Patent · US Active

System, method and program product for detecting computer attacks

US8201245B2 · kind B2 · utility

35Cited by

0References

23Claims

0Family size

Assignee

International Business Machines Corporation · US

Inventors

David Dewey · Milton, US
Robert G. Freeman · Provo, US
Paul E. Griswold · Lawrenceville, US

Key dates

Filing date	Dec 5, 2007
Grant date	Jun 12, 2012
Priority date	—
Expiry date	Apr 20, 2030

Classification

Technology area (CPC G)Physics
CPC primaryG06F2221/2119
WIPO fieldComputer technology
WIPO sectorElectrical engineering

Abstract

Detecting obfuscated attacks on a computer. A first program function is invoked to render static components of a web page and identify program code within the web page or associated file. In response, before executing the identified program code, a malicious-code detector is invoked to scan the identified program code for malicious code. If the malicious-code detector identifies malicious code in the identified program code, the identified program code is not executed. If no malicious code is detected, a second program function generates revised program code from execution of the identified, program code. In response, before executing the revised program code, the malicious-code detector is invoked to scan the revised program code for malicious code. If the malicious-code detector identifies malicious code in the revised program code, the revised program code is not executed.

Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.