Patent · US Active

Security monitoring at operating system kernel level

US10771478B2 · kind B2 · utility

1Cited by

2References

37Claims

0Family size

Assignee

Comcast Cable Communications, LLC · US

Inventors

James W. Fahrny · Parker, US
Kyong Park · Philadelphia, US

Key dates

Filing date	Feb 18, 2016
Grant date	Sep 8, 2020
Priority date	—
Expiry date	Mar 24, 2036

Classification

Technology area (CPC H)Electricity
CPC primaryH04L63/126
WIPO fieldDigital communication
WIPO sectorElectrical engineering

Abstract

Methods and apparatus for real-time security monitoring on a computing device are presented. A system may define privileges to access hardware interfaces for each process of a plurality of processes executing on a computing device. The privileges may be defined in a privileged operating system level that controls root access to an operating system. In response to a determination that a process is attempting to access a hardware interface, the system may determine whether the process is privileged to access the hardware interface by checking the privileges. In response to determining that the process is not privileged to access the hardware interface, the intrusion detection agent may terminate the process.

Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.