WO2001088673A3 - Malicious mobile code runtime monitoring system and methods - Google Patents

Malicious mobile code runtime monitoring system and methods Download PDF

Info

Publication number
WO2001088673A3
WO2001088673A3 PCT/IB2001/001138 IB0101138W WO0188673A3 WO 2001088673 A3 WO2001088673 A3 WO 2001088673A3 IB 0101138 W IB0101138 W IB 0101138W WO 0188673 A3 WO0188673 A3 WO 0188673A3
Authority
WO
WIPO (PCT)
Prior art keywords
protection
mpc
downloadable
received
code
Prior art date
Application number
PCT/IB2001/001138
Other languages
French (fr)
Other versions
WO2001088673A2 (en
Inventor
Yigal Mordechai Edery
Nimrod Itzhak Vered
David R Kroll
Original Assignee
Finjan Software Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Finjan Software Ltd filed Critical Finjan Software Ltd
Priority to IL14771201A priority Critical patent/IL147712A0/en
Priority to AU2001274406A priority patent/AU2001274406A1/en
Publication of WO2001088673A2 publication Critical patent/WO2001088673A2/en
Priority to IL147712A priority patent/IL147712A/en
Publication of WO2001088673A3 publication Critical patent/WO2001088673A3/en
Priority to IL190518A priority patent/IL190518A/en

Links

Classifications

    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/50Monitoring users, programs or devices to maintain the integrity of platforms, e.g. of processors, firmware or operating systems
    • G06F21/52Monitoring users, programs or devices to maintain the integrity of platforms, e.g. of processors, firmware or operating systems during program execution, e.g. stack integrity ; Preventing unwanted data erasure; Buffer overflow

Abstract

Protection systems and methods provide for protecting one or more personal computers ('PCs') and/or other intermittently or persistently network accessible devices or processes from undesirable or otherwise malicious operations of JavaTM applets, ActiveXTM controls, JavaScriptTM scripts, Visual Basic scripts, add-ins, downloaded/uploaded programs or other 'Downloadables' or 'mobile code' in whole or part. A protection engine embodiment provides, within a server, firewall or other suitable 're-communicator', for monitoring information received by the communicator, determining whether received information does or is likely to include executable code, and if so, causes mobile protection code (MPC) to be transferred to and rendered operable within a destination device of the received information, more suitably by forming a protection agent including the MPC, protection policies and a detected-Downloadable. An MPC embodiment further provides, within a Downloadable-destination, for initiating the Downloadable, enabling malicious Downloadable operation attempts to be received by the MPC, and causing (predetermined) corresponding operations to be executed in response to the attempts, more suitably in conjunction with protection policies.
PCT/IB2001/001138 2000-05-17 2001-05-17 Malicious mobile code runtime monitoring system and methods WO2001088673A2 (en)

Priority Applications (4)

Application Number Priority Date Filing Date Title
IL14771201A IL147712A0 (en) 2000-05-17 2001-05-17 Malicious mobile code runtime monitoring system and methods
AU2001274406A AU2001274406A1 (en) 2000-05-17 2001-05-17 Malicious mobile code runtime monitoring system and methods
IL147712A IL147712A (en) 2000-05-17 2002-01-17 Malicious mobile code runtime monitoring system and methods
IL190518A IL190518A (en) 2000-05-17 2008-03-30 Malicious mobile code runtime monitoring system and methods

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
US20559100P 2000-05-17 2000-05-17
US60/205,591 2000-05-17

Publications (2)

Publication Number Publication Date
WO2001088673A2 WO2001088673A2 (en) 2001-11-22
WO2001088673A3 true WO2001088673A3 (en) 2003-03-20

Family

ID=22762824

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/IB2001/001138 WO2001088673A2 (en) 2000-05-17 2001-05-17 Malicious mobile code runtime monitoring system and methods

Country Status (3)

Country Link
AU (1) AU2001274406A1 (en)
IL (3) IL147712A0 (en)
WO (1) WO2001088673A2 (en)

Cited By (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US9141786B2 (en) 1996-11-08 2015-09-22 Finjan, Inc. Malicious mobile code runtime monitoring system and methods
US9219755B2 (en) 1996-11-08 2015-12-22 Finjan, Inc. Malicious mobile code runtime monitoring system and methods

Families Citing this family (6)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US7058822B2 (en) 2000-03-30 2006-06-06 Finjan Software, Ltd. Malicious mobile code runtime monitoring system and methods
US7013483B2 (en) 2003-01-03 2006-03-14 Aladdin Knowledge Systems Ltd. Method for emulating an executable code in order to detect maliciousness
US7721334B2 (en) 2004-01-30 2010-05-18 Microsoft Corporation Detection of code-free files
US10043008B2 (en) 2004-10-29 2018-08-07 Microsoft Technology Licensing, Llc Efficient white listing of user-modifiable files
US8863279B2 (en) 2010-03-08 2014-10-14 Raytheon Company System and method for malware detection
EP2784714B1 (en) * 2013-03-28 2021-04-28 Alcatel Lucent Method of preventing access to sensitive data of a computing device

Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US5623600A (en) * 1995-09-26 1997-04-22 Trend Micro, Incorporated Virus detection and removal apparatus for computer networks
US5974549A (en) * 1997-03-27 1999-10-26 Soliton Ltd. Security monitor
US5983348A (en) * 1997-09-10 1999-11-09 Trend Micro Incorporated Computer network malicious code scanner

Patent Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US5623600A (en) * 1995-09-26 1997-04-22 Trend Micro, Incorporated Virus detection and removal apparatus for computer networks
US5974549A (en) * 1997-03-27 1999-10-26 Soliton Ltd. Security monitor
US5983348A (en) * 1997-09-10 1999-11-09 Trend Micro Incorporated Computer network malicious code scanner

Cited By (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US9141786B2 (en) 1996-11-08 2015-09-22 Finjan, Inc. Malicious mobile code runtime monitoring system and methods
US9189621B2 (en) 1996-11-08 2015-11-17 Finjan, Inc. Malicious mobile code runtime monitoring system and methods
US9219755B2 (en) 1996-11-08 2015-12-22 Finjan, Inc. Malicious mobile code runtime monitoring system and methods
US9444844B2 (en) 1996-11-08 2016-09-13 Finjan, Inc. Malicious mobile code runtime monitoring system and methods

Also Published As

Publication number Publication date
IL190518A (en) 2010-11-30
WO2001088673A2 (en) 2001-11-22
IL190518A0 (en) 2008-11-03
AU2001274406A1 (en) 2001-11-26
IL147712A0 (en) 2002-08-14
IL147712A (en) 2009-08-03

Similar Documents

Publication Publication Date Title
FI20030090A0 (en) Method for triggering a location dependent function, system and device
WO2002093334A3 (en) Temporal access control for computer virus outbreaks
CN1849773B (en) Displaying a security element with a browser window
WO2004070571A3 (en) Update system for facilitating firmware/software update in a mobile handset
CN104376263B (en) The method and apparatus that application behavior intercepts
MY138403A (en) Methods and apparatus for content protection in a wireless network
WO2001075663A3 (en) Systems and methods for enhancing connectivity
Yoon et al. Virtualdrone: virtual sensing, actuation, and communication for attack-resilient unmanned aerial systems
CN109558734B (en) Stack security detection method and device and mobile device
CN103294955B (en) Macrovirus checking and killing method and system
WO2006073837A3 (en) Method and apparatus of adaptive network policy management for wireless mobile computers
CA2509091A1 (en) System and method for handshaking between wireless devices and servers
AU2001274856A1 (en) Evidence-based security policy manager
WO2003030559A3 (en) System and method for providing subscribed applications on wireless devices over a wireless network
WO2001077785A3 (en) Network portal system, apparatus and method
AU2002344870A1 (en) Message management in a mobile data communication device
WO2003054661A3 (en) Method and system for enabling content security in a distributed system
WO2003023555A3 (en) Internet-deployed wireless system
WO2002021463A3 (en) Code identification method and system
CN107306293B (en) Anti-addiction method and system
WO2001088673A3 (en) Malicious mobile code runtime monitoring system and methods
US20100011443A1 (en) Method for preventing the spreading of malware via the use of a data security device
KR20070086569A (en) Management of persistent software applications
ATE502345T1 (en) SECURITY SYSTEM FOR ACCESS CONTROL LISTS IN MOBILE APPLICATIONS
WO2005084202A3 (en) Execution of unverified programs in a wireless device operating environment

Legal Events

Date Code Title Description
AK Designated states

Kind code of ref document: A2

Designated state(s): AE AG AL AM AT AU AZ BA BB BG BR BY BZ CA CH CN CO CR CU CZ DE DK DM DZ EE ES FI GB GD GE GH GM HR HU ID IL IN IS JP KE KG KP KR KZ LC LK LR LS LT LU LV MA MD MG MK MN MW MX MZ NO NZ PL PT RO RU SD SE SG SI SK SL TJ TM TR TT TZ UA UG UZ VN YU ZA ZW

AL Designated countries for regional patents

Kind code of ref document: A2

Designated state(s): GH GM KE LS MW MZ SD SL SZ TZ UG ZW AM AZ BY KG KZ MD RU TJ TM AT BE CH CY DE DK ES FI FR GB GR IE IT LU MC NL PT SE TR BF BJ CF CG CI CM GA GN GW ML MR NE SN TD TG

121 Ep: the epo has been informed by wipo that ep was designated in this application
WWE Wipo information: entry into national phase

Ref document number: 147712

Country of ref document: IL

DFPE Request for preliminary examination filed prior to expiration of 19th month from priority date (pct application filed before 20040101)
122 Ep: pct application non-entry in european phase
NENP Non-entry into the national phase

Ref country code: JP

WWE Wipo information: entry into national phase

Ref document number: 190518

Country of ref document: IL