Patent · US Active

Secure system for allowing the execution of authorized computer program code

US9665708B2 · kind B2 · utility

20Cited by

86References

20Claims

0Family size

Assignee

Fortinet, Inc. · US

Inventors

Andrew F. Fanton · Westminster, US
John J. Gandee · Loveland, US
William H. Lutton · Fort Collins, US
Edwin L. Harper · Platteville, US
Kurt E. Godwin · Loveland, US
Anthony A. Rozga · Wellington, US

Key dates

Filing date	May 13, 2016
Grant date	May 30, 2017
Priority date	—
Expiry date	May 13, 2036

Classification

Technology area (CPC Y)Emerging Cross-Sectional Technologies
CPC primaryY10S707/99944
WIPO fieldDigital communication
WIPO sectorElectrical engineering

Abstract

Systems and methods for selective authorization of code modules are provided. According to one embodiment, a kernel-level driver within a kernel of an operating system of a computer system intercepts activity in connection with a file system associated with the computer system or the operating system relating to a code module. A determination is made by the kernel-level driver regarding whether to allow the intercepted activity to proceed by performing a real-time authentication process of the code module with reference to a multi-level whitelist database architecture, including a local copy of a remote global whitelist database hosted by a trusted their-party service provider, a local whitelist database and a most recently used (MRU) cache. When the intercepted activity is allowed to proceed as a result of the determination, the code module is permitted by the kernel-level driver to be loaded and executed by the computer system.

Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.