Invention Grant
US09038176B2 System and method for below-operating system trapping and securing loading of code into memory
有权
用于操作系统陷阱并确保代码加载到内存中的系统和方法
- Patent Title: System and method for below-operating system trapping and securing loading of code into memory
- Patent Title (中): 用于操作系统陷阱并确保代码加载到内存中的系统和方法
-
Application No.: US13076480Application Date: 2011-03-31
-
Publication No.: US09038176B2Publication Date: 2015-05-19
- Inventor: Ahmed Said Sallam
- Applicant: Ahmed Said Sallam
- Applicant Address: US CA Santa Clara
- Assignee: McAfee, Inc.
- Current Assignee: McAfee, Inc.
- Current Assignee Address: US CA Santa Clara
- Agency: Baker Botts L.L.P.
- Main IPC: G06F11/00
- IPC: G06F11/00 ; G06F12/14 ; G06F12/16 ; G08B23/00 ; G06F9/455 ; G06F21/56 ; G06F21/55
Abstract:
A system for protecting an electronic device against malware includes a memory, an operating system configured to execute on the electronic device, and a below-operating-system security agent. The below-operating-system security agent is configured to trap an attempted access of a resource of the electronic device, access one or more security rules to determine whether the attempted access is indicative of malware, and operate at a level below all of the operating systems of the electronic device accessing the memory. The attempted access includes attempting to write instructions to the memory and attempting to execute the instructions.
Public/Granted literature
- US20120254995A1 SYSTEM AND METHOD FOR BELOW-OPERATING SYSTEM TRAPPING AND SECURING LOADING OF CODE INTO MEMORY Public/Granted day:2012-10-04
Information query
