Altering application behavior based on content provider reputation
US8627476B1 · kind B1 · utility
Assignee
Inventors
Key dates
| Filing date | Jul 5, 2010 |
| Grant date | Jan 7, 2014 |
| Priority date | — |
| Expiry date | Dec 4, 2031 |
Classification
- Technology area (CPC H)Electricity
- CPC primaryH04L63/1441
- WIPO fieldComputer technology
- WIPO sectorElectrical engineering
Abstract
Incoming network traffic is monitored, and content-based files in the monitored incoming network traffic originating from remote sources are identified. When a specific content-based file originating from a remote source is identified, security information concerning that file is gleaned. This security information comprises at least a security reputation of the remote source from which the file originates. An attempt to open the file is identified, and a security risk rating is determined based on the security information concerning the file. In response to the security risk rating exceeding a given threshold, behavior associated with the attempt to open the file is altered. This altering of behavior can comprise, for example, disabling a scripting engine for the instance of the content processing application attempting to open the file, or altering file system and/or operating system resource access privileges.
Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.