic determining of whether integrity of the computing apparatus has been compromised comprises verifying shared non-privileged software components of the computing apparatus have not been comprised, based at least in part on integrity references of the shared non-privileged software components that are automatically updated during installation of the shared non-privileged software components.
-
12. The method of claim 1, wherein each of said periodic determining of whether integrity of the computing apparatus has been compromised comprises verifying non-shared and non-privileged software components of the computing apparatus have not been comprised, based at least in part on integrity references of the non-shared and non-privileged software components that are automatically updated during installation of the non-shared and non-privileged software components.
-
13. The method of claim 1, wherein each of said periodic determining of whether integrity of the computing apparatus has been compromised comprises verifying certain designated system data of the computing apparatus have not been comprised, based at least in part on integrity references of the designated system data that are automatically updated during installation of system software of the computing apparatus.
-
14. A computing apparatus comprising:
-
storage medium having stored therein a plurality of programming instructions designed to automatically update one or more integrity references of a software entity during installation of the software entity onto the computing apparatus, and periodically determine whether integrity of the computing apparatus has been compromised, based at least in part on said one or more integrity references of the software entity that are automatically updated during installation of the software entity; and
a processor coupled to the storage medium to execute the programming instructions.
-
-
15. The apparatus of claim 14, wherein said programming instructions are designed to perform said automatic updating of the one or more integrity references during installation of the software entityt by automatically determining an integrity family for a component of the software entity during installation of the software entity.
-
16. The apparatus of claim 14, wherein said programming instructions are designed to perform said automatic determining of an integrity family for a component of the software entity during installation of the software entity by
automatically determining during installation of the software entity, whether an integrity family is specified for the component of the software entity, and if an integrity family is not specified for the component of the software entity, automatically assigning an integrity family for the component of the software entity.
-
17. The apparatus of claim 15, wherein said integrity family is a selected one of
privileged kernel of an operating system, other privileged components of the operating system, non-privileged components of the operating system, privileged and non-shared library components, privileged and shared library components, non-privileged and non-shared library components, and non-privileged and shared library components” - .
-
18. The apparatus of claim 14, wherein said programming instructions are designed to perform said automatic updating of the one or more integrity references during installation of the software entity by automatically determining a signature for a component of the software entity during installation of the software entity.
-
19. The apparatus of claim 18, wherein said programming instructions are designed to perform said automatic determining of a signature for a component of the software entity during installation of the software entity by
automatically determining during installation of the software entity, whether a signature is provided for the component of the software entity, and if a signature is not specified for the component of the software entity, automatically generating a signature for the component of the software entity.
-
20. The apparatus of claim 18, wherein said signature is a selected one of MD5 and SHA-1.
-
21. The apparatus of claim 14, wherein said programming instructions are designed to perform said periodic determining of whether integrity of the computing apparatus has been compromised by continuously determining whether integrity of the computing apparatus has been compromised, based at least in part on the one or more integrity references of the software entity that are automatically updated during installation of the software entity.
-
22. The apparatus of claim 14, wherein said programming instructions are designed to perform each of said periodic determining of whether integrity of the computing apparatus has been compromised by verifying a privileged kernel of an operating system of the computing apparatus has not been comprised, based at least in part on one or more integrity references of the privileged kernel of the operating system that are automatically updated during installation of the privileged kernel of the operating system.
-
23. The apparatus of claim 14, wherein said programming instructions are designed to perform each of said periodic determining of whether integrity of the computing apparatus has been compromised by verifying other privileged software components of the computing apparatus have not been comprised, based at least in part on one or more integrity references of the other privileged software components that are automatically updated during installation of the other privileged software components.
-
24. The apparatus of claim 14, wherein said programming instructions are designed to perform each of said periodic determining of whether integrity of the computing apparatus has been compromised by verifying shared non-privileged software components of the computing apparatus have not been comprised.
-
25. The apparatus of claim 14, wherein said programming instructions are designed to perform each of said periodic determining of whether integrity of the computing apparatus has been compromised by verifying non-shared and non-privileged software components of the computing apparatus have not been comprised, based at least in part on one or more integrity references of the non-shared and non-privileged software components that are automatically updated during installation of the non-shared and non-privileged software components.
-
26. The apparatus of claim 14, wherein said programming instructions are designed to perform each of said periodic determining of whether integrity of the computing apparatus has been compromised by verifying certain designated system data of the computing apparatus have not been comprised, based at least in part on one or more integrity references of the designated system data that are automatically updated during installation of system software of the computing apparatus.
-
27. An apparatus comprising:
-
means for automatically updating one or more integrity references of a software entity during installation of the software entity onto the apparatus; and
means for periodically determining whether integrity of the apparatus has been compromised, based at least in part on said one or more integrity references of the software entity that are automatically updated during installation of the software entity.
-
Specification
-
- Resources
Litigation Campaign Assessment
Thank you for your request. You will receive a custom alert email when the Litigation Campaign Assessment is available.
×
-
Current AssigneeTripwire Incorporated (Belden Inc.)
-
Original AssigneeORIX Growth Capital, LLC (ORIX Corporation)
-
InventorsDiFalco, Robert A., Good, Thomas E., Kim, Gene Ho
-
Granted Patent
-
Time in Patent OfficeDays
-
Field of Search
-
US Class Current717/174
-
CPC Class CodesG06F 21/57 Certifying or maintaining t...
