Patent · US Active

System and method to mitigate malicious calls

US9767283B2 · kind B2 · utility

2Cited by

9References

25Claims

0Family size

Assignee

McAfee, LLC · US

Inventors

Peter Szor · San Fernando, US
Rachit Mathur · Kanchinakote, IN

Key dates

Filing date	Jun 27, 2014
Grant date	Sep 19, 2017
Priority date	—
Expiry date	Jun 27, 2034

Classification

Technology area (CPC G)Physics
CPC primaryG06F21/566
WIPO fieldComputer technology
WIPO sectorElectrical engineering

Abstract

Systems and methods are provided in example embodiments for mitigating malicious calls. The system can be configured to receive a function call, determine the location of a memory page that initiated the function call, determine if the memory page is associated with a trusted module, and block the function call if the memory page is not associated with the trusted module. In addition, the system can determine the return address for the function call and block the function call if the return address does not belong to the trusted module. Further, the system can determine a parameter for the function call, determine if the parameter is a known parameter used by the process that called the function, and block the function call if the parameter is not the known parameter used by the process that called the function.

Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.