Invention Grant
- Patent Title: Systems and methods for dynamically protecting a stack from below the operating system
-
Application No.: US15639051Application Date: 2017-06-30
-
Publication No.: US10296470B2Publication Date: 2019-05-21
- Inventor: Andrei V. Lutas
- Applicant: Bitdefender IPR Management Ltd.
- Applicant Address: CY Nicosia
- Assignee: Bitdefender IPR Management Ltd.
- Current Assignee: Bitdefender IPR Management Ltd.
- Current Assignee Address: CY Nicosia
- Agency: Law Office of Andrei D Popovici, PC
- Main IPC: G06F21/53
- IPC: G06F21/53 ; G06F12/14 ; G06F12/1009 ; G06F21/55
Abstract:
Described systems and methods allow protecting a host system against malware, using hardware virtualization technology. A memory introspection engine executes at the level of a hypervisor, protecting a virtual machine (VM) from exploits targeting the call stack of a thread executing within the respective VM. The introspection engine identifies a virtual memory page reserved for the stack, but not committed to the stack, and intercepts an attempt to write to the respective page. In response to intercepting the write attempt, the memory introspection engine marks the respective page as non-executable, thus protecting the stack against exploits.
Public/Granted literature
- US20170308484A1 Systems And Methods For Dynamically Protecting A Stack From Below The Operating System Public/Granted day:2017-10-26
Information query
