Patent · US Active

Exploit of privilege detection framework

US10565378B1 · kind B1 · utility

26Cited by

353References

27Claims

0Family size

Assignee

FireEye, Inc. · US

Inventors

Michael Vincent · Sunnyvale, US
Sai Omkar Vashist · Union City, US
Jonas Pfoh · Dresden, DE

Key dates

Filing date	Jun 29, 2016
Grant date	Feb 18, 2020
Priority date	—
Expiry date	Dec 5, 2036

Classification

Technology area (CPC G)Physics
CPC primaryG06F2221/034
WIPO fieldComputer technology
WIPO sectorElectrical engineering

Abstract

A non-transitory storage medium having stored thereon logic, the logic being executable by one or more processors to perform operations including comparing a current privilege of a first process with an initial privilege of the first process recorded in a privilege list, and responsive to determining a change exists between the current privilege of the first process and the initial privilege of the first process that is greater than a predetermined threshold, determining the first process is operating with the current privilege due to an exploit of privilege attack is shown.

Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.