Patent · US Active

Systems and methods for detecting a process to establish a backdoor connection with a computing device

US8683576B1 · kind B1 · utility

19Cited by

7References

18Claims

0Family size

Assignee

Symantec Corporation · US

Inventor

James Yun · Los Angeles, US

Key dates

Filing date	Sep 30, 2009
Grant date	Mar 25, 2014
Priority date	—
Expiry date	Oct 2, 2031

Classification

Technology area (CPC H)Electricity
CPC primaryH04L63/14
WIPO fieldComputer technology
WIPO sectorElectrical engineering

Abstract

A computer-implemented method for detecting a process to establish a backdoor connection with the computer is described. An application programming interface (API) is hooked. Calls to the hooked API are monitored. A call directed to the hooked API is intercepted. The call instructs the API to initiate a user interface. Structures included in the intercepted call are analyzed. The intercepted call is prevented from arriving at the hooked API if the structures are directed to a socket on the computer.

Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.