BRPI0600112A - sistemas e métodos para a blindagem de uma vulnerabilidade identificada - Google Patents

sistemas e métodos para a blindagem de uma vulnerabilidade identificada

Info

Publication number
BRPI0600112A
BRPI0600112A BRPI0600112-2A BRPI0600112A BRPI0600112A BR PI0600112 A BRPI0600112 A BR PI0600112A BR PI0600112 A BRPI0600112 A BR PI0600112A BR PI0600112 A BRPI0600112 A BR PI0600112A
Authority
BR
Brazil
Prior art keywords
systems
methods
vulnerability
shielding
application module
Prior art date
Application number
BRPI0600112-2A
Other languages
English (en)
Inventor
Cesare John Saretto
Leonidas E Rigas
Paul M Paradise
Ranjib S Badh
Walter B Rader
Original Assignee
Microsoft Corp
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Microsoft Corp filed Critical Microsoft Corp
Publication of BRPI0600112A publication Critical patent/BRPI0600112A/pt

Links

Classifications

    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/50Monitoring users, programs or devices to maintain the integrity of platforms, e.g. of processors, firmware or operating systems
    • G06F21/57Certifying or maintaining trusted computer platforms, e.g. secure boots or power-downs, version controls, system software checks, secure updates or assessing vulnerabilities
    • G06F21/577Assessing vulnerabilities and evaluating computer system security
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L12/00Data switching networks
    • H04L12/02Details
    • H04L12/22Arrangements for preventing the taking of data from a data transmission channel without authorisation
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F17/00Digital computing or data processing equipment or methods, specially adapted for specific functions
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L65/00Network arrangements, protocols or services for supporting real-time applications in data packet communication

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Security & Cryptography (AREA)
  • General Engineering & Computer Science (AREA)
  • Theoretical Computer Science (AREA)
  • Computer Hardware Design (AREA)
  • Software Systems (AREA)
  • Physics & Mathematics (AREA)
  • General Physics & Mathematics (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Computing Systems (AREA)
  • Mathematical Physics (AREA)
  • Databases & Information Systems (AREA)
  • Multimedia (AREA)
  • Data Mining & Analysis (AREA)
  • Computer And Data Communications (AREA)
  • Debugging And Monitoring (AREA)
  • Storage Device Security (AREA)

Abstract

"SISTEMAS E MéTODOS PARA A BLINDAGEM DE UMA VULNERABILIDADE INDENTIFICADA" São descritos sistemas e métodos para blindagem de uma vulnerabilidade um uma aplicação através da sedabilitação um ou mais recursos. Em uma implementação, um método inclui a identificação de uma vulnerabilidade em pelo menos um dentre uma pluralidade de recursos para um módulo de aplicação. é feita uma comunicação para recebimento por uma pluralidade de clientes no sentido de blindar execução do módulo de aplicação contra a vulnerabilidade indentificada. A comunicação descrê que o pelo menos um recurso deve ser desabilitado de execução em conjunto com o módulo de aplicação.
BRPI0600112-2A 2005-02-17 2006-01-16 sistemas e métodos para a blindagem de uma vulnerabilidade identificada BRPI0600112A (pt)

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
US11/060,211 US20060185018A1 (en) 2005-02-17 2005-02-17 Systems and methods for shielding an identified vulnerability

Publications (1)

Publication Number Publication Date
BRPI0600112A true BRPI0600112A (pt) 2007-07-17

Family

ID=36593126

Family Applications (1)

Application Number Title Priority Date Filing Date
BRPI0600112-2A BRPI0600112A (pt) 2005-02-17 2006-01-16 sistemas e métodos para a blindagem de uma vulnerabilidade identificada

Country Status (7)

Country Link
US (1) US20060185018A1 (pt)
EP (1) EP1693775A1 (pt)
JP (1) JP4856970B2 (pt)
KR (1) KR20060092043A (pt)
CN (1) CN1821975A (pt)
BR (1) BRPI0600112A (pt)
CA (1) CA2532751A1 (pt)

Families Citing this family (18)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
KR100791290B1 (ko) * 2006-02-10 2008-01-04 삼성전자주식회사 디바이스 간에 악성 어플리케이션의 행위 정보를 사용하는장치 및 방법
US9258327B2 (en) 2006-04-27 2016-02-09 Invention Science Fund I, Llc Multi-network virus immunization
US8539581B2 (en) * 2006-04-27 2013-09-17 The Invention Science Fund I, Llc Efficient distribution of a malware countermeasure
US8966630B2 (en) * 2006-04-27 2015-02-24 The Invention Science Fund I, Llc Generating and distributing a malware countermeasure
US8613095B2 (en) * 2006-06-30 2013-12-17 The Invention Science Fund I, Llc Smart distribution of a malware countermeasure
US20080059123A1 (en) * 2006-08-29 2008-03-06 Microsoft Corporation Management of host compliance evaluation
US8453245B2 (en) 2006-12-29 2013-05-28 Microsoft Corporation Automatic vulnerability detection and response
US8959647B2 (en) * 2007-02-27 2015-02-17 Microsoft Corporation Runtime security and exception handler protection
WO2008114378A1 (ja) * 2007-03-19 2008-09-25 Fujitsu Limited データ処理装置、そのデータ監視方法、そのデータ監視プログラム、及びそのデータ監視プログラムを格納した記録媒体
US8239836B1 (en) * 2008-03-07 2012-08-07 The Regents Of The University Of California Multi-variant parallel program execution to detect malicious code injection
US9195808B1 (en) * 2009-07-27 2015-11-24 Exelis Inc. Systems and methods for proactive document scanning
US8650637B2 (en) * 2011-08-24 2014-02-11 Hewlett-Packard Development Company, L.P. Network security risk assessment
EP2885739B1 (en) * 2012-08-18 2019-10-02 Fugue, Inc. System and method for providing a secure computational environment
CN103699844B (zh) * 2012-09-28 2016-10-26 腾讯科技(深圳)有限公司 安全保护系统及方法
US10019569B2 (en) * 2014-06-27 2018-07-10 Qualcomm Incorporated Dynamic patching for diversity-based software security
US10333973B1 (en) * 2016-05-25 2019-06-25 Wells Fargo Bank, N.A. Managing unpatched users
WO2019176306A1 (ja) * 2018-03-15 2019-09-19 日本電気株式会社 暗号鍵更新システム、暗号鍵更新方法および暗号鍵更新プログラム
WO2020014787A1 (en) * 2018-07-17 2020-01-23 Mergebase Software Inc. Systems and methods for managing and securing computer systems

Family Cites Families (36)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US5956481A (en) * 1997-02-06 1999-09-21 Microsoft Corporation Method and apparatus for protecting data files on a computer from virus infection
US6205551B1 (en) * 1998-01-29 2001-03-20 Lucent Technologies Inc. Computer security using virus probing
US6185689B1 (en) * 1998-06-24 2001-02-06 Richard S. Carson & Assoc., Inc. Method for network self security assessment
US7073198B1 (en) * 1999-08-26 2006-07-04 Ncircle Network Security, Inc. Method and system for detecting a vulnerability in a network
US6871284B2 (en) * 2000-01-07 2005-03-22 Securify, Inc. Credential/condition assertion verification optimization
AU2001237696A1 (en) * 2000-03-03 2001-09-12 Sanctum Ltd. System for determining web application vulnerabilities
GB2366640B (en) * 2000-03-30 2004-12-29 Ibm Distribution of activation information
EP1381928B1 (en) * 2001-01-10 2008-12-31 Cisco Technology, Inc. Computer security and management system
US20020178375A1 (en) * 2001-01-31 2002-11-28 Harris Corporation Method and system for protecting against malicious mobile code
WO2002095543A2 (en) * 2001-02-06 2002-11-28 En Garde Systems Apparatus and method for providing secure network communication
US7313822B2 (en) * 2001-03-16 2007-12-25 Protegrity Corporation Application-layer security method and system
ATE364202T1 (de) * 2001-04-02 2007-06-15 Motorola Inc Aktivieren und deaktivieren von softwarefunktionen
JP2002318707A (ja) * 2001-04-23 2002-10-31 Nec Soft Ltd プログラムの修正・セキュリティ情報の提供システムと提供方法、情報管理システム及びそのプログラム
MXPA04001378A (es) * 2001-08-15 2004-06-03 Qualcomm Inc Ejecucion de aplicacion habilitada por pruebas.
JP2003067210A (ja) * 2001-08-22 2003-03-07 Just Syst Corp プログラム実行防止装置、プログラム実行防止方法、その方法をコンピュータに実行させるプログラムおよびそのプログラムを記録したコンピュータ読み取り可能な記録媒体
US6944772B2 (en) * 2001-12-26 2005-09-13 D'mitri Dozortsev System and method of enforcing executable code identity verification over the network
JP2005532606A (ja) * 2001-12-31 2005-10-27 シタデル セキュリティ ソフトウェア インコーポレイテッド コンピュータの脆弱性を解決する自動化されたシステム
US20040088176A1 (en) * 2002-11-04 2004-05-06 Balaji Rajamani System and method of automated licensing of an appliance or an application
US7353539B2 (en) * 2002-11-04 2008-04-01 Hewlett-Packard Development Company, L.P. Signal level propagation mechanism for distribution of a payload to vulnerable systems
US7418730B2 (en) * 2002-12-17 2008-08-26 International Business Machines Corporation Automatic client responses to worm or hacker attacks
US7624422B2 (en) * 2003-02-14 2009-11-24 Preventsys, Inc. System and method for security information normalization
US7627891B2 (en) * 2003-02-14 2009-12-01 Preventsys, Inc. Network audit and policy assurance system
JP2004258777A (ja) * 2003-02-24 2004-09-16 Fujitsu Ltd セキュリティ管理装置、セキュリティ管理システム、セキュリティ管理方法、セキュリティ管理プログラム
US7451488B2 (en) * 2003-04-29 2008-11-11 Securify, Inc. Policy-based vulnerability assessment
US8266699B2 (en) * 2003-07-01 2012-09-11 SecurityProfiling Inc. Multiple-path remediation
US20070112941A2 (en) * 2003-07-01 2007-05-17 Securityprofiling, Inc. Client capture of vulnerability data
US20070256132A2 (en) * 2003-07-01 2007-11-01 Securityprofiling, Inc. Vulnerability and remediation database
US20070113272A2 (en) * 2003-07-01 2007-05-17 Securityprofiling, Inc. Real-time vulnerability monitoring
US20070113265A2 (en) * 2003-07-01 2007-05-17 Securityprofiling, Inc. Automated staged patch and policy management
US7424706B2 (en) * 2003-07-16 2008-09-09 Microsoft Corporation Automatic detection and patching of vulnerable files
US7346922B2 (en) * 2003-07-25 2008-03-18 Netclarity, Inc. Proactive network security system to protect against hackers
US7523308B2 (en) * 2004-02-23 2009-04-21 Microsoft Corporation Method and system for dynamic system protection
US8171555B2 (en) * 2004-07-23 2012-05-01 Fortinet, Inc. Determining technology-appropriate remediation for vulnerability
US7665119B2 (en) * 2004-09-03 2010-02-16 Secure Elements, Inc. Policy-based selection of remediation
US7761920B2 (en) * 2004-09-03 2010-07-20 Fortinet, Inc. Data structure for policy-based remediation selection
US20060101517A1 (en) * 2004-10-28 2006-05-11 Banzhof Carl E Inventory management-based computer vulnerability resolution system

Also Published As

Publication number Publication date
US20060185018A1 (en) 2006-08-17
JP2006228206A (ja) 2006-08-31
CN1821975A (zh) 2006-08-23
EP1693775A1 (en) 2006-08-23
CA2532751A1 (en) 2006-08-17
JP4856970B2 (ja) 2012-01-18
KR20060092043A (ko) 2006-08-22

Similar Documents

Publication Publication Date Title
BRPI0600112A (pt) sistemas e métodos para a blindagem de uma vulnerabilidade identificada
ATE447740T1 (de) Dynamisch erzeugtes betriebssystem für sensorennetze
WO2009154945A3 (en) Distributed security provisioning
BRPI0505780A (pt) gerenciamento de segurança em computador, tal como em uma máquina virtual ou sistema operacional fisicamente definido
WO2004055634A3 (en) Systems and methods for detecting a security breach in a computer system
WO2006028869A3 (en) System and mehtod for relating computing systems
AU2003293531A1 (en) Trusted system clock
BRPI0503785A (pt) sistema eletrÈnico de permuta de dados
BRPI0511151A (pt) sistema e método para o gerenciamento de acesso a conteúdo protegido por aplicações não-confiáveis
BR0302014A (pt) Computação distribuìda baseada em identidade para recursos de dispositivo
MY142330A (en) Method, system, and apparatus for exposing workbook ranges as data sources
WO2010039428A3 (en) Data-tier application component fabric management
TW200619972A (en) High performance computing system and method
WO2005062571A3 (en) System and method for allocating server resources
WO2004079547A3 (en) Customized execution environment and operating system capable of supporting same
HK1146129A1 (en) Power management of data processing resources, such as power adaptive management of data storage operations
BRPI0600624A (pt) ações acionadas por dados para formulários de rede
WO2007094942A3 (en) Dynamic threat event management system and method
BR0317783A (pt) Método de interagir com um serviço definido por esquema por meio de um dispositivo terminal em uma rede, dispositivo terminal, produto de programa de computador, e, servidor
WO2009025193A1 (ja) 情報共有システム、情報共有方法、および情報共有プログラム
DE602004018501D1 (de) Verfahren, das es einer multitasking-datenverarbeiren
WO2006104581A3 (en) Gaming device network managing system and method
WO2004079509A3 (en) Improved connection pool and prepared statement cache
TW200802102A (en) Simultaneous sharing of system resources by multiple input devices
WO2010127173A3 (en) System, apparatus and methods to implement high-speed network analyzers

Legal Events

Date Code Title Description
B08F Application dismissed because of non-payment of annual fees [chapter 8.6 patent gazette]

Free format text: REFERENTE 7A. ANUIDADE.

B08K Patent lapsed as no evidence of payment of the annual fee has been furnished to inpi [chapter 8.11 patent gazette]

Free format text: REFERENTE AO DESPACHO 8.6 PUBLICADO NA RPI 2208 DE 30/04/2013.