Patent · US Active

Cloud-based application whitelisting

US8069487B2 · kind B2 · utility

32Cited by

42References

35Claims

0Family size

Assignee

Fortinet, Inc. · US

Inventors

Andrew F. Fanton · Westminster, US
John J. Gandee · Loveland, US
William H. Lutton · Fort Collins, US
Edwin L. Harper · Platteville, US
Kurt E. Godwin · Loveland, US
Anthony A. Rozga · Wellington, US

Key dates

Filing date	Oct 15, 2010
Grant date	Nov 29, 2011
Priority date	—
Expiry date	Oct 15, 2030

Classification

Technology area (CPC Y)Emerging Cross-Sectional Technologies
CPC primaryY10S707/99944
WIPO fieldDigital communication
WIPO sectorElectrical engineering

Abstract

Systems and methods for allowing authorized code to execute on a computer system are provided. According to one embodiment, an in-memory cache is maintained having entries containing execution authorization information regarding recently used modules. After authenticating a module, its execution authorization information is added to the cache. Activity relating to a module is intercepted. A hash value of the module is generated. The module is authenticated with reference to a multi-level whitelist including a global whitelist, a local whitelist and the cache. The authentication includes first consulting the cache and if the module is not found, then looking up its hash value in the local whitelist and if it is not found, then looking it up in the global whitelist. Finally, the module is allowed to be loaded and executed if its hash value matches a hash value of an approved code modules within the global whitelist.

Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.