公开(公告)号：EP3405901A1

公开(公告)日：2018-11-28

申请号：EP16826825.8

申请日：2016-12-22

Applicant: Qualcomm Incorporated

Inventor： SALAJEGHEH, Mastooreh ,  KAZDAGLI, Mikhail ,  CHRISTODORESCU, Mihai

IPC: G06F21/52 ,  G06F11/36 ,  G06F21/55 ,  G06F21/56

CPC classification number: G06F21/552 ,  G06F11/3636 ,  G06F21/52 ,  G06F21/556 ,  G06F21/566

Abstract: Various embodiments may include methods, devices, and non-transitory processor-readable media for performing information flow tracking during execution of a software application. A hybrid static/dynamic analysis may be used to track information flow during execution of a software application. In various embodiments, the method may predict a multiple paths of execution, and may utilize these predictions to analyze only actually executing software code. By analyzing only actually executed software code, the method may provide a lightweight and resource-efficient way of detecting actual data leaks as they occur during execution of a software application.

公开(公告)号：EP3256925A1

公开(公告)日：2017-12-20

申请号：EP16702465.2

申请日：2016-01-13

Applicant: Qualcomm Incorporated

Inventor： SALAJEGHEH, Mastooreh ,  KRISHNAMURTHI, Govindarajan ,  GUPTA, Rajarshi ,  CHRISTODORESCU, Mihai ,  SRIDHARA, Vinay ,  HUGHES, Patrick

IPC: G06F1/32 ,  H04B17/345 ,  H04B15/00

CPC classification number: H04W24/08 ,  G06F1/3206 ,  H04B15/00 ,  H04B17/17 ,  H04B17/27 ,  H04B17/345 ,  H04B17/3911 ,  H04W4/02 ,  H04W64/003

Abstract: Systems, methods, and devices of the various aspects enable detecting a malfunction caused by radio frequency (RF) interference. A computing device processor may identify a location of the computing device based on a plurality of real-time data inputs received by the computing device. The processor may characterize an RF environment of the computing device based on the identified location and the plurality of real-time data inputs. The processor may determine at least one RF emissions threshold based on the characterization of the RF environment. The processor may compare the characterization of the RF environment to the at least one RF emissions threshold, and may perform an action in response to determining that the characterization of the RF environment exceeds the at least one RF emissions threshold.

公开(公告)号：EP3251042A1

公开(公告)日：2017-12-06

申请号：EP15823570.5

申请日：2015-12-17

Applicant: Qualcomm Incorporated

Inventor： YOON, Man Ki ,  SALAJEGHEH, Mastooreh ,  CHRISTODORESCU, Mihai ,  CHEN, Yin ,  SRIDHARA, Vinay ,  GUPTA, Rajarshi

IPC: G06F21/52

CPC classification number: G06F11/0751 ,  G06F9/54 ,  G06F11/073 ,  G06F11/36 ,  G06F11/3604 ,  G06F11/3612 ,  G06F11/366 ,  G06F11/3668 ,  G06F21/52 ,  G06F21/577

Abstract: Methods and devices for tracking data flows in a computing device include monitoring memory in a hardware component of the computing device to identify a read operation that reads information from a tainted memory address, using heuristics to identify a first, second, and third number of operations performed after the identified read operation, marking memory addresses of write operations performed after first number of operations and before the second number of operations as tainted, and marking memory addresses of write operations performed after the third number of operations and before the second number of operations as untainted.

公开(公告)号：EP3074910A1

公开(公告)日：2016-10-05

申请号：EP14812039.7

申请日：2014-11-13

Applicant: Qualcomm Incorporated

Inventor： FIALA, David ,  CHRISTODORESCU, Mihai ,  SRIDHARA, Vinay ,  GUPTA, Rajarshi ,  FAWAZ, Kassem

IPC: G06F21/56

CPC classification number: G06F21/56 ,  G06F21/566

Abstract: The various aspects provide for a computing device and methods implemented by the device to ensure that an application executing on the device and seeking root access will not cause malicious behavior while after receiving root access. Before giving the application root access, the computing device may identify operations the application intends to execute while having root access, determine whether executing the operations will cause malicious behavior by simulating execution of the operations, and pre-approve those operations after determining that executing those operations will not result in malicious behavior. Further, after giving the application root access, the computing device may only allow the application to perform pre-approved operations by quickly checking the application's pending operations against the pre-approved operations before allowing the application to perform those operations. Thus, the various aspects may ensure that an application receives root access without compromising the performance or security integrity of the computing device.